More than 53,000 passwords owned by federal and state government employees have been shared on the dark web and other public platforms since 2024, NordPass said in a study released Tuesday.
Higher education institutions face new data security challenges, including increased “global regulatory requirements on data privacy,” JacksonLewis attorneys blogged Friday.
Around 70,000 global users of Discord may have had their government ID photos exposed in the Sept. 20 data breach, said Discord in an update Wednesday. The company notified stakeholders of the breach Oct. 3. Meanwhile, Texas said Thursday it's expanding a probe of Discord.
Canada-based WestJet Airlines may have suffered a breach that leaked the sensitive information of more than 1 million customers, a law firm investigating the incident said Thursday. Multiple states also recently reported the breach.
Companies that collect customer data should strengthen their defenses against phishing, since it remains among the top cyberattack tactics, said panelists during a Practising Law Institute cybersecurity conference Monday.
The Social Security Administration (SSA) chief rejected the claims of a whistleblower Tuesday who said the activities of the Department of Government Efficiency (DOGE) risked exposing more than 300 million Americans’ social security information (see 2508260046).
Though many digital health apps and online platforms fall outside the scope of the Health Insurance Portability and Accountability Act (HIPAA), courts and regulators are using other tools to expand enforcement against them when they share sensitive health data without consent, said Sheppard Mullin lawyers in a blog post.
Human resources company Sequoia Benefits must pay $8.7 million in a settlement from a 2022 data breach that exposed the personal information of about 580,000 individuals, a federal court ruled in a court document filed Tuesday.
Retina Group of Florida suffered a data breach that may have leaked the personal information of more than 150,000 patients, Schubert Jonckheer said Thursday.
An August settlement between the Massachusetts attorney general and a property management company over its shortcomings in handling a cybersecurity breach is a cautionary tale for any business collecting and storing consumer data, said a Hudson Cook lawyer in a blog post Aug. 29.