What is a JSON feed? Learn more

JSON Feed Viewer

Browse through the showcased feeds, or enter a feed URL below.

Now supporting RSS and Atom feeds thanks to Andrew Chilton's feed2json.org service

CURRENT FEED

Cyber Security & Privacy News | Hippogriff LLC

Every week Hippogriff shares some of the most alarming data breach and privacy infringing occurrences throughout the world. Keep stopping by to see the most recent entries.

A feed by Wizards that are not wee at work...

XML


150,000 Arrest Records "Accidentally" Deleted from Police Database

Permalink - Posted on 2021-01-15 17:00

A technical issue has resulted in 150,000 arrest records being accidentally deleted from the Police National Computer system, used by law enforcement organisations across the UK to store and share criminal records. The lost data included fingerprints, DNA, as well as arrest histories.


Omani Detergent Company Exposed to Cyber Attack

Permalink - Posted on 2021-01-15 17:00

In a disclosure published by the Muscat Securities Market said: "The National Detergent company want to informs you of its exposure to an electronic attack on the company's information technology network that caused the loss of some electronic data."


Pitkin County, CO COVID-19 Xase Investigations Exposed Online

Permalink - Posted on 2021-01-15 17:00

Pitkin County learned of an incident that may affect the privacy of certain information and is providing notice so that affected individuals may take steps to better protect their personal information, should they feel it is appropriate to do so.


Polish DPA Fines Virgin Mobile Polska €460,000 for Lack Security Measures

Permalink - Posted on 2021-01-15 17:00

The President of the Personal Data Protection Office (UODO) imposed a fine of PLN 1.9 million (EUR 460,000) on Virgin Mobile Polska for the lack of implemented appropriate technical and organisational measures to ensure the security of the processed data.


Ronald McDonald House Notifying Almost 18,000 Guests of Blackbaud Breach

Permalink - Posted on 2021-01-15 17:00

Ronald McDonald House is well-known in the U.S., for offering housing accommodations to families who have children being treated for serious illnesses. As it says on their site: “A Ronald McDonald House program helps reduces stress and financial burden for families when they must travel far from home to access medical care for their child…. Research shows that patients whose families stayed at the Ronald McDonald House are the sickest, traveled the farthest distances, and spent the longest time in the hospital.”


South Country Health Alliance Breach Impacts 66,874 Plan Members

Permalink - Posted on 2021-01-15 17:00

Owatonna, MN-based Minnesota South Country Health Alliance has discovered an unauthorized individual accessed the email account of an employee that contained the protected health information of 66,874 of its members.


12,000+ Workers' IDs, Banking Details, etc. Personal Data Leaked by U.K. Staffing Agency

Permalink - Posted on 2021-01-15 17:00

The database appears to belong to Nohow International, a UK-based recruitment and staffing agency that provides blue- and white-collar personnel services to companies across the UK and other countries.


Scotland Environmental Regulator Hit by Ongoing Ransomware Attack

Permalink - Posted on 2021-01-15 17:00

The Scottish Environment Protection Agency (SEPA) confirmed on Thursday that some of its contact center, internal systems, processes and internal communications were affected following a ransomware attack that took place on Christmas Eve.


Ransomware Attacks Now to Blame for Half of Healthcare Data Breaches

Permalink - Posted on 2021-01-15 17:00

Almost half of data breaches at hospitals were because of ransomware attacks – and those attacks could've been prevented with timely patching.


2020 Saw 6% Rise in Number of CVEs Reported

Permalink - Posted on 2021-01-14 17:00

Among the 2020 vulnerabilities disclosed were 29 Tenable identified as net-new zero-day vulnerabilities. Of the 29 vulnerabilities, over 35% were browser-related vulnerabilities, while nearly 29% were within operating systems. Font libraries were also popular, accounting for nearly 15% of zero-day vulnerabilities.


Hy-Vee Data Breach Settlement Proposed

Permalink - Posted on 2021-01-14 17:00

A preliminary settlement agreement regarding a data breach that impacted customers of Iowa-based grocery store chain Hy-Vee has been proposed. Hy-Vee launched an investigation after detecting unauthorized activity on some of its payment processing systems on July 29, 2019. The investigation found that malware designed to access and steal payment card data from cards used on point-of-sale (POS) devices had been installed at certain Hy-Vee fuel pumps and drive-thru coffee shops. Restaurants were also impacted, including Hy-Vee Market Grilles, Hy-Vee Market Grille Expresses, and the Wahlburgers locations that Hy-Vee owns and operates, as well as the cafeteria at the chain's West Des Moines corporate office.


Telegram Bots at Heart of Classiscam Scam-as-a-Service

Permalink - Posted on 2021-01-14 17:00

A new automated scam-as-a-service has been unearthed, which leverages Telegram bots in order to steal money and payment data from European victims. The scam, which researchers call Classiscam, is being sold as a service by Russian-speaking cybercriminals, and has been used by at least 40 separate cybergangs – which altogether made at least $6.5 million using the service in 2020.


Healthcare Industry Web Application Attacks Increased by 51% in December

Permalink - Posted on 2021-01-14 17:00

In December, Imperva Research Labs detected significant increases in four types of attacks. The largest increase was seen in protocol manipulation attacks, which increased 76% from the previous month and were the third most common attack type. There was a 68% increase in remote code execution / remote file inclusion attacks, although they only accounted for a relatively small volume of attacks. Cross-site scripting (XSS) attacks were the most common attack type, with attack volume increasing 43% from the previous month. SQL injection attacks were the second most common attack type, with these attacks increasing by 44% since November.


TikTok Harvested MAC Addresses by Exploiting Android Loophole

Permalink - Posted on 2021-01-14 17:00

The ongoing controversies surrounding TikTok hit a new gear on Thursday with a bombshell report accusing the Chinese company of spying on millions of Android users using a technique banned by Google.


3BB Hackers Dump Customer Data, Thai Regulator Seeks Answers from Businesses

Permalink - Posted on 2021-01-14 17:00

On December 10, DataBreaches.net reported a hack and ransom demand by ALTDOS on Country Group Securities. The hackers demanded 170 BTC (approximately USD $3,000,000.00 at the time). CGS allegedly never responded to their demands at all, so ALTDOS provided some data as proof that they dumped publicly. To date, the attackers do not appear to have followed up on that attack, but recently informed DataBreaches.net that they intend to follow up.


Tencent, Xpeng, Other Firms Ordered to Fix App Security Flaws

Permalink - Posted on 2021-01-14 17:00

More than 70 per cent of the 201 apps reprimanded by the Guangdong Communications Administration failed to specify the purpose, means and scope of data collection. Up to 40 per cent were found to have collected personal information before receiving user consent.


Saskatchewan Privacy Commissioner Investigates Potential Breach of Hunting Lcensing System

Permalink - Posted on 2021-01-14 17:00

Saskatchewan’s privacy commissioner is investigating a potential privacy breach involving the province’s hunting, angling, and trapping licence system (HAL system). The province said the incident occurred on Jan. 7 when an email regarding Hunter Harvest surveys was sent to HAL customers from a third-party agency called Aspira. Aspira sent an email that contained the customer name and HAL account identification number to about 33,000 email addresses.


Police Release Firearm Owner Details in Data Breach

Permalink - Posted on 2021-01-14 17:00

Queensland police have accidentally released details of hundreds of firearms owners in an embarrassing privacy and security breach, which is under investigation. Compounding the error, the move was an attempt to warn firearms owners to secure their properties following a spate of thefts of guns.


Fertility-Tracking App Flo Health Settles FTC Privacy Infringement

Permalink - Posted on 2021-01-14 17:00

FTC alleges Flo Health shared the health information of users with outside data analytics providers after promising that such information would be kept private.


OCR Continues HIPAA Right of Access Crackdown with $200,000 Fine

Permalink - Posted on 2021-01-13 17:00

The HHS’ Office for Civil Rights (OCR) is continuing to crackdown on healthcare providers that are not providing patients with timely access to their medical records. Yesterday, OCR announced a settlement had been agreed with Banner Health to resolve a HIPAA Right of Access investigation. Banner Health agreed to pay $200,000 to settle the case.


Confidential Data Stolen from Promutuel Ends Up online

Permalink - Posted on 2021-01-13 17:00

A gang of cyber hackers posted on the dark web confidential documents from Promutuel Insurance. The company, which has around 630,000 customers, is still paralyzed a month after a cyberattack.


King, Pierce County Schools Hit with Data Breach

Permalink - Posted on 2021-01-13 17:00

The Puget Sound Educational Service District (PSESD) sent out a notice to current and former students and employees of King and Pierce County Schools upon learning of a data breach within their computer network. It's unclear what specific information was hacked, but PSESD officials said it could potentially be employees and/or students' names, dates of birth, Social Security numbers, financial account information, and high-level medical information.


National Board of Certified Counselors, Inc. Has Data Breached

Permalink - Posted on 2021-01-13 17:00

An investigation determined that the malware was introduced into the system by an unauthorized actor who also accessed and acquired certain files within NBCC's system. The unauthorized access occurred between August 31, 2020 to September 7, 2020.


Update: Cyber Attack on European Medicines Agency

Permalink - Posted on 2021-01-13 17:00

The ongoing investigation of the cyberattack on EMA revealed that some of the unlawfully accessed documents related to COVID-19 medicines and vaccines belonging to third parties have been leaked on the internet.


India Just Had the Biggest Medical Records Breach Ever

Permalink - Posted on 2021-01-13 17:00

Public debate this week has been dominated by how WhatsApp compromises personal data and privacy, and the pros and cons of its competitors. On 5 January, there was a story on a technology portal about how details of COVID-19 test results of tens of thousands of patients were leaked on the net through multiple Government of Delhi domains (delhigovt.nic.in/delhi.gov.in/revenue.delhi.gov.in). Individual reports of lab tests were available as well. Yet, no media follow up happened on the issue.


Healthcare Hit by 187 Million Monthly Web App Attacks in 2020

Permalink - Posted on 2021-01-13 17:00

Web application attacks in the healthcare sector surged in December as distribution of the first COVID-19 vaccines began, according to new data from Imperva. The security vendor claimed that attacks jumped 51% last month from detected volumes in November in a vertical that has been bombarded by cyber-criminals over the past year. Four specific attack types saw the largest increases: cross-site scripting (XSS) detections jumped 43%; SQL injection attacks surged 44%; protocol manipulation attacks soared 76%; and remote code execution/remote file inclusion detections increased 68% in December.


Mimecast Certificate Hacked in Microsoft Email Supply-Chain Attack

Permalink - Posted on 2021-01-13 17:00

A Mimecast-issued certificate used to authenticate some of the company’s products to Microsoft 365 Exchange Web Services has been “compromised by a sophisticated threat actor,” the company has announced. A compromise means that cyberattackers could take over the connection, though which inbound and outbound mail flows, researchers said. It would be possible to intercept that traffic, or possibly to infiltrate customers’ Microsoft 365 Exchange Web Services and steal information.


