Cyber Risk News

Marsh McLennan Asks Court to Revisit Data Breach Ruling to Avoid Flood of Litigation

Marsh McLennan wants the Second Circuit appeals court to reconsider its August decision that overruled a district court and reinstated a former employee’s lawsuit against the company over a 2021 data breach. Marsh McLennan (MMC) asserts that the employee lacks …

Insurer Mapfre Faces Class Actions Over Data Breach

Two proposed class actions have been filed in federal court in Massachusetts against Mapfre U.S.A. Corp. and its affiliate Commerce Insurance Co. over a recent data breach that one of the lawsuits contends may have exposed customer data for more …

42,000 Vermonters Affected by MOVEit Data Breach

The Vermont Department of Financial Regulation reports that the large-scale data security breach of the MOVEit software has compromised the personally identifiable information of roughly 42,000 Vermonters and more than 38 million consumers nationwide. The breach occurred when CLOP Ransomware …

Law Firm Must Name Clients Affected by 2020 Cyberattack, Judge Says

Covington & Burling must identify some clients caught up in a 2020 hack on the law firm to the U.S. Securities and Exchange Commission, a federal judge in Washington ruled on Monday in a case that could impact future cyberattack …

Toyota Blames Human Error for Leak of Vehicle Data of 2 Million Users in Japan

Toyota Motor Corp. said on Friday the vehicle data of 2.15 million users in Japan, or almost the entire customer base who signed up for its main cloud service platforms since 2012, had been publicly available for a decade due …

DC Health Link Data Breach Blamed on Human Error

The recent data breach of personal information for thousands of users of Washington D.C.’s health insurance exchange, including members of Congress, was caused by basic human error, according to a top administrator. The revelation came from prepared statements submitted in …

Massachusetts Man Sentenced in Business Email Compromise Scheme

A Framingham, Massachusetts man was sentenced this week for his role in a business email compromise (BEC) scheme. Gustaf Njei was sentenced by U.S. District Court Chief Judge F. Dennis Saylor IV to 27 months in prison and two years …

Spyware Hacks of Federal Workers Could Run Into Hundreds, Lawmaker Says

A US government probe into how many mobile phones belonging to diplomats and government workers have been infected with spyware could “easily run to the hundreds,” according to a member of the House Intelligence Committee. Jim Himes, a Democrat representative …

North Korean Cyber Spies’ New Tactic: Tricking Experts Into Writing Research for Them

When Daniel DePetris, a U.S.-based foreign affairs analyst, received an email in October from the director of the 38 North think-tank commissioning an article, it seemed to be business as usual. It wasn’t. The sender was actually a suspected North …

U.S. Official Sees More Aggressive Cybersecurity Threats From Russia, China etc.

Secretary of Homeland Security Alejandro Mayorkas said the US has observed growing cybersecurity threats both at home and throughout Asia, and is warning against activity coming from Russia, China, North Korea and Iran. “Malicious activity from the PRC is a …