The "Energetic Bear," a.k.a. "Dragonfly," hacking campaign targets U.S. and Western European energy firms. While the hackers appear to be backed by Russia, the purpose of their attacks remains unclear.
Microsoft launched a botnet-focused takedown effort that didn't just block small-scale campaigns tied to two pieces of malware, but also resulted in an estimated 4 million legitimate site names being disrupted.
A breach affecting 163,000 individuals at Butler University in Indianapolis, Ind., offers yet another example of the risks facing educational institutions, which are seen as easy targets by cyber-attackers.
A class action suit against breached restaurant chain P.F. Chang's China Bistro is unlikely to succeed, some security experts say, because proving consumer losses linked to specific merchant data breaches is difficult.
A Florida law that takes effect July 1 toughens the state's data breach notification statute by, in part, broadening the term "personal information" to include individuals' usernames and e-mail addresses under certain circumstances.
Leading this week's industry news roundup, Verizon offers Smart Credential, a new service to help businesses manage risk by using a single credential in both the physical and virtual worlds, while Corero announces SecureWatch Analytics.
In this week's breach roundup, read about the latest incidents, including the Australian Privacy Commissioner finding several security gaps at an online dating site that led to a significant data breach.
A Senate committee has approved legislation to reform the 12-year-old law that governs federal information security, plus two other cybersecurity-related bills. The full Senate will now consider the measures.
The Obama administration has reached a deal with EU representatives, pending Congressional approval, to give EU citizens the right to file lawsuits, in certain circumstances, if the U.S. has violated their privacy rights.