New Zealand Central Bank Breach Hit Other Companies

Permalink - Posted on 2021-01-12 17:00

The Palo Alto-headquartered firm’s File Transfer Application (FTA) was targeted by malicious third parties, presumably going after the sensitive info stored and shared via the service.


Two-Thirds of Employees Don't Consider Security Whilst Home Working

Permalink - Posted on 2021-01-12 17:00

Although 71% of workers do not think about the implications a cybersecurity breach could have on their work and job security, when asked, 45% said they could lose their job if their working device’s security was compromised.


Data Breach at Capcom Gaming Company Widens

Permalink - Posted on 2021-01-12 17:00

Capcom, the game developer behind Resident Evil, Street Fighter and Dark Stalkers, now says its recent attack compromised the personal data of up to 400,000 gamers.


Clearfield County, PA Hit by Cyber Attack

Permalink - Posted on 2021-01-12 17:00

A cyberattack infected all of Clearfield County’s servers and 15 percent of its computers over the weekend. Commissioner John A. Sobel, board chairman, Tony Scotto and Dave Glass issued the following public statement Tuesday: “Clearfield County recently detected and is responding to malware activity on its computer network. As soon as we learned of this, we began working to investigate to restore operations and determine the effects of the incident. “We’re also working with nationally-recognized, third-party cybersecurity consultants … at this time, there’s no evidence that our information has been compromised. We will continue to actively monitor the situation.


Networking Giant Ubiquiti Alerts Customers of Potential Data Breach

Permalink - Posted on 2021-01-12 17:00

Ubiquiti owners are frustrated as UniFi requires them to create cloud accounts to manage local devices, and many would prefer to be able to manage everything locally. Over the weekend, Ubiquiti suffered a widespread outage to their UniFi cloud management platform that prevented users from using the web and mobile apps or manage their devices.


Feds Will Weigh Whether Cyber Best Practices Were Followed When Assessing HIPAA Fines

Permalink - Posted on 2021-01-12 17:00

The Department of Health and Human Services (HHS) will now consider whether organizations followed best practices for protecting medical information before assessing fines for violation of the Health Insurance Portability and Accountability Act. The new rule, which President Trump signed into law last week, amends the Health Information Technology for Economic and Clinical Health Act so that the HHS secretary could forgo fines or cut short an investigation if a organization can show it implemented best practices for protecting health information for at least a year.


High Court Rules Against Government Bulk Hacking

Permalink - Posted on 2021-01-11 17:00

Non-profit Privacy International challenged the practice in the Investigatory Powers Tribunal (IPT), a secretive court set-up to handle cases involving the intelligence agencies. However, the IPT ruled in the latter’s favor, back in 2016. Although the government then tried to block a High Court challenge to the ruling, by claiming the tribunal’s decisions can’t be subject to judicial review, it lost, and the case went ahead. On Friday, the High Court agreed with Privacy International, quashing the IPT decision. It cited 250 years of common law precedent whereby individuals have a right not to not have their property searched without lawful authority, even in cases of national security. As general warrants don’t apply to individuals, the authorities are wrong to take this approach, it found.


Ransom Demanded After AKVA Group Victim of Major Virus Attack

Permalink - Posted on 2021-01-11 17:00

AKVA group CEO Knut Nesse told the newspaper Dagens Næringsliv that the cyber attack was ransomware. Nesse would not comment on how much ransom they demand or whether the company will pay. Among the systems affected is the software Fishtalk that AKVA group supplies to a wide range of fish farming companies.


China's Socialarks Exposes 200+ Million Facebook, Instagram and LinkedIn Users

Permalink - Posted on 2021-01-11 17:00

The company’s unsecured ElasticSearch database contained personally identifiable information (PII) from at least 214 million social media users from around the world, using both populist consumer platforms such as Facebook and Instagram, as well as professional networks such as LinkedIn.


Ransomware Attack Hits Short Line Rail Operator OmniTRAX

Permalink - Posted on 2021-01-11 17:00

Colorado-based short line rail operator and logistics provider OmniTRAX was hit by a recent ransomware attack and data theft that targeted its corporate parent, Broe Group. OmniTRAX confirmed to FreightWaves that the cyberattack had occurred after the Conti ransomware gang posted stolen data from a leak site. The company, however, provided no details about the incident and whether it impacted any operations.


Communauto Hit by Cyber Attack

Permalink - Posted on 2021-01-11 17:00

Communauto, the Montreal-based car-sharing service, confirmed on Friday that its computer systems were hit with a cyber attack over the holidays that compromised the personal information of some of its clients, including member numbers, names as well as email and civic addresses.


1 Million Highly Sensitive NSFW Pictures Leaked by Korean Teen Dating App

Permalink - Posted on 2021-01-11 17:00

The database appears to belong to the free Korean dating app 스윗톡, which may go by the name Sweet Tea, Sweet Talk or Sweet Chat. The database that discovered was related to “sweetchat”.


WhatsApp Group Chat Links Seen Again on Google Search

Permalink - Posted on 2021-01-11 17:00

New Delhi, Google has again indexed invite links to private WhatsApp group chats, meaning anyone can join various private chat groups with a simple search. WhatsApp is making several private groups available across the Web by indexing group chat invites, as their links can be accessed by anyone using a simple search on Google. Independent cybersecurity researcher Rajshekhar Rajaharia shared screenshots with IANS shows indexing of WhatsApp group chat invites on Google. Recently, WhatsApp faced a huge security crisis when over 4,000 links inviting people to join private groups had been indexed on Google, suggesting a massive data breach and enabled anyone to join these groups.


United Nations Data Breach Exposed Over 100k UNEP Staff Records

Permalink - Posted on 2021-01-11 17:00

Today, researchers have responsibly disclosed a security vulnerability by exploiting which they could access over 100,000 private employee records of United Nations Environmental Programme (UNEP). The data breach stemmed from exposed Git directories and credentials, which allowed the researchers to clone Git repositories and gather a large amount of personally identifiable information (PII) associated with UNEP employees.


New Zealand's Central Bank says Its Systems Have Been Hacked

Permalink - Posted on 2021-01-11 17:00

New Zealand’s central bank says that one of its data systems has been breached by an unidentified hacker who potentially accessed commercially and personally sensitive information. A third-party file sharing service used by the Reserve Bank of New Zealand to share and store sensitive information was illegally accessed, the Wellington-based bank said in a statement.


Hacker Locks Internet-Connected Chastity Cage, Demands Ransom

Permalink - Posted on 2021-01-11 17:00

A victim who asked to be identified only as Robert said that he received a message from a hacker demanding a payment of 0.02 Bitcoin (around $750 today) to unlock the device. He realized his cage was definitely "locked," and he "could not gain access to it."


Dassault Falcon Jet Reports Data Breach After Ransomware Attack

Permalink - Posted on 2021-01-08 17:00

Dassault Falcon Jet has disclosed a data breach that may have led to the exposure of personal information belonging to current and former employees, as well as their spouses and dependents.


Ransomware Attack Costs Health Network $1.5 Million a Day

Permalink - Posted on 2021-01-08 17:00

The University of Vermont Health Network, which is based in Burlington, was hit by ransomware in October 2020, and is yet to make a full recovery. Most computer systems have been brought back online; however, some applications are still down, causing delays in various departments, including radiology.


Lake Region Healthcare Recovering from Ransomware Attack

Permalink - Posted on 2021-01-08 17:00

Lake Region Healthcare in Fergus Falls, Minnesota is investigating a ransomware attack that was first detected on December 22, 2020. The attack impacted several of the healthcare provider’s systems and caused some disruption to normal operations at its locations in Fergus Falls, Battle Lake, Ashby, and Barnesville.


Tasmania Police Called in After Ambulance Patient Details Published Online

Permalink - Posted on 2021-01-08 17:00

The private details of every Tasmanian who has called an ambulance since November last year have been published online by a third party in a list still updating each time paramedics are dispatched. The breach of Ambulance Tasmania's paging system has been described as "horrific" by the Health and Community Services Union, which has suggested the data dump could leave the Government open to litigation.


Ben-Gurion University Targeted by Cyber Attack

Permalink - Posted on 2021-01-08 17:00

A cyberattack targeted Ben-Gurion University of the Negev resulting in a breach in a number of its servers, the university announced on Wednesday. The attack was found during routine scans that were being conducted by the university along with the National Cyber Directorate.


Ryuk Ransomware Earns Over $150 Million for Cyber Gang

Permalink - Posted on 2021-01-07 17:00

In a joint report published today, threat intel company Advanced Intelligence and cybersecurity firm HYAS said they tracked payments to 61 Bitcoin addresses previously attributed and linked to Ryuk ransomware attacks. AdvIntel and HYAS say the extorted funds are gathered in holding accounts, passed to money laundering services, and are then either funneled back into the criminal market and used to pay for other criminal services or are cashed out at real cryptocurrency exchanges.


Data Analytics Company Settles with FTC Over Alleged Data Security Violations

Permalink - Posted on 2021-01-07 17:00

Ascension, a data analytics company serving the mortgage industry, recently settled with the Federal Trade Commission (FTC) over charges that it violated the Gramm-Leach-Bliley (GLB) Act Safeguards Rule, as well as its own policies, when it neglected to vet the data security practices of a service provider and require the vendor to adequately protect personal information of mortgage holders. While the settlement involves a financial institution subject to the GLB Act, it is instructive for all businesses that maintain consumers’ personal information and share it with third parties.


Two-Year Data Breach Hits Employees' Email at WTTW, WFMT

Permalink - Posted on 2021-01-07 17:00

Window to the World Communications, parent company of WTTW-Channel 11 and WFMT 98.7-FM, alerted employees this week to the discovery of a data breach in its computer system believed to have occurred over nearly a two-year period. Investigations by a law firm and forensic accounting firm determined that emails and personal information of approximately 40 staffers were hacked between December 2018 and August 2020. On Tuesday a company representative confirmed there was "unusual activity relating to an employee email account that may have impacted current and former employee information."


Facebook’s Mandatory Data-Sharing Rules for WhatsApp Spark Ire

Permalink - Posted on 2021-01-07 17:00

The move also comes at a time when Facebook is embroiled in twin antitrust suits filed by dozens of state and the federal government that call for the tech giant to be broken up due to exactly this type of activity. The lawsuits allege that the company has abused its dominance in the digital marketplace and engaged in anti-competitive behavior. Users, for their part, are less than pleased with the situation. The increasingly tight relationship between Facebook and WhatsApp already has seen a migration of users to other messaging services, including Telegram and Signal.


Data Stolen from London Council Published Online

Permalink - Posted on 2021-01-07 17:00

Sensitive data stolen from Hackney Council in the UK has allegedly been published online, three months after the ransomware attack on the local authority that took place last year. A cyber-criminal group called Pysa/Mespinoza has claimed it has published a range of information resulting from the incident on the dark web. This includes sensitive personal data of staff and residents, such as passport documents.


