Cyber Risk News

We bring to your attention a sampling of recent media stories involving cyber risk & privacy liability. Among the stories we’re highlighting this month: Austin’s SolarWinds hit with lawsuit in wake of cyberattack, Warner Music Group Sued in L.A. Over Data Breach, Fines against banks for data breaches and noncompliance more than doubled in 2020, and more.

California CPA Regulations

Hanna Andersson and Salesforce Receive Preliminary Approval for Settlement of CCPA-Based Class Action Litigation

In 2019, Hanna Andersson, a children’s apparel store, suffered a data breach while using a Salesforce e-commerce platform. As a result of the breach, customers filed a class action lawsuit, alleging customer data was stolen and asking that both Hanna Andersson and Salesforce be held liable under the California Consumer Protection Act (CCPA) Click to read entire article

Ransomware Corner

GenRx Pharmacy Ransomware Attack Resulted In Data Breach

A huge cyberattack affecting the American GenRx Pharmacy potentially resulted in a data breach. The incident affected hundreds of thousands of patients exposing their health data. Click to read entire article

Ryuk gang estimated to have made more than $150 million from ransomware attacks

The operators of the Ryuk ransomware are believed to have earned more than $150 million worth of Bitcoin from ransom payments following intrusions at companies all over the world. Click to read entire article

Healthcare

Beebe customers notified of data breach

Beebe Medical Center was impacted by a data breach in early 2020 involving a firm it uses for data management, according to a statement from the hospital dated Dec. 28, 2020. Letters dated Dec. 24, 2020, were sent to those whose information was involved in the breach, which included 58,000 individuals, according to hospital representatives. Click to read entire article

Data Breach At Northwestern Memorial, Hospital Says No Evidence Of Fraud

The hospital said a temp worker got access to patient records they were not allowed to see. The hospital has banned that temp worker. Click to read entire article

IT/Tech

Austin’s SolarWinds hit with lawsuit in wake of cyberattack

SolarWinds investor Timothy Bremer is the lead plaintiff in the lawsuit, which accuses the company of violating federal securities law and alleges SolarWinds made “materially false and misleading statements” related to security measures. Click to read entire article

Automotive

Data Leak Hits Nissan North America

Misconfigured Git server exposes automaker’s internal code online Click to read entire article

Telecom

T-Mobile: Breach exposed call information for some customers

T-Mobile says that it “recently identified and quickly shut down” a data breach that included call-related information about some accounts. The wireless telecommunication firm said in a notice mailed to some customers in late December that the incident “may have included phone number, number of lines subscribed to on your account and, in some cases, call-related information collected as part of the normal operation of your wireless service.” Click to read entire article

Travel

Travel Giant Sabre Reaches Deal with State Attorneys General Over Data Breach

The travel giant Sabre Corp. has reached an agreement with multiple State Attorneys General to pay $2.4 million and make certain changes in its cybersecurity policies to settle a multi-state investigation into a 2017 data breach. Click to read entire article

Tickets/ Music

Ticketmaster fined $10 million after staff hacked competitor to ‘choke off’ presale ticket business

US prosecutors say the goal was to “steal back” key clients. Click to read entire article

Warner Music Group Sued in L.A. Over Data Breach

Warner Music Group was hit with a proposed class-action lawsuit Thursday over its alleged failure to reasonably safeguard the personal information of online customers. Click to read entire article

Financial Services

Fines against banks for data breaches and noncompliance more than doubled in 2020

Research by digital transformation firm Fenergo found that 198 fines were imposed in 2020, 141 per cent up on last year, with penalties totalling $10.4 billion. Click to read entire article

Charlotte’s Wyndham Capital involved in class-action lawsuit over data breaches

A Florida man has filed a class-action lawsuit regarding data breaches at Wyndham Capital Mortgage. Click to read entire article

Non-Profits

Bill and Melinda Gates Foundation backed project suffers data breach, 930,000 children affected

Get Schooled, an educational non profit organization created as a partnership between The Bill and Melinda Gates Foundation and Viacom with significant help from AT&T has suffered a data breach which revealed personal identifiable information on hundreds of thousands of students: with initial estimates putting the total number of affected children at around 930,000. Click to read entire article

Canada

Data exposure flaw on Walmart.ca revealed personal customer information

Customers’ names, shipping and billing addresses, order dates, methods of payment and the last four digits of the credit cards used were on full display for orders of a $1,500 laptop computer in Ontario, a $700 spin bike in Saskatchewan, and more than $1,100 worth of baby gear in B.C. Click to read entire article

EU/UK

British Airways Plans £3bn Breach Settlement

The UK’s flag-carrier airline is said to be planning to begin settlement discussions that could see customers who became the victims of a data breach receive a compensation payout of up to £3bn. Click to read entire article

Italian mobile operator offers to replace SIM cards after massive data breach

Hackers stole the personal data for 2.5 million Ho Mobile subscribers. Click to read entire article

Asia Pacific

Japanese aerospace company Kawasaki reports data breach

A major aerospace company in Japan is alerting the public to a data breach. Click to read entire article

Leaked on Dark Web! Debit card, credit card masked data of 3.5 cr Indians breached; being sold via cryptocurrency Bitcoin | JusPay reacts

It has been revealed that on Dark Web, debit card and credit card data of millions of Indians was leaked by hackers. Click to read entire article


Vol. 228 – January 20, 2021

Download 2020 Cyber Claims Study

The annual NetDiligence® Cyber Claims Study uses actual cyber insurance reported claims to illuminate the real costs of incidents from an insurer’s perspective.

Download

RESPONSE AND RESILIENCE

Register Today!

© 2021 NetDiligence All Rights Reserved.