Legal Action News, Articles and Updates

Dismantled Andromeda botnet will 'slowly disappear' over time, says ESET researcher

What remains of the Andromeda botnet that was largely dismantled in a November 2017 global law enforcement operation will probably "slowly disappear" as remediation continues into 2018, predicted one cybersecurity company that assisted in the investigation.

Three plead guilty to creating Mirai IoT botnet malware

Three men have pleaded guilty in federal court to charges related to the creation of the Mirai Internet of Things botnet malware, variants of which have been used in a series of debilitating distributed denial of service (DDoS) attacks.

Belarusian arrested in Andromeda crackdown identified as significant cybercriminal figure

The suspect whom international authorities arrested in Belarus during a Nov. 29 operation to dismantle the Andromeda botnet has been identified with a high degree of certainty as Jarets Sergey Grigorevich - aka Ar3s, a high-profile cybercriminal and malware expert.

Global law enforcement operation decimates giant Andromeda botnet

An international contingent of law-enforcement agencies on Friday dismantled the massive Andromeda malware botnet, sinkholing around 1,500 malicious domains and arresting a suspect in Belarus.

Russian hacker Roman Seleznev sentenced to 14 years for ID theft, bank fraud

Already serving time for a previous conviction in federal court, Russian hacker Roman Seleznev was sentenced to an additional 14 years in prison after pleading guilty last September to racketeering and bank fraud.

In historic decision, FISA court allows NSA surveillance transparency lawsuit to continue

The U.S. Foreign Intelligence Surveillance Court has ruled that there is sufficient standing to proceed with a lawsuit that could require the court to publicly reveal the justifications behind the NSA's electronic surveillance program.

Hilton to pay $700,000 in data breach settlement with New York, Vermont

Hilton hotels has reached a $700,000 joint settlement with the New York Attorney General's office for a pair of data breaches that were discovered in 2015, including one that exposed more than 350,000 credit card numbers.

Third man pleads guilty in Celebgate case

A 32-year-old Chicago man is reportedly facing a maximum five years in prison after agreeing to plead guilty to hacking celebrities' Gmail and iCloud accounts in order to obtain their nude photos and videos.

Kaspersky Lab renews threat sharing relationship with INTERPOL

Kaspersky Lab and Interpol announced on Thursday that they have signed a new cybercrime threat sharing pact that will strengthen the two organizations' collaborative relationship.

San Francisco sues Equifax over poor cybersecurity practices

San Francisco's city attorney filed a lawsuit against Equifax saying the credit monitoring firm failed to protect the personal data of 15 million Californian residents.

D.C. appeals court overturns conviction in warrantless stingray case

D.C. Court of Appeals ruled the use of stingrays, or cell-site simulators, without a warrant is unconstitutional on the grounds of violating the Fourth Amendment.

Justice Department: Google won't challenge overseas warrants

Google has silently stopped challenging most warrants from U.S. judges in cases involving data requests stored in overseas servers.

ACLU, EFF sue DHS over electronic device searches at border

The suit was filed on behalf of 10 U.S. citizens and a lawful permanent resident, most of them Muslim or people of color, whose devices were searched as they reentered the country after business or personal trips.

'Crackas With Attitude' member sentenced to in prison for government attacks

Justin G. Liverman, aka "D3F4ULT" of the "Crackas With Attitude" cybergang was sentenced to five years in prison.

Previously convicted Russian hacker pleads guilty to ID theft, fraud charges

Roman Seleznev, a convicted Russian hacker who in April 2017 was sentenced in a Washington State court to 27 years in federal prison, pleaded guilty last week to additional charges brought against him in the states of Nevada and Georgia.

21 EU members not complying with court ordered privacy rules: report

The global privacy advocacy group Privacy International has found that 21 European Union members continue to retain personal data despite going against both their own and EU legal mandates.

Sen. Shaheen pushes for government wide ban on Kaspersky software

Sen. Jeanne Shaheen (D-N.H.) is pushing for a federal government wide ban of security software developed by Russian cybersecurity firm Kaspersky Lab.

American Pacific Mortgage files lawsuit against insurer to reclaim losses due to BEC attack

American Pacific Mortgage (APM) has filed a breach of contract suit against Aspen Specialty Insurance Company disputing the latter's decision to not cover losses incurred from a business email compromise attack.

Judge rules Fancy Bear APT must forfeit malicious domains to Microsoft

A federal district court judge in Virginia has granted Microsoft Corporation permission to seize domains that Russian APT group Fancy Bear has historically used to target the software giant and its users.

WannaCry researcher Marcus Hutchins arraigned, faces October trial

Marcus Hutchins, the UK researcher who accidentally stopped the spread of WannaCry ransomware, was arraigned in a federal Wisconsin court on Monday, for allegedly authoring a banking trojan called Kronos.

Judges disfavor Microsoft Ireland decision in two cases pitting Google against DOJ

A pair of federal judges have separately issued rulings or statements in the last two weeks that struck a blow against Google in its attempt to block the U.S. Department of Justice from accessing customer data stored overseas.

Alleged sextortionist caught after FBI plants malware on video of victim

A Bakersfield, Calif. man who allegedly tried to extort pornographic video footage from underage victims was tracked down and apprehended after investigators secretly hid malware on a digital video file sent from the intended victim's computer, according to an indictment filed in Indiana.

Wells Fargo lawyers release investment account info during lawsuit

A law firm representing Wells Fargo & Co. may have released data to an unauthorized recipient associated belong to 50,000 investment accounts, according to a published report.

Ashley Madison agrees to $11.2M settlement for 2015 data breach

Ruby Corp. and Ruby Life, the parent organizations behind the adult dating website Ashley Madison, have agreed to an $11.2 million settlement with its customers who had their private information released during a 2015 data breach.

China may have hacked secret CIA communication to kill or imprison U.S. informants

China seriously crippled U.S. Intelligence operations by systematically killing or imprisoning more than a dozen sources.

Target breach settlement payout held up by lone consumer

Although Target agreed to compensate consumers affected in its 2013 data breach from a pool of $10 million, a lone consumer is halting payouts.

Insider threat faces $300K fine for hacking former employer

A California man is facing a $318,661.70 fine to cover the cost of repairing his former employers systems.