Over a Third of TMT Firms Hit by Security Breach in 2020

Permalink - Posted on 2021-01-07 17:00

Over a third of technology and media companies in the UK suffered a serious cyber-incident last year, according to new data from insurer Hiscox. The firm claimed that 34% of firms in the technology, media and telecoms (TMT) sector were caught out by a cyber-incident or breach in 2020, leading to a median loss of nearly $40,000.


Stolen Data of Over 10 Million Indian Consumers Up for Sale

Permalink - Posted on 2021-01-07 17:00

After hacking masked credit and debit card data of crores of Juspay users, the same hacker possibly known as 'ShinyHunters' is now selling databases belonging to three more Indian companies on Dark Web, independent cyber security researcher Rajshekhar Rajaharia claimed on Wednesday.


Poor Software Quality Costs U.S. $2.08tn

Permalink - Posted on 2021-01-06 17:00

Poor-quality software cost America over $2tn last year, according to a new report by the Consortium for Information & Software Quality (CISQ). The "Cost of Poor Software Quality in the US: A 2020 Report," which was co-sponsored by American software company Synopsys, found that the cost of poor software quality (CPSQ) in the US in 2020 was approximately $2.08tn. Researchers looked at poor software quality resulting from software failures, unsuccessful development projects, legacy system problems, technical debt, and cybercrime enabled by exploitable weaknesses and vulnerabilities in software. Operational software failure was determined to be the leading driver of the total CPSQ. CISQ estimated the cost of operational software failure in the US in 2020 as $1.56tn, a figure that has increased 22% since 2018.


British Airways Plans £3bn Breach Settlement

Permalink - Posted on 2021-01-06 17:00

The UK's flag-carrier airline is planning to begin settlement discussions that could see customers who became the victims of a data breach receive a compensation payout of up to £3bn. British Airways customers were impacted by two data breaches in 2018. Between April and July 2018, some 185,000 British Airways reward-booking customers were notified that their personal information and financial details had been compromised, while a further 380,000 users of the airline’s app and website had their information exposed between August and September 2018. Data compromised in the breaches included customer names, billing addresses, and email addresses. Payment card information, including card numbers, expiry dates, and—in tens of thousands of cases—the CVV security code, was also exposed. No passport details were stolen.


Nissan Source Code Leaked Online After Git Repo Misconfiguration

Permalink - Posted on 2021-01-06 17:00

The source code of mobile apps and internal tools developed and used by Nissan North America has leaked online after the company misconfigured one of its Git servers.


WhatsApp: Share Your Data with Facebook or Delete Your Account

Permalink - Posted on 2021-01-06 17:00

After WhatsApp updated its Privacy Policy and Terms of Service on Monday with additional info on how it handles users' data, the company is now notifying users through the mobile app that, starting February, they will be required to share their data with Facebook.


Aurora Cannabis Breach Exposes Personal Data of Former, Current Workers

Permalink - Posted on 2021-01-06 17:00

A data breach at Aurora Cannabis has exposed the personal information of an unknown number of the Canadian company’s current and former employees, Marijuana Business Daily has learned. An email sent to a victim of the data breach cites a Dec. 25 “cybersecurity incident during which unauthorized parties accessed data in (Microsoft cloud software) SharePoint and OneDrive.” The email was shared with MJBizDaily. The victim, a former Aurora employee who was laid off in February, wasn’t notified of the breach until late in the evening of Dec. 31.


Ransomware Surge Drives 45% Increase in Healthcare Cyber Attacks

Permalink - Posted on 2021-01-05 18:00

Although the attacks span a variety of categories — including ransomware, botnets, remote code execution and DDoS — perhaps unsurprisingly, it is ransomware that displayed the largest increase overall and poses the biggest threat to HCOs, according to Check Point. Ryuk and Sodinokibi (REvil) were highlighted as the main culprits.


Indian government Sites Leaking Patient COVID-19 Test Results

Permalink - Posted on 2021-01-05 18:00

Websites of multiple Indian government departments, including national health and welfare agencies, are leaking COVID-19 lab test results for thousands of patients online. These leaked lab reports which are being indexed by search engines expose patient data, and whether they tested positive for coronavirus.


Italy's Ho Mobile Has 2.5 Million Customers Violated in Data Breach

Permalink - Posted on 2021-01-05 18:00

Ho Mobile, an Italian mobile operator, owned by Vodafone, has confirmed a massive data breach on Monday and is now taking the rare step of offering to replace the SIM cards of all affected customers. The breach is believed to have impacted roughly 2.5 million customers. It first came to light last month on December 28 when a security analyst spotted the telco's database being offered for sale on a dark web forum.


Auto Parts Distributer NameSouth Has Data Leaked After Ransomware Attack

Permalink - Posted on 2021-01-05 17:00

A 3GB archive that purportedly belongs to NameSouth, a US-based auto parts shop, has been publicly leaked by the NetWalker ransomware group. NameSouth seems to be the latest victim of the ransomware gang that surfaced sometime in 2019. NetWalker’s targets range across multiple industries, with archives of stolen data from about a hundred victimized businesses publicly posted on the gang’s darknet website to date.


SolarWinds, Top Executives Hit with Class Action Lawsuit Over Orion Software Breach

Permalink - Posted on 2021-01-05 17:00

SolarWinds and some of its top executives have been hit with a class action lawsuit by stockholders, who allege the company lied and materially misled them about security practices leading up to a massive breach of its Orion management software that has reverberated throughout the public and private sector.


Over 250 Organizations Breached via SolarWinds Supply Chain Hack

Permalink - Posted on 2021-01-05 17:00

SolarWinds and others are trying to determine if SUPERNOVA, whose delivery involved exploitation of a zero-day vulnerability, is connected to SUNBURST. In its latest update, the company said it does “not have a definitive answer at this time” regarding SUNBURST and SUPERNOVA possibly being related.


Data from August Breach of Amazon Partner Juspay Dumped Online

Permalink - Posted on 2021-01-05 17:00

Researcher discovered info of 35 million credit-card users from an attack on the Indian startup, which handles payments for numerous online marketplaces.


Ticketmaster Coughs Up $10 Million Fine After Hacking Rival Business

Permalink - Posted on 2021-01-04 18:00

The American ticket sales and distribution giant, which is owned by Live Nation, in 2013 hired an employee who formerly worked for Ticketmaster’s rival company (reported by some outlets to be Songkick, a now-defunct company that offered concert pre-sale tickets), according to the Department of Justice (DoJ) last week. This co-conspirator illegally retained credentials from the rival firm, which he and other Ticketmaster executives then used to hack into the victim company’s systems. From there, they were able to monitor the company’s draft ticketing web pages, allowing them to find out which artists planned to use the rival company to sell tickets. They were also able to hack into and snoop on the company’s Artist Toolbox, a password-protected app that provides real-time data about ticket sales.


Apex Laboratory Says Patient Data Stolen in Ransomware Attack

Permalink - Posted on 2021-01-04 18:00

At-home laboratory services provider Apex Laboratory said hackers stole some patient data during a ransomware attack that took place several months ago.


South African Government to Replace Sassa Grant Cards After Security Breach

Permalink - Posted on 2021-01-04 18:00

Minister of Social Development Lindiwe Zulu says that government is in talks with stakeholders to replace South African Social Security Agency (Sassa) cards after a security breach, first reported in 2019. Responding to a written parliamentary Q&A in December, Zulu said that Sassa cards are actually bank cards issued by the South African Post Office (SAPO) on behalf of Postbank to approved applicants who choose to collect their social grants through the post office. Although Sassa does not manage the cards, she noted that it was a priority of the agency to intervene in instances of fraud or corruption.


100 Million Card Details Leaked to Dark Web in Juspay Data Breach

Permalink - Posted on 2021-01-04 18:00

Personal details such as email ids, full names, phone numbers,and debit and credit card details of over a 100 million users of Juspay has been breached by a hacker who posted the data for sale on the dark web, discovered a cyber-researcher last week. The Bangalore start-up processes transactions from Amazon, MakeMyTrip, Swiggy, Uber, Airtel, Vodafone Idea and other well-used applications in India and had announced the data breach in August of 2020.


TransLink Confirms Ransomware Data Theft, Still Restoring Systems

Permalink - Posted on 2021-01-04 18:00

Metro Vancouver's transportation agency TransLink has confirmed that the Egregor ransomware operators who breached its network at the beginning of December 2020 also accessed and potentially stole employees' banking and social security information. TransLink announced on December 1, 2020, that the transportation network was experiencing issues with their computing systems following a cyberattack.


T-Mobile Hacked Again

Permalink - Posted on 2021-01-04 18:00

The wireless carrier has suffered a data breach for the fourth time since 2018. T-Mobile was hit with a breach in 2018 that exposed personal information of 2 million customers, and again in 2019 when the data of 1 million prepaid customers was stolen. Then in March 2020, T-Mobile employee emails were hacked as well as some customer financial data.


Lazarus Attacks Vaccine Research

Permalink - Posted on 2020-12-23 17:00

The attacks, which both occurred in the fall of 2020, were identified by researchers at Kaspersky. Despite the use of different tactics, techniques, and procedures (TTPs) in each assault, the researchers have now assessed "with high confidence" that both malicious activities can be attributed to the Lazarus group.


ACLU Sues FBI to Learn How It Obtains Data from Encrypted Devices

Permalink - Posted on 2020-12-23 17:00

The FBI has often turned to third parties for help in accessing information stored on encrypted devices, but it has come to light in recent court documents that the agency’s Electronic Device Analysis Unit (EDAU) has been acquiring solutions that can help it break into encrypted devices on its own. The ACLU has filed a request under the Freedom of Information Act (FOIA) in hopes of obtaining more information on the EDAU’s capabilities and the technologies it has used. However, the FBI provided what is known as a Glomar response, which indicates that the agency does not even want to confirm or deny the existence of any records related to EDAU, let alone share details on its capabilities.


Connecticut AG Resolves Data Breach Investigation of Sabre Hospitality Solutions

Permalink - Posted on 2020-12-23 17:00

Attorney General Tong, along with the attorneys general of 27 states, has entered into a settlement with Sabre Corp. that resolves an investigation into the 2017 data breach of Sabre Hospitality Solutions’ hotel booking system. The breach exposed the data of approximately 1.3 million credit cards. The settlement requires a payment of $2.4 million, of which the State of Connecticut will receive $174,724.78 and injunctive relief.


Roanoke College Delays Spring Semester After Cyber Attack

Permalink - Posted on 2020-12-23 17:00

Roanoke College has delayed their spring semester by almost a month after a cyberattack has impacted files and data access. Roanoke College is a private liberal arts college located in Salem, Virginia, with approximately 2,000 students.


Potential Privacy Breach of Saskatchewan Health Records in January 2020 Malware Attack

Permalink - Posted on 2020-12-23 17:00

The Saskatchewan government says a privacy breach may have occurred in an eHealth malware attack in January 2020. Officials said a breach of personal health information potentially occurred on systems administered by eHealth for the Saskatchewan Health Authority (SHA) and the Ministry of Health. The malware attack happened after an employee in the health-care sector opened a suspicious attachment in an email.


