Happy Friday! Let’s recap this week’s cybersecurity news. Here’s what you might have missed this week:
After a 2021 data breach affecting 76 million T-Mobile customers exposed their sensitive information, compensation is finally coming. T-Mobile has decided to settle a class-action lawsuit rather than take it to court and will be paying out a total of $350 million to its affected customers.
(–Source: AOL
Read More: T-Mobile to Shell Out $350 Million to Customers in Wake of Massive Data Breach )
On Monday morning, the Penn-Haris-Madison school district notified administrators of a network breach, shutting down all network-connected desktop computers as a safety precaution.
Although student and staff Wi-Fi devices are still safe to use and standardized testing is planned to continue as usual, the district did experience some Wi-Fi and internet interruptions as P-H-M Technology investigated and worked to isolate the threat.
(–Source: USA Today
Read More: PHM ransomware cyber attack not expected to affect standardized tests )
An unauthorized third party removed files from the IT network of Legacy Professionals, LLP, compromising an unknown number of customer Social Security numbers and other sensitive information.
The company’s filing with the Attorney General of Maine includes information that shows that this incident may have happened in 2024, though it was only recently announced. Data breach notification letters are being sent out to all affected parties.
(–Source: JD Supra
Read More: Legacy Professionals Data Breach Impacts an Unknown Number of Consumer SSNs | Console and Associates, P.C. – JDSupra )
Reading Cooperative Bank (RCB), a billion-dollar bank based in Massachusetts, recently notified its customers of a cyberattack that occurred sometime between August 2024 – January 2025.
This incident was the result of a bank employee falling victim to a phishing email from an unknown sender at another organization and this attack may have compromised personal information of customers. RCB has taken action by implementing additional cybersecurity measures and working with both internal and external experts.
(–Source: The Daily HODL
Read More: 24,041 Americans Affected As Billion-Dollar Bank Suffers Data Breach )
Over the course of a year, 900+ digital concert tickets, mostly for Taylor Swift’s Eras Tour, were stolen by hackers and sold for a profit of more than $600,000.
Two hackers were arrested for their exploitation of a loophole which allowed them to steal this large number of tickets from an offshore ticket vendor and resell them for a large profit at the expense of fans simply trying to attend the popular singer’s tour. The attack was carried out by two employees of a StubHub third-party contractor and two co-conspirators.
(–Source: Deadline on MSN
Read More: Hackers Arrested After Fencing $600K Of Stolen Taylor Swift Eras Tour Tickets )
