|
|
|
|
|
PHOTO: ANDREW KELLY/REUTERS
|
|
|
|
|
Chipotle Mexican Grill said its Workday human resources system was breached in October. An unspecified number of employees had their personal information exposed, the company said. Chipotle also saw suspicious activity in some payroll accounts, such as attempts to change deposit information. Chipotle's corporate network wasn't hacked, the company said. Rather, the attackers used phishing and social engineering.
|
|
|
|
The European Space Agency disclosed that servers outside its network used to collaborate with partners were hacked and unclassified information breached. Hackers claimed to have stolen 200 gigabytes of data, including credentials. (Bleeping Computer)
|
|
|
A new law in New York limits the tech that state and local governments can buy, banning products from companies with close ties to foreign governments. That includes chips, drones, cameras and computers.
-
The state CIO must maintain a list of prohibited technology under the law, which takes effect in 2027. (StateScoop)
|
|
|
|
|
420
|
|
Number of M&A deals in cybersecurity in 2025, according to research from SecurityWeek. That outpaces 405 deals in 2024.
Eight transactions topped $1 billion:
Google to buy Wiz for $32 billion
Palo Alto Networks to buy CyberArk for $25 billion
Palo Alto Networks bought Chronosphere for $3.35 billion
ServiceNow to buy Armis for $7.75 billion and Veza for $1 billion
Francisco Partners to buy Jamf for $2.2 billion
Veeam Software bought Securiti AI for $1.725 billion
Proofpoint bought Hornetsecurity for $1.8 billion
|
|
|
|
|
|
|
|
|
|
PHOTO: ZAK BENNETT FOR WSJ
|
|
|
|
|
A police drone might be behind your next ticket. Law enforcement is expanding the use of remotely controlled drones despite concerns of civil liberties groups. In Sunny Isles Beach, Fla., drones have helped free up resources for the department, which previously had to deploy two officers to patrol the closed beach at night at the expense of other priorities. (WSJ)
|
|
|
|
Disney settled claims over its data-collection practices with children, in a deal where it was ordered to pay $10 million. A complaint filed by the Justice Department in a California district court alleged that Disney failed to designate YouTube video content as directed toward children. As a result, the claim said, Disney collected information from and targeted ads toward children without parental notice and consent. (WSJ)
|
|
|
U.S. lifts sanctions against Predator spyware executives. An Israeli, a Polish national and a native of Switzerland are no longer under a Biden-era sanctions order that accused them, along with several others linked to the Intellexa Consortium, of building and distributing spyware to target U.S. officials, journalists and others.
-
Intellexa, a diffuse network of entities, was founded by a former member of Israel's intelligence agency. (Bloomberg)
|
|
|
|
|
|
|
|
|
|
|
|