Only 30% Prepared to Secure a Complete Shift to Remote Work

Permalink - Posted on 2020-12-23 17:00

The biggest security concerns facing businesses are data leaking through endpoints (27%), loss of visibility of user activity (25%) and maintaining compliance with regulatory requirements (24%), DTEX Systems reveals. These concerns are followed by access from outside the perimeter (23%) and remote access to core business apps (18%) such as email and collaboration.


Leaky Server Exposes 12 Million Medical Records to Meow Attacker

Permalink - Posted on 2020-12-23 17:00

It was traced back to Vietnamese tech firm Innovative Solution for Healthcare (iSofH), which provides software for electronic health records and hospital management to 18 medical facilities, including eight top-tier clinics. As the server was left publicly exposed without encryption or password protection, the researchers were able to view a 4GB database of 12 million records, affecting roughly 80,000 patients and healthcare staff.


SolarWinds Claims Execs Unaware of Breach When They Sold Stock

Permalink - Posted on 2020-12-23 17:00

Texas-based IT management and monitoring solutions provider SolarWinds told the U.S. Securities and Exchange Commission (SEC) that its executives were not aware that the company had been breached when they decided to sell stock. It’s worth noting that Equifax also claimed that its executives were not aware of the massive breach suffered by the company in 2017 when they sold stock, but it later turned out that insider trading did take place.


Ministry of Justice Suffers 17 Serious Data Breaches Last Year

Permalink - Posted on 2020-12-22 17:00

The UK government department responsible for running the country’s justice system revealed in its annual report 2019-20 that it informed the Information Commissioner’s Office (ICO) of personal data loss incidents affecting a total of 121,355 people.


Britian: Just 8% of Firms Offer Regular Security Training

Permalink - Posted on 2020-12-22 17:00

A majority of UK businesses are failing to adequately train their remote working employees to spot security threats, according to new research from iomart. The cloud services company based its Cyber Security Insights It found that over a quarter (28%) of their employers offer no cybersecurity training for the distributed workforce, while a further 42% do but only to select employees. Of those who were offered training, 82% claimed that it was a short briefing rather than something more comprehensive. Less than a fifth (17%) said they had regular training sessions.


Phishers Spoof New York Department of Labor

Permalink - Posted on 2020-12-22 17:00

Scammers are impersonating New York State's Department of Labor to steal personal information from state residents seeking to claim money from a COVID relief fund.


Jefferson County PVA Office Hit by Ransomware Attack

Permalink - Posted on 2020-12-22 17:00

The Jefferson County Property Valuation Administrator's office has been hit by a ransomware attack, in which hackers are holding the agency's data hostage for payment, PVA Colleen Younger said in an interview Monday. Younger told WDRB that the agency learned of the attack on Wednesday and had closed its office -- where title researchers and members of the public can look up real estate data -- until Dec. 28.


German Funke Media Group Victim of Cyber Attack

Permalink - Posted on 2020-12-22 17:00

The FUNKE media group, to which this website belongs, was the victim of a hacker attack on Tuesday. Numerous computer systems throughout Germany were affected – including editorial offices and printing houses.


SolarWinds Adviser Warned of Lax Security Years Before Hack

Permalink - Posted on 2020-12-22 17:00

A former security adviser at the IT monitoring and network management company SolarWinds Corp. said he warned management of cybersecurity risks and laid out a plan to improve it that was ultimately ignored. In a 23-page PowerPoint presentation reviewed by Bloomberg News, Ian Thornton-Trump recommended to company executives in 2017 that SolarWinds appoint a senior director of cybersecurity, and said he told them that “the survival of the company depends on an internal commitment to security.” The following month, he terminated his relationship with the company, saying he believed its leadership wasn’t interested in making changes that would have “meaningful impact.”


Huntsville City Schools Victim of Cyber Attacl

Permalink - Posted on 2020-12-22 17:00

Huntsville City Schools warned parents about personal information being compromised in the school system's ransomware attack. School leaders say it is possible social security numbers and email addresses could be part of the information that was accessed by cybercriminals.


Trucking Giant Forward Air Hit by New Hades Ransomware Gang

Permalink - Posted on 2020-12-22 17:00

According to FreightWaves, the attack has led to business disruption as the paperwork required to release freight from customs was stored on the shutdown systems and is not available.


NOW: Pensions Sees Third-Party Vendor Leak Customer Data

Permalink - Posted on 2020-12-22 17:00

Workplace pension provider NOW: Pensions has emailed a number of UK customers to warn about a data leakage caused by contractor error. The email, seen by this publication, claims a service provider "unintentionally" posted user data to an unnamed "public software forum". These records include biographical data (names, email addresses, and dates of birth) as well as National Insurance numbers. According to the pension provider, the data was obtained by "a small number" of third parties.


Stolen Card Prices Soar 225% in Two Years

Permalink - Posted on 2020-12-21 17:00

The cost of credit card dumps soared 225%, from $12.44 in 2018 to $26.50 this year. Fake US passports can reach around $525 while the price rises even higher ($3500) for UK versions. DDoS-for-hire services have nearly quadrupled in price since 2017, to around $165 for a fully managed attack, or provider-specific options potentially hitting $250.


Ransomware Attacks Surge in Q3 as Cyber Criminals Shift Tactics

Permalink - Posted on 2020-12-21 17:00

A record growth in ransomware attacks took place in Q3 of 2020 compared to Q2, from 39% to 51% of all malware attempts, according to Positive Technologies’ Cybersecurity Threatscape: Q3 2020 report.


City of Paderborn's 'Lernstatt' Under Attack

Permalink - Posted on 2020-12-21 17:00

The city of Paderborn’s ‘Lernstatt’ network has become the target of a major hacker attack. The cyber attack paralyzed numerous mail accounts and web conferences. 17,000 student and 2000 teacher accounts are affected. Because of the massive attacks from the Internet, the IT system of the learning center is currently still not working.


Ransomware Threat Actors Dump Data from Yet Another K-12 District

Permalink - Posted on 2020-12-21 17:00

DoppelPaymer ransomware threat actors recently dumped data from both Pascagoula-Gautier School District in Mississippi and Gardiner Public Schools in Montana. Now a third school district, Weslaco ISD in Texas has also had some of their data dumped.


Federal Financial Agencies Propose Requirement for Computer Security Incident Notification

Permalink - Posted on 2020-12-21 17:00

Federal financial regulatory agencies today announced a proposal that would require supervised banking organizations to promptly notify their primary federal regulator in the event of a computer security incident. In particular, alerts would be required for incidents that could result in a banking organization’s inability to deliver services to a material portion of its customer base, jeopardize the viability of key operations of a banking organization, or impact the stability of the financial sector.


FCA Fines Charles Schwab U.K. £8.96 Million Over Data Protection Failures

Permalink - Posted on 2020-12-21 17:00

The Financial Conduct Authority (FCA) has fined Charles Schwab UK Ltd (CSUK) £8.96 million for failing to adequately protect client assets, carrying out a regulated activity without permission and making a false statement to the FCA. Customers affected by the breaches were all retail customers, who require the greatest level of protection.


Premier Kids Care, Inc. Notifies Patients of Attack First Discovered in April

Permalink - Posted on 2020-12-21 17:00

Premier Kids Care, Inc. (PKC) of Georgia provides specialized pharmacy and home clinical services for children with diabetes, endocrinological, and perinatal needs. An investigation into the incident revealed that the unauthorized actor did obtain some personal information stored on a company computer, although the information did not include any Social Security numbers or financial information. The personal information that may have been obtained included names of PKC’s patients, their status as a patient of PKC, dates of birth, addresses, telephone numbers, certain limited treatment information, and health insurance information.


SolarWinds Hackers Broke into Cox Communications and Arizona County

Permalink - Posted on 2020-12-21 17:00

The intrusions into networks at Cox Communications and the local government in Pima County, Arizona, show that alongside victims including the U.S. departments of Defence, State, and Homeland Security, the hackers also spied on less high-profile organisations. A spokesman for Cox Communications said the company was working “around the clock” with the help of outside security experts to investigate any consequences of the SolarWinds compromise. “The security of the services we provide is a top priority,” he said.


Ledger Breached Data Confirmed for Sale in Dark Web Dump

Permalink - Posted on 2020-12-21 17:00

Hackread.com can confirm that a threat actor is claiming to have leaked the same Ledger database on an infamous hacker forum. It is worth noting that the stolen database was already being sold on several dark web marketplace since it was stolen 5 months ago.


Unsecured Probase Azure Blob Exposed 500,000+ Confidential Documents

Permalink - Posted on 2020-12-21 17:00

A business app developer's unsecured Microsoft Azure blob left more than half a million confidential and sensitive documents belonging to its customers freely exposed to the public internet, The Register can reveal. Information contained in the blob included occupational health assessments, insurance claim documents from US firms underwritten by Lloyds of London, and senior barristers' private opinions about junior colleagues applying for promotion.


Flavors Designer Symrise Halts Production After Clop Ransomware Attack

Permalink - Posted on 2020-12-21 17:00

Flavor and fragrance developer Symrise has suffered a Clop ransomware attack where the attackers allegedly stole 500 GB of unencrypted files and encrypted close to 1,000 devices. Symrise is a major developer of flavors and fragrances used in over 30,000 products worldwide, including those from Nestle, Coca-Cola, and Unilever. Symrise generated €3.4 billion in revenue for 2019 and employs over 10,000 people.


EXMO Cryptocurrency Exchange Hacked, Loses 5% of Total Assets

Permalink - Posted on 2020-12-21 17:00

The crypto exchange had a 2273 BTC (nearly $52 million) 24-hour trading volume and 27,795 active traders according to EXMO's website.


Microsoft Says Its Systems Were Also Breached in Massive SolarWinds Hack

Permalink - Posted on 2020-12-18 17:00

The massive state-sponsored espionage campaign that compromised software maker SolarWinds also targeted Microsoft, as the unfolding investigation into the hacking spree reveals the incident may have been far more wider in scope, sophistication, and impact than previously thought. News of Microsoft's compromise was first reported by Reuters, which also said the company's own products were then used to strike other victims by leveraging its cloud offerings, citing people familiar with the matter.


Indian State Government in Telanganta Took 3 Months to Respond to Hack

Permalink - Posted on 2020-12-18 17:00

A server misconfiguration was found on the Telangana government site in August that exposed over 130,000 official files.


Finnish Gov't to Tables Law for Mandatory Data Protection

Permalink - Posted on 2020-12-18 17:00

In a significant bolstering of Finland’s data security laws, new legislation will require all enterprises offering social and healthcare services to join Kanta’s state-run national digital services platform. Kanta operates a secure database system that requires enhanced electronic recognition, supported by banking codes, to access social welfare and healthcare sector databases. All public sector social welfare and healthcare services use the Kanta system, which is voluntary for private enterprises.


French City Services in Évreux and the Agglomeration Shut Down After Cyber Attack

Permalink - Posted on 2020-12-18 17:00

The City of Evreux and the Évreux Portes de Normandie became victims of a ransomware attack about a week ago. At the present time, they locked down their systems to keep the attacker out, but that means that phones and internet are degraded or not working at this time.


