We bring to your attention a sampling of recent media stories involving cyber risk & privacy liability. Among the stories we’re highlighting this month: Austin’s SolarWinds hit with lawsuit in wake of cyberattack, Warner Music Group Sued in L.A. Over Data Breach, Fines against banks for data breaches and noncompliance more than doubled in 2020, and more.
California CPA Regulations
Hanna Andersson and Salesforce Receive Preliminary Approval for Settlement of CCPA-Based Class Action Litigation
In 2019, Hanna Andersson, a children’s apparel store, suffered a data breach while using a Salesforce e-commerce platform. As a result of the breach, customers filed a class action lawsuit, alleging customer data was stolen and asking that both Hanna Andersson and Salesforce be held liable under the California Consumer Protection Act (CCPA) Click to read entire article
Ransomware Corner
GenRx Pharmacy Ransomware Attack Resulted In Data Breach
A huge cyberattack affecting the American GenRx Pharmacy potentially resulted in a data breach. The incident affected hundreds of thousands of patients exposing their health data. Click to read entire article
Ryuk gang estimated to have made more than $150 million from ransomware attacks
The operators of the Ryuk ransomware are believed to have earned more than $150 million worth of Bitcoin from ransom payments following intrusions at companies all over the world. Click to read entire article
Healthcare
Beebe customers notified of data breach
Beebe Medical Center was impacted by a data breach in early 2020 involving a firm it uses for data management, according to a statement from the hospital dated Dec. 28, 2020. Letters dated Dec. 24, 2020, were sent to those whose information was involved in the breach, which included 58,000 individuals, according to hospital representatives. Click to read entire article
Data Breach At Northwestern Memorial, Hospital Says No Evidence Of Fraud
The hospital said a temp worker got access to patient records they were not allowed to see. The hospital has banned that temp worker. Click to read entire article
IT/Tech
Austin’s SolarWinds hit with lawsuit in wake of cyberattack
SolarWinds investor Timothy Bremer is the lead plaintiff in the lawsuit, which accuses the company of violating federal securities law and alleges SolarWinds made “materially false and misleading statements” related to security measures. Click to read entire article
Automotive
Data Leak Hits Nissan North America
Misconfigured Git server exposes automaker’s internal code online Click to read entire article
Telecom
T-Mobile: Breach exposed call information for some customers
T-Mobile says that it “recently identified and quickly shut down” a data breach that included call-related information about some accounts. The wireless telecommunication firm said in a notice mailed to some customers in late December that the incident “may have included phone number, number of lines subscribed to on your account and, in some cases, call-related information collected as part of the normal operation of your wireless service.” Click to read entire article
Travel
Travel Giant Sabre Reaches Deal with State Attorneys General Over Data Breach
The travel giant Sabre Corp. has reached an agreement with multiple State Attorneys General to pay $2.4 million and make certain changes in its cybersecurity policies to settle a multi-state investigation into a 2017 data breach. Click to read entire article
Tickets/ Music
Ticketmaster fined $10 million after staff hacked competitor to ‘choke off’ presale ticket business
US prosecutors say the goal was to “steal back” key clients. Click to read entire article
Warner Music Group Sued in L.A. Over Data Breach
Warner Music Group was hit with a proposed class-action lawsuit Thursday over its alleged failure to reasonably safeguard the personal information of online customers. Click to read entire article
Financial Services
Fines against banks for data breaches and noncompliance more than doubled in 2020
Research by digital transformation firm Fenergo found that 198 fines were imposed in 2020, 141 per cent up on last year, with penalties totalling $10.4 billion. Click to read entire article
Charlotte’s Wyndham Capital involved in class-action lawsuit over data breaches
A Florida man has filed a class-action lawsuit regarding data breaches at Wyndham Capital Mortgage. Click to read entire article
Non-Profits
Bill and Melinda Gates Foundation backed project suffers data breach, 930,000 children affected
Get Schooled, an educational non profit organization created as a partnership between The Bill and Melinda Gates Foundation and Viacom with significant help from AT&T has suffered a data breach which revealed personal identifiable information on hundreds of thousands of students: with initial estimates putting the total number of affected children at around 930,000. Click to read entire article
Canada
Data exposure flaw on Walmart.ca revealed personal customer information
Customers’ names, shipping and billing addresses, order dates, methods of payment and the last four digits of the credit cards used were on full display for orders of a $1,500 laptop computer in Ontario, a $700 spin bike in Saskatchewan, and more than $1,100 worth of baby gear in B.C. Click to read entire article
EU/UK
British Airways Plans £3bn Breach Settlement
The UK’s flag-carrier airline is said to be planning to begin settlement discussions that could see customers who became the victims of a data breach receive a compensation payout of up to £3bn. Click to read entire article
Italian mobile operator offers to replace SIM cards after massive data breach
Hackers stole the personal data for 2.5 million Ho Mobile subscribers. Click to read entire article
Asia Pacific
Japanese aerospace company Kawasaki reports data breach
A major aerospace company in Japan is alerting the public to a data breach. Click to read entire article
Leaked on Dark Web! Debit card, credit card masked data of 3.5 cr Indians breached; being sold via cryptocurrency Bitcoin | JusPay reacts
It has been revealed that on Dark Web, debit card and credit card data of millions of Indians was leaked by hackers. Click to read entire article
