Yazılar

Stellantis reports data breach at third-party provider for North America

/in /tarafından

Stellantis, the parent company of Chrysler, said on Sunday it had detected unauthorized access at a third-party service provider supporting its North American customer service operations.

The company confirmed that the breach exposed only basic contact information, with no financial or highly sensitive personal data compromised. Stellantis did not specify how many customers were affected.

“Upon discovery, we immediately activated our incident response protocols … and are directly informing affected customers,” Stellantis said, adding that authorities have been notified. The automaker urged customers to remain vigilant against phishing attempts.

The breach is the latest in a growing wave of cyberattacks targeting automakers. Earlier this month, Jaguar Land Rover was forced to shut factories until September 24 after a major cyber incident disrupted retail and production operations.

The rise in attacks reflects the increasing vulnerability of the automotive industry, as digital platforms and connected services become more integral to customer operations and vehicle support systems.

Vietnam investigates cyberattack on creditors’ data

/in /tarafından

Vietnam’s National Credit Information Center (CIC), which is overseen by the State Bank of Vietnam, has suffered a cyberattack targeting its database of creditors’ information. Authorities said the breach involved unauthorized access aimed at stealing personal data such as identities, credit payments, risk assessments, and credit card details.

The cybersecurity agency confirmed the investigation is ongoing, while CIC separately notified financial institutions in a September 11 letter, suspecting that the attack was carried out by the hacker group Shiny Hunters—a collective notorious for targeting companies like Google, Microsoft, and Qantas.

Officials stressed that CIC’s systems remain functional, with no disruption to operations or visible damage. However, the scope of the data leak has not been disclosed. Vietnam’s central bank declined to comment, and Shiny Hunters could not be reached.

JPMorgan analysts warned that while the incident does not yet pose a systemic risk, it may lead to higher cybersecurity costs for Vietnamese banks and could potentially affect deposit flows if further breaches occur.

Vietnam has already been grappling with a rising wave of data leaks. A 2024 report by telecom giant Viettel noted that 14.5 million leaked accounts in Vietnam represented 12% of global total leaks, underscoring the country’s growing vulnerability to cybercrime.

Block Wins Dismissal of Shareholder Lawsuit Over 2021 Cash App Breach

/in /tarafından

Block (XYZ.N), the fintech company led by Jack Dorsey, has defeated a shareholder lawsuit tied to a 2021 Cash App data breach that exposed information from about 8.2 million users.

The Case

  • Shareholders accused Block of:

    • Inflating its stock price by failing to disclose weak data security before the breach.

    • Delaying disclosure until April 2022, nearly four months after the incident.

    • Misleading Afterpay shareholders ahead of its $29 billion acquisition of the BNPL firm in January 2022.

Court’s Ruling

  • U.S. District Judge Margaret Garnett in Manhattan dismissed the case.

  • She ruled there was no evidence Block intended to defraud investors.

  • General statements about data security risks were not guarantees of system safety.

  • Shareholders also failed to prove:

    • A unique link between alleged misstatements and the Afterpay deal.

    • That Block executives had a specific motive or benefit from the alleged omissions.

Context

  • Block has faced regulatory pressure over Cash App:

    • $80M settlement with 48 U.S. state regulators (Jan 2024).

    • $40M settlement with New York (Apr 2024).

  • Despite these issues, Cash App processed $283B in inflows in 2024 and had 57M monthly active users by year-end.

What’s Next

  • The case (In re Block Inc Securities Litigation, No. 22-08636) is now dismissed, though investors could still pursue an appeal.

  • For Block, the ruling removes a major legal overhang as it continues to scale Cash App and integrate Afterpay.