Email Account Breaches Reported by Meharry Medical College and MEDNAX Services

Permalink - Posted on 2020-12-18 17:00

Meharry Medical College in Nashville, TN, has discovered an email account breach may have resulted in unauthorized individuals viewing or acquiring the protected health information of up to 20,983 patients.


Phone Scams Stole 270% More Personal Information in 2020 Compred to 2019

Permalink - Posted on 2020-12-17 18:00

The highlight of the scammers' banner year was their ability to foster fears regarding the coronavirus to extract information from targets. First Orion reported that of the 18% of consumers in 2020 who suffered financial loss as the result of a scam phone call, 17% reported the call "was related to COVID-19."


Security Breach on Emirati Website Leaked Israelis' Personal Information

Permalink - Posted on 2020-12-17 18:00

The Dubai-based website Sharaf Travels was used by many Israelis who took the exciting opportunity to vacation in Dubai, as new Middle East destinations traditionally closed to Israeli tourists become available. The website, which offered special deals and discounts for Israelis, required personal information for issuing visas to enter the country. According to N12, much of that information has been passed to other travel agency websites in the UAE, and may pose serious security threats.


French Pharmaceutical Firm Fareva Victim of Cyber Attack

Permalink - Posted on 2020-12-17 18:00

On December 9, the European Medicines Agency reported that it had been a victim of a cyberattack. The announcement was of significant concern because EMA was considering was issuing authorizations for several COVID-19 vaccines. The next day, Pfizer announced that some documents it had submitted to EMA as part of that process had been involved in the cyberattack. Fareva group, a pharmaceutical manufacturer headquartered in Luxembourg, announced that it, too, has been the victim of a cyberattack.


SkyMed Settles with FTC for Failng to Secure Consumer Data

Permalink - Posted on 2020-12-17 18:00

In a complaint against SkyMed International, Inc., the FTC alleged that the company failed to take reasonable measures to secure the personal information it collected from people who had signed up for its emergency travel membership plan, and as a result, the company left unsecured a cloud database containing 130,000 membership records. The unsecured database, exposed by a security researcher, could be located and accessed by anyone on the Internet and contained personal information stored in plain text such as names, dates of birth, home addresses, health information, and membership account numbers, according to the complaint. The FTC also alleged that SkyMed failed to assess risks to such data by performing penetration testing and other measures, and failed to monitor its network for unauthorized access.


Ransomware and Cyber Extortion Payments Double in 2020

Permalink - Posted on 2020-12-17 18:00

The total cost of ransom payments doubled year-on-year during the first six months of 2020. Based on incidents reported to Beazley’s in-house breach response team, BBR Services, ransomware attacks increased in terms of both severity and costs this year compared to 2019 and have become the biggest cyber-threat facing organizations.


People's Energy Data Breach Affects all 270,000 Customers

Permalink - Posted on 2020-12-17 18:00

Co-founder Karin Sode told BBC News an entire database had been stolen by hackers and included information on previous customers. Data stolen included names, addresses, dates of birth, phone numbers, tariff and energy meter IDs, she said.


Irish Data Regulator Defends Order to Halt Facebook Data Flow

Permalink - Posted on 2020-12-17 18:00

Ireland’s data regulator defended its provisional order to halt Facebook user data transfers to the United States from the European Union, telling the Irish High Court on Thursday such decisions were not typically subject to court oversight.


Over Half of Users Admit to Reusing the Same Password on Multiple Accounts

Permalink - Posted on 2020-12-17 18:00

New data reported earlier this year by Security Magazine shared a report from Secure OAuth that 53% of users reuse the same passwords on multiple accounts. Among those 44% admit to using their personal passwords at work. Additional findings include management having the worst password hygiene. Only 38% of those in leadership positions say their work passwords are unique. 34% of Director-level positions admit to using one of the most common passwords.


51% of WFH Parents Say Children Have Accessed Work Accounts

Permalink - Posted on 2020-12-17 18:00

Nearly half of parents let children access devices with saved passwords on them, data shows, but 14% admit their kids have caused trouble by accessing an account with a saved password. One noted their child got into their bank account and wired money to a random account. More than 75% of families share passwords by using a password manager, writing them down, or creating a spreadsheet. However, some don't change them as often as they should: More than one-quarter (26%) of respondents still use the first password they created for an online account, and 5% say that 10 years later, they're still using a password their parents helped them create.


Lithuania Suffers "Most Complex" Cyber Attack in Years

Permalink - Posted on 2020-12-16 18:00

A carefully coordinated cyber-attack on Lithuania that occurred last week has been described by the republic's defense minister as one of the "most complex" security incidents to target the Baltic state in recent history. On the night of December 9, cyber-criminals breached multiple content management systems to gain access to 22 different websites operated by Lithuania's public sector. The attackers then published articles containing misinformation on the sites. An investigation into the attack by the Defense Ministry’s National Cyber Security Centre (NKSC) found that the websites targeted by the attackers were mostly run by regional municipalities.


Total Published CVEs Hits Record High for Fourth Year

Permalink - Posted on 2020-12-16 18:00

The past 12 months have seen a record number of CVEs published by the US authorities, the fourth year in a row volumes have risen. As of December 15, the number of vulnerabilities in production code discovered and assigned a CVE number by the US-CERT Vulnerability Database, topped the 2019 figure. Last year there were 17,306 CVEs published, including 4337 high-risk, 10,956 medium-risk and 2013 low-risk flaws. As of yesterday, 17,447 were recorded in total, including 4168 high-risk, 10,710 medium-risk and 2569 low-risk bugs.


Society at Increasingly High Risk of Cyber Attacks

Permalink - Posted on 2020-12-16 18:00

As attacks get easier to conduct, cybersecurity is becoming more complex due to the growing reliance on digital technology and internet connections; something that has been exacerbated by the COVID-19 pandemic.


U.S. House Passes Bill to for HHS Adoption of Cyber Regulatory Market Requirements

Permalink - Posted on 2020-12-16 18:00

A new bill (HR 7988) has been passed by the House Energy and Commerce Committee which seeks to amend the HITECH Act to require the Department of Health and Human Services to recognize whether cybersecurity best practices have been adopted by HIPAA-covered entities and business associates when making certain determinations, such as financial penalties following security breaches or for other regulatory purposes.


France: City of Pantin Likely a Victim of a Ransomware Attack

Permalink - Posted on 2020-12-16 18:00

A few weeks after Bondy (Seine-Saint-Denis), the city of Pantin would in turn be the victim of a cyberattack . “On a city scale, I must first tell you that our computer servers have probably been the subject of a cyber-attack attempt like other cities (Bondy, Charleville Mézières, Bayonne) before us."


Threat Actors Claim to Have Attacked City of Dade City, Florida

Permalink - Posted on 2020-12-16 18:00

Avaddon threat actors claim to have attacked the City of Dade City, Florida. Although the city has not made any statement either denying or confirming any attack at the time of this posting, the attackers did post some screenshots of directories and files that seem consistent with their claims.


More Than Half of Organizations Don't Have an Insider Risk Response Plan

Permalink - Posted on 2020-12-16 18:00

76% of IT security leaders said that their organizations have experienced one or more data breaches involving the loss of sensitive files and 59% said insider threat will increase in the next two years primarily due to users having access to files they shouldn’t, employees’ preference to work the way they want regardless of security protocols and the continuation of remote work. Despite these forces, 54% still don’t have a plan to respond to insider risks.


1 in 5 Employees Fall for Phishing Emails Even After Security Training

Permalink - Posted on 2020-12-16 18:00

Out of the employees who did click on phishing email links, 67.5% also entered their credentials, such as password, on the phishing webpage. It means that overall, 13.4% of employees provided their credentials to phishers.


Senior Managers Twice as Likely to Share Work Devices with Outsiders

Permalink - Posted on 2020-12-16 18:00

New research has found that senior management tends to exhibit much more lax security practices with their devices than younger staff. In fact, senior managers (42%) were twice as likely to share a work device with someone outside the organization than their junior counterparts (20%), according to OneLogIn. In addition, 19% of senior managers admitted to sharing confidential passwords with a family member versus only 7% of junior employees. Senior management also reported working from public Wi-Fi networks at double the rate of their junior counterparts (30% vs. 15%).


Ransomware Attack Causing Billing Delays for Missouri City

Permalink - Posted on 2020-12-15 17:00

The City of Independence, Missouri, suffered a ransomware attack last week that continues to disrupt the city's services. At the beginning of the month, Independence suffered a ransomware attack that forced them to shut down their IT system as they recovered from the attack.


45M Medical Imaging Files Left Accessible Online

Permalink - Posted on 2020-12-15 17:00

A range of medical images, including X-rays and CT scans, were exposed on more than 2,140 unprotected servers, researchers report.


Kaspersky Researchers Found 360,000 Malicious Files per Day in 2020

Permalink - Posted on 2020-12-15 17:00

Researchers at Kaspersky discovered an average of 360,000 new malicious files every day over the past 12 months – 18,000 more per day than the previous year, an increase of 5.2 percent. In the company’s Statistics of the Year Report released today, the researchers said the growth was influenced by the increased number of trojans and backdoors that were observed this year. Overall, the percent of increased trojans jumped by 40.5 percent when compared with the previous year.


India: Defence Tech. Service Provider Firm's Data Hacked

Permalink - Posted on 2020-12-15 17:00

The executive claimed that majority of the hacked emails were of "extremely sensitive" nature and "of substantial financial value", owing to the fact that most of the company's solutions are customised for the agencies served.


California Sonoma Valley Hospital Notifies 67k Patients of Data Breach

Permalink - Posted on 2020-12-15 17:00

In a letter dated December 8, Sonoma Valley Hospital told patients that it was one of several American healthcare providers victimized two months ago in a wide-sweeping ransomware campaign.


Twitter Fined Half a Million Dollars for Privacy Violation

Permalink - Posted on 2020-12-15 17:00

The EU's chief data watchdog today announced that it has issued an administrative fine of 450,000 euros ($547,000) to the social media titan for being too slow to notify Android phone users located across the EU of a data breach that threatened their privacy.


Huber & Suhner Victim of cyber Attack, Production Stands Still

Permalink - Posted on 2020-12-15 17:00

The industrial company Huber & Suhner from Herisau was the victim of a cyber attack. All of the company’s production facilities are currently closed worldwide.


Promutuel Assurance's IT Systems Disabled by Cyber Attack

Permalink - Posted on 2020-12-15 17:00

Promutuel Assurance has been the target of a cyberattack that made the company’s critical IT systems unavailable for use. The cyberattack also forced Promutuel Assurance to close its website for maintenance. Insured members who have priority requests with the insurer will have to call the company through a temporary telephone line.


Germany: Symrise Impacted by Ransomware Attack

Permalink - Posted on 2020-12-15 17:00

Symrise, a German manufacturer of flavors and fragrances used in products, has reportedly been the victim of a ransomware attack.


