Sabina Weston reports: More than six weeks after hackers caused “significant disruption” to Swan Retail’s inventory management, order fulfilment and accounting systems, fashion retailers told Drapers the issues have still not been resolved. Sandersons Boutique owner and co-founder Mark Dransfield said the cyber attack on Swan Retail, which occurred on 13 August, “has hugely affected”...
Nansen Warns Of Potential Phishing Attacks Following Vendor Security Incident Exposing Customer Data
Liam ‘Akiba’ Wright reports: Crypto analytics platform Nansen has revealed that a bad actor accessed its admin system to provision customer accounts. On Sept. 20, a security breach by one of Nansen’s third-party vendors led to compromised customer access, underscoring the ever-present digital risk, particularly in the continually evolving arena of blockchain technology and...
Daily Pakistan reports: More than 2 million Pakistani citizens are facing risk of data leak as hackers got access to a private company-made database used by hundreds of restaurants. The incident affected customers who gave their private data to restaurants for a treasure trove of personal information like credit cards, addresses and other bank...
Temur Durrani reports: Air Canada says an unauthorized group of people obtained access to its internal system, compromising the personal information of an unknown number of employees working for the country’s largest airline. In a brief statement on Wednesday afternoon, Air Canada spokesperson Peter Fitzpatrick said “certain records” were affected by the “limited” breach, without...
The Standard reports: Authorities are now mulling to introduce a law on cyber security and will strengthen communications with overseas agencies, said I&T minister Sun Dong following a recent hacking on Cyberport’s computer system. Some 400 gigabytes of data, including HKID card numbers, bank statements and resumes, was stolen and released on the dark...
Riley Brennan reports: Los Angeles-based law firm Hill, Farrer & Burrill was slapped with a data breach class action over allegations it detected a data breach in March 2022 but waited over a year to inform affected individuals their personal information had been leaked. According to the complaint, Hill Farrer determined that cybercriminals...
The following press release was issued August 30 by Sweden’s Authority for Privacy Protection (IMY): Trygg-Hansa’s security flaws have meant that information on 650,000 customers has been accessible via the internet. The Privacy Protection Agency (IMY) is now issuing an administrative sanction fee of SEK 35 million against the company. After receiving a tip, IMY...
The Personal Data Protection Commissioner of Singapore (PDPC) announced two decisions this week: A financial penalty of $3,000 was imposed on Autobahn Rent A Car for failing to put in place reasonable security arrangements to protect the personal data in its possession or under its control. Directions were also issued to strengthen access control...
Sergiu Gatlan reports: The BlackCat (ALPHV) ransomware gang now uses stolen Microsoft accounts and the recently spotted Sphynx encryptor to encrypt targets’ Azure cloud storage. While investigating a recent breach, Sophos X-Ops incident responders discovered that the attackers used a new Sphynx variant with added support for using custom credentials. Read more at BleepingComputer.
Covington Client Intervenes in SEC Battle, Objecting to Disclosure of Identity