Tag Archive for: lawsuit

Hackers obtain personal data from 200K+ in southern Nevada casino data breach, class-action lawsuit says

/in


Class-action lawsuit filed after 2022 data breach

LAS VEGAS (KLAS) — A class-action lawsuit filed Wednesday alleges a southern Nevada casino’s computer systems were left vulnerable to a cyberattack, leaving the personal information of more than 200,000 customers and employees exposed, court documents said.

A hacker was able to access the sensitive information involving Rancho Mesquite Casino over several days in November 2022, documents said. Information accessed included full names and Social Security numbers.

The company operates the Rising Star Sports Ranch Resort in Mesquite, the Eureka Casino in Las Vegas and The Brook in Seabrook, New Hampshire, its website said. Two of the company’s properties were affected, documents said.

The class action, filed in Las Vegas court, alleges the company failed to provide “to provide timely and adequate notice” about the breach. The originating plaintiff is a California resident who said his computer was part of a ransomware attack, documents said.

A document in the filing, provided by authorities in Maine, said the company mailed notices of the breach in December 2022. The company was offered a dedicated phone line and one year of credit monitoring.

“On November 9, 2022, Eureka experienced a cybersecurity incident during which some of our systems were encrypted by an unauthorized actor,” a letter sent to those affected by the breach and included in the filing said. “Upon discovering the incident, we immediately took steps to secure our systems, began an investigation, and a cybersecurity firm was engaged to assist. Although the investigation is ongoing, we identified certain data that the unauthorized actor accessed during the incident. We began a review of the data and identified that the data included some of your information. Specifically, the data included your name and Social Security number.”

The lawsuit alleges the company failed to encrypt the sensitive information.

“Simply put, plaintiff and class members now face substantial risk of out-of-pocket fraud losses such as loans opened in their names, medical services billed in their names, tax return fraud, utility bills opened in…

Source…

Cyber-attack results in more than $800K stolen from Houston business, lawsuit filed

/in


Scammers using AI to personalize phishing emails

FOX 26 Consumer Reporter Heather Sullivan has some smart sense on what you should watch out for.

HOUSTONA lawsuit has been filed after online hackers used fake business emails to steal more than $800,000 from a Houston company. 

According to the U.S. Attorney’s Office in the Southern District of Texas, authorities seized a total of $834,157 held in a Houston bank account. 

RELATED: Home camera security flaw may have allowed hackers to watch for years

Online hackers reportedly controlled the account despite it looking like a legitimate company. In reality, officials said the unidentified hackers got access to an employee’s computer and accessed their company’s computer networks including email servers as well as accounts. 

Through these phishing attacks, they were able to create fake email addresses but identified employees responsible for financial obligations and posed as vendors who were owed money. 

That’s how, according to the U.S. Attorney’s Office, the employees were “tricked” into wiring funds to an account, that the hackers controlled. 

SUGGESTED: Artificial Intelligence making job scams more dangerous

This type of attack is described by investigators as a Business Email Compromise (BEC) scheme, which targets businesses involved in wire transfer payments. 

“The fraud is carried out by compromising and/or ‘spoofing’ legitimate business email accounts through social engineering or computer intrusion techniques,” the U.S. Attorney’s Office said. “It causes employees of the victim company (or other individuals involved in legitimate business transactions with them) to transfer funds to accounts the scammers control.”

MORE CRIME AND PUBLIC SAFETY

The Secret Service conducted the investigation but is being handled by the U.S. Attorney’s Office. 

Officials also shared some helpful tips to avoid being a victim of a BEC scheme which include: 

  • Independently obtain mortgage payoff statements and confirm with verified and trusted sources.
  • Independently verify the authenticity of information included in correspondence and statements.
  • Enable Multi-Factor Authentication (MFA) on all email accounts.
  • Routinely change…

Source…

EQUITY ALERT: Rosen Law Firm Files Securities Class Action Lawsuit Against International Business Machines Corporation – IBM

/in


NEW YORK–()–Rosen Law Firm, a global investor rights law firm, announces it has filed a class action lawsuit on behalf of purchasers of the securities of International Business Machines Corporation (NYSE: IBM) between January 18, 2018 and October 16, 2018, both dates inclusive (the “Class Period”). The lawsuit seeks to recover damages for IBM investors under the federal securities laws.