Norwegian Cruise Company Hurtigruten Experiences Cyber Attack

Permalink - Posted on 2020-12-14 18:00

Norwegian cruise company Hurtigruten experienced a cyber attack on Monday December 14, which caused several key systems are to go down, the company said in a statement.


Data Leak Exposes Details of Two Million Chinese Communist Party Members

Permalink - Posted on 2020-12-14 18:00

The information includes official records such as party position, birthdate, national ID number and ethnicity. It revealed that members of China’s ruling party hold prominent positions in some of the world’s biggest companies, including in pharmaceutical giants involved in the development of COVID-19 vaccines like Pfizer and financial institutions such as HSBC.


SolarWinds says 18,000 Customers Were Impacted by Recent Hack

Permalink - Posted on 2020-12-14 18:00

In SEC documents filed today, SolarWinds said it notified 33,000 customers of its recent hack, but that only 18,000 used a trojanized version of its Orion platform.


Intel's Habana Labs Hacked by Pay2Key Ransomware, Data Stolen

Permalink - Posted on 2020-12-14 18:00

Intel-owned AI processor developer Habana Labs has suffered a cyberattack where data was stolen and leaked by threat actors. Habana Labs is an Israeli developer of AI processors that accelerate artificial intelligence workloads in the datacenter. Intel purchased the company in December 2019 for approximately $2 billion.


Subway Customers Complain They're Being Served Up Phishing Emails

Permalink - Posted on 2020-12-14 18:00

Subway UK has admitted that a hacked server has been sending customers phishing emails. The spam messages supposedly contained information about a Subway order that had been placed by the customer, accompanied by a malicious Excel attachment.


FBI: K-12 Cyber Attacks Dramatically on the Rise

Permalink - Posted on 2020-12-11 17:00

In an alert from the FBI and the Cybersecurity and Infrastructure Security Agency (CISA), officials said that data from the Multi-State Information Sharing and Analysis Center (MS-ISAC) shows that in August and September, 57 percent of ransomware incidents reported to the MS-ISAC involved K-12 schools, compared to just 28 percent of all reported ransomware incidents from January through July. Ransomware is not the only problem, though – CISA and the FBI said that trojan malwares, distributed denial-of-service (DDoS) attacks, phishing and credential theft, account hacking, network compromises and more have all been on the rise since the beginning of the school year.


Tufts Health Plan Members' PHI Exposed in EyeMed Phishing Attack

Permalink - Posted on 2020-12-11 17:00

60,545 members of Tufts Health Plan have had their protected health information exposed in a phishing attack on the vision benefits management company EyeMed. The phishing attack occurred in June 2020 and was discovered by EyeMed on July 1, 2020. Access to the breached account was terminated the same day. EyeMed notified Tufts Health Plan about the breach in September 2020.


SISD's Internal Computer Network Taken Down Due to Virus

Permalink - Posted on 2020-12-11 17:00

The Socorro Independent School District has been hit by a computer virus that a spokesman said Friday had prompted their Internet Technology Department to take down the district's internal network as a precaution until the issue is resolved. No timeline was given as to when the network would be back up and running.


Payroll System Compromised in Ransomware Attack on Town of Ludlow

Permalink - Posted on 2020-12-11 17:00

Documents relating to the payroll system of employees at Ludlow Town Hall were illegally accessed in a cyberattack attack on Wednesday, according to officials. In an email to 22News Thursday evening, Ludlow officials said the town was a victim of a ransomware attack that “impacted many of the town’s IT infrastructure systems, including its payroll system.”


Cyber Attack Hobbles Sales for DSW

Permalink - Posted on 2020-12-11 17:00

A cyber attack on a vendor hobbled sales at the parent of DSW Shoe Warehouse in September, the company disclosed this week. The company reported net sales had declined 30% to $652.9 million compared to last year, continuing a year of plummeting demand as people are buying fewer shoes.


PA: Meadville Reveals Months-Old Suspicious Data Incident

Permalink - Posted on 2020-12-11 17:00

In October, when Meadville City Council unanimously approved more than doubling what the city was spending on computer security and network management, City Manager Andy Walker said the investment was worth it given “the constant headlines with respect to cyber attacks and ransomware and malware.”


France Fines Google, Amazon 135 Million Euros

Permalink - Posted on 2020-12-11 17:00

France's CNIL data privacy watchdog slapped 135 million euros in fines on US tech titans Google and Amazon for placing advertising cookies on users' computers without consent.


40% of COVID-19 Contact Tracing Apps Lack Basic Protections

Permalink - Posted on 2020-12-11 17:00

Guardsquare announced the release of a report which reassesses the levels of security protections and privacy risks of COVID-19 contact tracing apps. The report found that of the 95 mobile apps analyzed, 60% use the official API for secure exposure notifications. For the remaining 40% of the contact tracing apps, the majority of which gather GPS location data, security is paramount ‒ yet lags.


Ragnar Locker Claims Cyber Attack Against Dassault Falcon Jet Corp.

Permalink - Posted on 2020-12-11 17:00

The operators of this ransomware have just called the aircraft manufacturer to the negotiating table. For the time being, he is content to mention "technical problems with his e-mail and his websites".


Tech Unicorn UiPath Discloses Data Breach

Permalink - Posted on 2020-12-11 17:00

Tech unicorn UiPath, a startup that makes robotics automation software, is currently emailing users about a security incident that exposed their personal information online. The file included details such as real names, email addresses, usernames, company name, country locations, and UiPath certification details for users who signed up for the company's online learning platform, the UiPath Academy.


Spotify Resets Passwords After a Security Bug Exposed Users' Private Account Information

Permalink - Posted on 2020-12-11 17:00

In a data breach notification filed with the California attorney general’s office, the music streaming giant said the data exposed “may have included email address, your preferred display name, password, gender, and date of birth only to certain business partners of Spotify.” The company did not name the business partners, but added that Spotify “did not make this information publicly accessible.”


Tax Relief Biz Exposed Personal Info. on 100,000 Clients

Permalink - Posted on 2020-12-11 17:00

A UK business specializing in tax relief for its clients has exposed the personal details of over 100,000 of them via a misconfigured content management system (CMS). Researchers at Website Planet told Infosecurity exclusively about the privacy snafu, which they discovered on October 13 and notified the firm about the next day. That company was Marriage Tax Refund, a Wolverhampton-based organization whose business model is to recover marriage tax allowance funds for UK clients.


Google Fined £91m Over Ad-Tracking Cookies

Permalink - Posted on 2020-12-10 17:00

Google has been fined 100 million euros (£91m) in France for breaking the country's rules on online advertising trackers known as cookies. It has given the tech giants three months to change the information banners displayed on their websites. If they do not comply, they will be fined a further 100,000 euros per day until the changes are made.


85,000 MySQL Servers Hit in Active Ransomware Campaign

Permalink - Posted on 2020-12-10 17:00

Attackers pressure victims into paying ransom by publishing and offering for sale data stolen in a campaign that dates back to January.


E.U. Agency in Charge of COVID-19 Vaccine Approval Says It Was Hacked

Permalink - Posted on 2020-12-10 17:00

In a short two-paragraph statement posted on its website today, the agency discloses the security breach but said it couldn't disclose any details about the intrusion due to an ongoing investigation.


Ransomware Makes Up Half of All Major Incidents

Permalink - Posted on 2020-12-10 17:00

Ransomware attacks made up the majority of serious cyber intrusions this year, accounting for 51% of all incidents investigated by CrowdStrike in 2020, according to the company's yearly incident-analysis report. Financially motivated crimes accounted for 63% of the more than 200 incidents the company investigated on behalf of new and existing clients, the firm states in its "CrowdStrike Services Cyber Front Lines" report. Of those, 81% — or 51% of all incidents — saw the deployment of ransomware or tools that typically result in a ransomware infection, the company says.


Leaky Elasticsearch Server Reveals Massive Instagram Click Farm

Permalink - Posted on 2020-12-10 17:00

Security researchers have uncovered a massive Instagram click farm in central Asia, operating tens of thousands of fake profiles. A team at vpnMentor found the operation thanks to a completely unsecured Elasticsearch database it was using, connected to the public-facing internet.


Record Levels of Software Bugs Plague Short-Staffed IT Teams in 2020

Permalink - Posted on 2020-12-10 17:00

As just one symptom, 83 percent of the Top 30 U.S. retailers have vulnerabilities which pose an “imminent” cyber-threat, including Amazon, Costco, Kroger and Walmart.


Thai Securities Trading Firm Goes Offline After Cyber Attack

Permalink - Posted on 2020-12-10 17:00

"A large Thailand SET public listed company dealing with securities trading has been hacked with its sensitive financial + customer database stolen and files encrypted last Friday (4th December 2020),” the hackers wrote, adding, “CGS deals with securities and financial trading services, however their servers are poorly protected.”


More Than 1 Million Patients Notified of Hack Involving Dental Care Alliance

Permalink - Posted on 2020-12-09 17:00

Dental Care Alliance is notifying patients this week of a hacking incident that began on September 18, was discovered October 11, and contained on October 13.


European Medicines Agency Claims Victim of Cyber Attack

Permalink - Posted on 2020-12-09 17:00

he European Medicines Agency (EMA), which is currently deliberating on the issuance of authorizations for several vaccines against Covid-19, declared itself the victim of a cyberattack on Wednesday.


Ransomware Attack Causing Major Outages to Texas City and County Services

Permalink - Posted on 2020-12-09 17:00

A ransomeware (sic) cyber attack has struck city computers causing outages across Bowie and Miller Counties. According to Bowie County 202nd District Court Judge John Tidwell, “the computers at the Courthouse and BiState have been shut down today along with other agencies.” On Sunday, December 6, 2020, the Texarkana Water Utility’s Information Technology Department noticed suspicious activity on the network that serves Bowie County, and the Cities of Texarkana, Arkansas and Texarkana, Texas.


World's Largest Manufacturer of Machines and Systems for Solid Wood Processing Hit in Cyber Attack

Permalink - Posted on 2020-12-09 17:00

Michael Weinig AG in Tauberbischofsheim fell victim to an “organized cyber attack” over the weekend. This was confirmed by Andre Engert, press spokesman for the world’s largest manufacturer of machines and systems in solid wood processing.


Phishing Emails: More Than 25% of American Workers Fall for Them

Permalink - Posted on 2020-12-09 17:00

In the three months of 2020, according to the report, remote workers were hit with 30,000 more "suspicious messages," and a 667% increase in COVID-related spear phishing.


Vermont Hospital Cyber Attack Cost Estimated at $1.5M a Day

Permalink - Posted on 2020-12-09 17:00

A late October cyberattack on the computer systems of the University of Vermont Medical Center is costing the hospital about $1.5 million a day in lost revenue and recovery costs, its CEO said.


Insider Cyber Security Risk Soars During Lockdown

Permalink - Posted on 2020-12-09 17:00

The main insider risks highlighted by respondents as a critical threat to the organization are: accidental improper sharing of data (68%); misconfiguration of cloud services (66%); accidental mistakes by IT administrators (62%) and data theft by employees (66%). Accidental IT admin mistakes (27%) and improper sharing of data (26%) were the second and third most common incident experienced by organizations, after phishing.


