Security News

Still, Chief Judge Thomas W. Thrash Jr. writes that "This settlement is the largest and most comprehensive recovery in a data breach case in U.S. history by several orders of magnitude." The minimum cost to Equifax will be $1.38 billion, which includes $1 billion in security upgrades, Thrash writes. "This settlement is the largest and most comprehensive recovery in a data breach case in U.S. history by several orders of magnitude."-Chief Judge Thomas W. Thrash Jr. Equifax failed to catch such a large exfiltration of data because a security certificate on a traffic monitoring device had expired, the report says.

After a data breach, if individuals' stolen information is offered for sale on the dark web, that potentially bolsters class action lawsuits filed by plaintiffs against the breached organization, says technology attorney Steven Teppler of the law firm Mandelbaum Salsburg P.C. Data offered for sale "Actually shows that someone is attempting to monetize the victims' information," he says in an interview with Information Security Media Group. The clinic reported a health data breach in July 2016 to the Department of Health and Human Services as a "Unauthorized access/disclosure" incident involving its electronic health records and affecting 201,000 individuals.

A lawsuit against DCH Health System in the wake of a ransomware attack that disrupted medical services for several days alleges that the Alabama-based organization failed "To properly maintain and safeguard its computer systems and data." For several days, DCH diverted ambulances and patients to other area facilities as it dealt with the ransomware attack it discovered on Oct. 1.

The Wawa convenience store chain is facing a wave of lawsuits over a data breach that affected its 850 locations along the East Coast. read more

Plaintiffs' Attorney Says Settlement Totals 'Tens of Millions of Dollars'A federal court has granted preliminary approval of a multi-million dollar settlement of a consolidated class action...

Nuance Sued Following NotPetya Attack; Solara Medical Supply Sued for Exposing Patient DataTwo vendors serving the healthcare sector have been targeted with breach-related lawsuits. Experts say...

A US court shielded ISP account holders from a request for expedited discovery to see whose IP addresses were used to share pirated videos.

Corellium, the Florida-based virtualization company sued by Apple for creating replicas of the iOS operating system, has responded to the tech giant’s lawsuit. read more

23 Million Victims Across US, UK, EU and Australia Receive Breach NotificationsPersonalized product retailer CafePress has been hit with a lawsuit alleging that it failed to notify 23 million...

A UK class action lawsuit against Google, that represents around 5 million iPhone users, can go ahead, according to the UK Court of Appeal.