To join the IBM class action, go to https://rosenlegal.com/submit-form/?case_id=5104 or call Phillip Kim, Esq. toll-free at 866-767-3653 or email [email protected] or [email protected] for information on the class action.

According to the lawsuit, defendants throughout the Class Period made false and/or misleading statements and/or failed to disclose that: (1) Strategic Imperatives Revenue growth, CAMSS (the distinct components of “Cloud,” “Analytics,” “Mobile,” “Security,” and “Social”) and CAMSS components’ revenue growth, and the Company’s Segments’ revenue growth were artificially inflated as a result of the wrongful reclassification/misclassification of revenues from non-strategic to strategic to make those revenues eligible for treatment as Strategic Imperatives Revenue; and (2) IBM was materially less successful in growing its Strategic Imperative business, reporting materially higher growth than it actually achieved only by wrongfully reclassifying and misclassifying revenue from non-strategic to strategic thereby reporting publicly materially false Strategic Imperative Revenue. When the true details entered the market, the lawsuit claims that investors suffered damages.

A class action lawsuit has already been filed. If you wish to serve as lead plaintiff, you must move the Court no later than March 14, 2023. A lead plaintiff is a representative party acting on behalf of other class members in directing the litigation. If you wish to join the litigation, go to https://rosenlegal.com/submit-form/?case_id=5104 or to discuss your rights or interests regarding this class action, please contact Phillip Kim, Esq. of Rosen Law Firm toll free at 866-767-3653 or via e-mail at [email protected] or [email protected].

NO CLASS HAS YET…

Source…

Saudi activist Loujain al-Hathloul files lawsuit claiming 3 former U.S. officials helped hack her iPhone before she was imprisoned, tortured

/in


Loujain al-Hathloul, a prominent Saudi political activist who pushed to end a ban on women driving in her country, is suing three former U.S. intelligence and military officials she says helped hack her cellphone so a foreign government could spy on her before she was imprisoned and tortured.

The nonprofit Electronic Frontier Foundation announced Thursday that it had filed a lawsuit in U.S. federal court on al-Hathloul’s behalf against former U.S. officials Marc Baier, Ryan Adams and Daniel Gericke, as well as a cybersecurity company called DarkMatter that has contracted with the United Arab Emirates.

In the lawsuit, al-Hathloul alleges that the trio oversaw a project for DarkMatter that hacked into her iPhone to track her location and steal information as part of broader surveillance efforts targeting dissidents within the UAE and its close ally Saudi Arabia. She said the hacking of her phone led to her “arbitrary arrest by the UAE’s security services and rendition to Saudi Arabia, where she was detained, imprisoned, and tortured.”

FILE PHOTO: Saudi women's rights activist Loujain al-Hathloul is seen in this undated handout picture
Saudi women’s rights activist Loujain al-Hathloul is seen in this undated handout picture. 

Handout . / REUTERS


“Companies that peddle their surveillance software and services to oppressive governments must be held accountable for the resulting human rights abuses,” said EFF Civil Liberties Director David Greene.

DarkMatter assigned her the codename of “Purple Sword,” the lawsuit says, citing a 2019 investigation by Reuters that first detailed the hacking of al-Hathloul.

The lawsuit is the latest legal challenge to the secretive private cyber-surveillance industry, which often sells pricey hacking services to authoritarian governments that are used to secretly break into phones and other devices of activists, journalists, political opponents and others. Tech giant Apple filed a lawsuit last month against Israel’s NSO Group seeking to block the world’s most infamous hacker-for-hire company from breaking into Apple’s products, like the iPhone.

Baier, Adams and Gericke admitted in September to providing sophisticated computer hacking…

Source…