Data Loss Reports to ICO Increase Once Again

Permalink - Posted on 2020-12-09 17:00

In the previous report for Q1, there were 1446 reported incidents, including 412 cited as cybersecurity events. However, for Q2, there were 2594 reported incidents, which included 737 cybersecurity events, including 258 for phishing, 152 for ransomware and 190 for unauthorized access.


Ransomware Forces Hosting Provider Netgain to Take Down Data Centers

Permalink - Posted on 2020-12-09 17:00

In a series of emails sent to customers and seen by BleepingComputer, Netgain states that they were victims of a ransomware attack on November 24th, 2020. On December 4th, customers began receiving emails from Netgain stating that they may experience "system outages or slowdowns" due to a cyberattack on the hosting provider.


Data of 70 Lakh Indian Cardholders Leaked on Dark Web

Permalink - Posted on 2020-12-09 17:00

Personal details, including phone numbers and email addresses of 70 lakh Indian debit and credit card holders, have been circulating on the dark web, an Internet security researcher alerted on Tuesday.


Most Victim Organizations Suffer Second Intrusion Within a Year

Permalink - Posted on 2020-12-08 17:00

68% of cases where an organization had experienced an intrusion, it is targeted again within 12 months. This makes the case for continuous monitoring and response, although too many organizations still believe they can get back to business-as-usual following an intrusion, the report argued.


One in Five Online Marketplace Listings Show Signs of Fraud

Permalink - Posted on 2020-12-08 17:00

An investigation of around 3000 public listings in the month of November found that 15% of items had indications of being scams. A particularly high proportion of consumer electronic products were observed to have these characteristics, with the researchers stating that 22% of PlayStation 5 listings were likely to be scams during the month, which rose to over a third over the Black Friday weekend. Interestingly, only 7% and 5% of competing gaming consoles Xbox Series X and Xbox Series S were likely to be scams, which may be a result of difficulties consumers have had in finding a PS5 available for sale. Close to one in five (19%) of iPhone 12 products listed also showed signs of fraud. Besedo also recorded that fashion products on online marketplaces are leaving shoppers at substantial risk of losing their money or receiving fake goods, with 15% of listings found to be counterfeit. Another area of concern highlighted was the sale of pets on this platform, with close to a quarter (23%) of listings for puppies observed to be scams.


'Amnesia:33' TCP/IP Flaws Affect Millions of IoT Devices

Permalink - Posted on 2020-12-08 16:00

Researchers – as well as the U.S. Cybersecurity Infrastructure Security Agency (CISA) – are warning of a set of serious vulnerabilities affecting TCP/IP stacks. The flaws impact millions of internet-of-things (IoT) devices and embedded systems, including smart thermometers, smart plugs and printers. The 33 vulnerabilities – four of which are critical – are dubbed Amnesia:33 by Forescout researchers who discovered them. They could enable a range of malicious attacks – from memory corruption to denial of service, and information leaks to remote code execution.


Long Beach Computer Network Shut Down After Cyber Attack Found

Permalink - Posted on 2020-12-08 16:00

The City of Long Beach was the target of a cyber attack last week, which forced the city to shut down its computer network. The city publicly announced the attack on Friday after discovering it on Tuesday afternoon.


Sensitive Details of of 7 Million Indian Cardholders Available on Dark Web

Permalink - Posted on 2020-12-08 16:00

Sensitive details belonging to 7 million debit and credit cardholders are available on a public Google Drive document that has been circulating on the dark web. The document was discovered by cybersecurity researcher Rajshekhar Rajaharia who reached out MediaNama stating that names of cardholders along with employers’ name, income levels, phone numbers, email addresses, and Permanent Account Number were available on it.


Phishing Campaign Targets 200M Microsoft 365 Accounts

Permalink - Posted on 2020-12-08 16:00

The attackers leverage a domain spoofing technique to create emails that appear to come from Microsoft Outlook (no-reply@microsoft.com). These emails attempt to use urgent language to trick people into using a new Microsoft 365 capability that lets account holders reclaim emails accidentally flagged as phishing or spam.


Hacker Opens 2,732 PickPoint Package Lockers Across Moscow

Permalink - Posted on 2020-12-08 16:00

The attack, which took place on Friday afternoon, December 4, targeted the network of PickPoint, a local delivery service that maintains a network of more than 8,000 package lockers across Moscow and Saint Petersburg.


Trump Signs IoT Security Bill into Law

Permalink - Posted on 2020-12-08 16:00

The new law — the Internet of Things Cybersecurity Improvement Act of 2020 — requires the creation of security standards and guidelines for IoT device used in and purchased by the federal government, and encompasses issues such as secure development, identity management, patching processes, and configuration management. It also calls for guidelines for vulnerability reporting and handling security vulnerabilities in IoT devices in government networks as well as of those of federal contractors that provide IT systems that include IoT devices.


France: The Publisher Dedalus Victim of a Cyber Attack

Permalink - Posted on 2020-12-07 19:00

The publisher specializing in hospital IT Dedalus suffered a computer attack on December 2 at its Mérignac site, TICsanté learned on December 3.


SSQ and La Capitale Sites Paralyzed in Attack

Permalink - Posted on 2020-12-07 19:00

The computer failure which paralyzes the online services of SSQ Insurance and La Capitale Insurance since Friday morning is linked to a cyber attack, according to specialists.


Foxconn Electronics Giant Hit by Ransomware, $34 million Ransom

Permalink - Posted on 2020-12-07 19:00

Foxconn electronics giant suffered a ransomware attack at a Mexican facility over the Thanksgiving weekend, where attackers stole unencrypted files before encrypting devices. Today, the DoppelPaymer ransomware published files belonging to Foxconn NA on their ransomware data leak site. The leaked data includes generic business documents and reports but does not contain any financial information or employee's personal details.


Kalispell Regional Healthcare Proposes 4.2 Million Settlement to Resolve Data Breach Lawsuit

Permalink - Posted on 2020-12-07 19:00

The Montana-based healthcare provider Kalispell Regional Healthcare has proposed a $4.2 million settlement to resolve a lawsuit filed on behalf of victims of a data breach that was announced in October 2019. The lawsuit was filed shortly after the announcement that the protected health information of approximately 130,000 patients had been impermissibly disclosed as a result of a sophisticated phishing attack. Unauthorized individuals had gained access to several email accounts after employees responded to phishing emails and disclosed their login credentials.


RansomExx Ransomware Gang Dumps Stolen Embraer Data

Permalink - Posted on 2020-12-07 19:00

Embraer did not specify what kind of attack the company suffered, or if data was stolen from the accessed environment. The hundreds of megabytes of data files found on the RansomExx site include folders pertaining to employee data, supply-chain subcontracts, and source code, 3D models and photos of Embraer aircraft, etc.


Half of U.S. Schools Skipped Remote Security Training

Permalink - Posted on 2020-12-07 19:00

Over half (50.7%) of IT decision makers said that no students, staff, or faculty were required to enroll in cybersecurity training before the new school year began. Over a quarter of IT respondents (28%) said that their school did not have sufficient laptops, computers, or tablets to allow teachers, administrators, and staff members to work remotely. Providing all parents and students with devices was a problem for 40% of schools. Nearly half (45.3%) of schools were unable to provide every student with a device to use for distance learning, creating educational inequality.


$1 Trillion Lost to Cyber Crime in 2020, Yet Companies Remain Ill-Prepared

Permalink - Posted on 2020-12-07 19:00

Cybersecurity experts often say it’s hard to quantify all of the financial hits a company takes in the wake of a bad security incident. A new report and survey from the Center for Strategic and International Studies attempts just that, paying attention in particular to the hidden costs that don’t always show up on in the annual budget. In 2018, the organization estimated that cybercrime was siphoning more than $600 billion from the global economy; two years later that number is inching towards $1 trillion in total losses. While some of that can be attributed to better reporting around cybersecurity incidents, it also comes at a time when the volume of e-crime and ransomware attacks have exploded across industry, government and school systems.


Middle East Facing "Cyber Pandemic" as Covid Exposes Security Vulnerabilities, Cyber Chief Says

Permalink - Posted on 2020-12-07 19:00

The UAE has seen an "at least 250% increase" in cyberattacks this year, Al Kuwaiti said, as the pandemic forced organizations around the world to reconsider how and where they work and hackers and malicious actors took advantage of increased digital adoption.


Greater Baltimore Medical Center Hit by Ransomware Attack

Permalink - Posted on 2020-12-07 19:00

The Greater Baltimore Medical Center in Towson, Maryland was hit by a ransomware attack that impacted computer systems and medical procedures, the healthcare provider said Sunday.


Ransomware Attacks Have Surged Drastically During Remote Working

Permalink - Posted on 2020-12-07 19:00

Since late 2019, ransomware attacks have surged drastically, targeting both the private and government sectors. Around 500 ransomware attacks spanning over 45 countries were reported around the world during this period.


Proposed Settlement Announced in Kalispell Regional Healthcare Breach Lawsuit

Permalink - Posted on 2020-12-04 17:00

In October, 2019, Kalispell Regional Health suffered a phishing incident that impacted more than 100,000 patients. They were sued shortly thereafter. Today, a proposed settlement of the class action lawsuit was announced. Under the Settlement, Kalispell will pay $4,200,000.00 into a Settlement Fund.


Voter Registration Data for 113K Alaskans Exposed in Breach

Permalink - Posted on 2020-12-04 16:00

Personal data such as driver’s license numbers and birth dates for tens of thousands of Alaskans was breached in an online voter database, but the state official overseeing elections said Thursday election results were not compromised because the online registration and vote tabulation systems are not connected.


Metro Vancouver Transportation Agency TransLink Hit by Ransomware

Permalink - Posted on 2020-12-04 16:00

TransLink, the transportation agency of Metro Vancouver in British Columbia, Canada, has been hit by ransomware, and the ransom note delivered by the attackers suggests the incident involved a piece of ransomware named Egregor.


Smart Sex Toy Sales Surge Poses Security Risk

Permalink - Posted on 2020-12-04 16:00

Smart sex toy data that could fall into the hands of an oppressive government regime or digital blackmailer include names, sexual preferences and orientations, the names of sexual partners, information about device usage, and sexually explicit images and videos.


Largest Global Staffing Agency Randstad Hit by Egregor Ransomware

Permalink - Posted on 2020-12-04 16:00

Staffing agency Randstad NV announced today that their network was breached by the Egregor ransomware, who stole unencrypted files during the attack.


BlackShadow Hackers Extort Israeli Insurance Company for $1 Million

Permalink - Posted on 2020-12-04 16:00

Threat actors are extorting an Israeli insurance company by demanding almost $1 million in bitcoin to stop leaking the company's stolen data. On Monday, a cybercrime group calling themselves 'BlackShadow' tweeted that they hacked into the Israeli Shirbit insurance company and stole files during the attack. "A huge cyberattack has been taken place by Black Shadow team. There has been a massive attack on the network infrastructure of Shirbit Company, which is in israel economic sphere," the threat actors tweeted. Since then, the threat actors has been steadily leaking the victim's documents and images on a Telegram channel they created for this purpose. This stolen data includes documents, email PST files, scanned documents, audio recordings, and images of passports.


Kmart, Latest Victim of Egregor Ransomware

Permalink - Posted on 2020-12-04 16:00

The company was purchased by Transformco in 2019 – and the holding company is apparently impacted as well. The 88sears.com site, used internally, is offline, which is a state of affairs that employees confirmed to the outlet was due to the ransomware attack.


Data of 243 Million Brazilians Exposed Online via Website Source Code

Permalink - Posted on 2020-12-03 16:00

The password to access a highly sensitive Ministry of Health database was stored inside a government site's source code.


Belgian DPA Announces Potential Data Breach at Bpost

Permalink - Posted on 2020-12-03 16:00

The Belgian Data Protection Authority (‘Belgian DPA’) announced, on 1 December 2020, that it had learned of a potential security incident at Bpost through media articles. In particular, the Belgian DPA outlined that, given the position Bpost plays in Belgian society, a data breach would have made possible access to personal data and the retrieval of individuals’ post. Furthermore, the Belgian DPA highlighted that it had contacted Bpost in order to receive further information on the incident.


Georgia Dental Practice Discovers Told Over Phone by Attackers of Ransomware Infection

Permalink - Posted on 2020-12-03 16:00

Galstan & Ward Family and Cosmetic Dentistry (Galstan & Ward) is a dental practice in Georgia. On September 9, 2020, they learned that they had been a victim of a ransomware attack — or an attempted attack — when they got a phone call from a group claiming to have attacked them and demanding a ransom. That was literally news to the practice. Prior to that call, Drs. Galstan and Ward had noticed some anomalies with their computer system and had hired an IT vendor to wipe the server and reinstall from backup. So there had been no significant disruption of service or loss of data. Or so they thought. In a notification to patients of November 13, the practice explained that they discovered that the intrusion had occurred between August 31 and September 1. On September 11, they learned that several files from their server were posted to a website on the dark web. The files reportedly did not contain any information concerning patients.


Verizon Has Been Leaking Customers' Personal Information

Permalink - Posted on 2020-12-03 16:00

Verizon is struggling to fix a glitch that has been leaking customers’ addresses, phone numbers, account numbers, and other personal information through a chat system that helps prospective subscribers figure out if Fios services are available in their location. The personal details appear when people click on a link to chat with a Verizon representative. When the chat window opens, it contains transcripts of conversations that other customers, either prospective or current, have had. The transcripts include full names, addresses, phone numbers, account numbers (in the event they already have an account), and various other information. Some of the transcripts viewed by Ars date back to June. A separate Window included customers' addresses, although it wasn't clear who those addresses belonged to.


Philly Food Bank Loses $1m in BEC Scam

Permalink - Posted on 2020-12-03 16:00

Philabundance is the region’s largest hunger-relief organization and receives tens of millions of dollars in donations every year. Earlier this year, it was in the process of completing a new $12m community kitchen, which is when it was sent an invoice by what managers thought was a construction company supplier. However, the email was in fact spoofed by attackers and the $923,533 was lost, according to The Philadelphia Inquirer. To make matters worse, the firm then had to find the same amount to pay the legitimate supplier.


Quarter of Firms Suffered 7+ Serious Cyber Attacks in 2020

Permalink - Posted on 2020-12-03 16:00

Nearly a quarter (23%) of global organizations suffered seven or more attacks that infiltrated their networks over the past year, and a majority believe it will happen in the coming 12 months, according to Trend Micro.


Bank Employee Sells Personal Data of 200k Clients

Permalink - Posted on 2020-12-03 16:00

South Africa–based financial services group Absa has stated that one of its employees sold the personal information of 200,000 clients to third parties. The group confirmed on Wednesday that the illegal activity had occurred and that 2% of Absa's retail customer base had been impacted. The employee allegedly responsible for it was a credit analyst who had access to the group's risk-modeling processes. Data exposed as a result of the security incident included clients' ID numbers, addresses, contact details, and descriptions of vehicles that they had purchased on finance.


Generalitat of Catalonia Exposes Thousands of Personal Data of Its Citizens

Permalink - Posted on 2020-12-03 16:00

Cybercrime in the wake of the coronavirus, cybersecurity breaches are something to take into account these days. The last to come to the fore has been the breach suffered by the website of the Generalitat of Catalonia, which has exposed more than 5,000 data of its citizens.


New Zealand Privacy Act: Updated Data Breach Legislation Comes into Effect on December 1

Permalink - Posted on 2020-12-03 16:00

New privacy laws will come into force across New Zealand tomorrow (December 1) as authorities tighten rules regarding data protection. The Privacy Act 2020 will mandate that organizations must report “serious” data breaches immediately if there is a “risk of harm”.


Security Slipup Exposes Health Records and Lab Results

Permalink - Posted on 2020-12-03 16:00

NTreatment failed to add password protection to a cloud server, exposing thousands of sensitive medical records online.


Ransomware Gang Says They Stole 2 Million Credit Cards from E-Land

Permalink - Posted on 2020-12-03 16:00

Last month, E-Land Retail had to shut down 23 NC Department Store and New Core locations after suffering a CLOP ransomware attack. In an interview with BleepingComputer, the CLOP ransomware operators claimed to have breached E-Land over a year ago and have been quietly stealing credit cards using POS malware installed on the network.


Intersport Victim of Cyber Attack for a Second Time in 2020

Permalink - Posted on 2020-12-02 17:00

First it was a Magecart attack on their web sites in Slovenia, Croatia, Serbia, Bosnia and Hercegovina and Montenegro, as reported in June.


'Apodis Pharma' Leaked Over 1.7 TB of Confidential Data Online

Permalink - Posted on 2020-12-02 17:00

The French digital supply chain management and software solutions provider ‘Apodis Pharma’ has misconfigured an ElasticSearch database for public access, essentially leaking over 1.7 TB of confidential business-related data. The client portfolio of ‘Apodis Pharma’ includes big pharmaceutical firms, so the particular data leak is considered a grave security event.


Australia's Largest Cryptocurrency Exchange Accidentally Exposed Info. of 270,000 Customers

Permalink - Posted on 2020-12-02 17:00

One of the main selling points of cryptocurrencies is that they are designed to offer their users privacy or even complete anonymity. But not even the cleverest creators can completely thwart human error. Early on Tuesday morning, an Australian cryptocurrency exchange that bills itself as the largest in the country inadvertently exposed more than 270,000 of its members names and email addresses.


Brazilian Aerospace Firm Embraer Hit by Cyber Attack

Permalink - Posted on 2020-12-02 17:00

Brazilian aerospace and defence group Embraer has been targeted by a cyberattack that has impacted the company's operations. According to a statement released by the global firm on Monday (30) the attack resulted in the "disclosure of data allegedly attributed to the company". The incident was reported five days after it took place to the Brazilian Securities and Exchange Commission. The Brazilian legislation requires immediate reporting of problems such as cyber attacks.


Cayman Islands Bank Records Exposed in Open Azure Blob

Permalink - Posted on 2020-12-02 17:00

An offshore Cayman Islands bank’s backups, covering a $500 million investment portfolio, were left unsecured and leaking personal banking information, passport data and even online banking PINs.


Alabama School District Shut Down by Ransomware Attack

Permalink - Posted on 2020-12-02 17:00

Ransomware operators have attacked the Huntsville City Schools district in Alabama, forcing them to shut down schools for the rest of the week and possibly next week.


Royal Dutch Cycling Union Refuses to Pay Ransom Following Data Breach

Permalink - Posted on 2020-12-02 17:00

The Royal Dutch Cycling Union, the national governing body for cycling in the Netherlands, has urged members to update their passwords after being hit by a data breach. In a statement issued on November 27, the KNWU (‘Koninklijke Nederlandsche Wielren Unie’) indicated that malicious hackers now possess the entire contents of a legacy database containing members’ contact details. However, the statement did not indicate what types of personal data were involved or how many individuals are affected.


Personal information Leaked in Suspected Cyber Attack on Shirbit Insurance

Permalink - Posted on 2020-12-02 17:00

The blackShadow hacker group tweeted photos of ID cards, drivers licenses and forms containing private information including names and addresses.


MasterChef Producer Hit by Double Extortion Ransomware

Permalink - Posted on 2020-11-30 17:00

A multibillion-dollar TV production company has become the latest big corporate name caught out by ransomware, it emerged late last week. French multinational firm Banijay SAS owns over 120 production firms around the world, delivering TV shows ranging from MasterChef and Big Brother to Black Mirror and The Island with Bear Grylls. In a short update last Thursday, it claimed to be managing a “cyber-incident” affecting the networks of Endemol Shine Group and Endemol Shine International, Dutch firms it acquired in a $2.2bn deal in July. Although ransomware isn’t named in the notice, previous reports suggest the firm is being extorted.


Ransomware Attack Closes Baltimore County Public Schools

Permalink - Posted on 2020-11-30 17:00

The attack, first discovered late Tuesday, disrupted the district’s websites and remote learning programs, as well as its grading and email systems, officials said.


University of Vermont Medical Center Has Yet to Fully Recover from October Cyber Attack

Permalink - Posted on 2020-11-30 17:00

The ransomware attack has caused variable impacts at each of its affiliates. A month later, the University of Vermont Medical Center is continuing to recover from the cyber attack that paralyzed the systems at the Burlington hospital. The hospital announced that only on Tuesday it had restored access to its main electronic records system at the hospital.


Crooks Stole 800,000€ from ATMs in Italy with Black Box Aattack

Permalink - Posted on 2020-11-30 17:00

Black box attacks are a type of jackpotting attack aimed at forcing an ATM to dispense the cash by sending a command through a “black box” device. In this attack, a black box device, such as a mobile device or a Raspberry, is physically connected to the ATM and is used by the attackers to send commands to the machine. The ATM black box attacks are quite popular in the cybercrime underground and several threat actors offer the hardware equipment and malware that could be used to compromise the ATMs.


IoT Chip Maker Advantech Confirms Ransomware Attack, Data TSheft

Permalink - Posted on 2020-11-30 17:00

Industrial automation and Industrial IoT (IIoT) chip maker Advantech confirmed a ransomware attack that hit its network and led to the theft of confidential, albeit low-value, company documents. BleepingComputer was also able to confirm that the Conti ransomware gang was the one that hit the systems of Advantech and is now demanding a $14 million ransom to decrypt affected systems and to stop leaking stolen company data.


Pennsylvania County Pays 500K Ransom to DoppelPaymer Ransomware

Permalink - Posted on 2020-11-30 17:00

Delaware County, Pennsylvania has paid a $500,000 ransom after their systems were hit by the DoppelPaymer ransomware last weekend. On Monday, Delaware County disclosed that they had taken portions of their computer network offline after discovering that their network was compromised.


Healthcare Provider AspenPointe Data Breach Affects 295K Patients

Permalink - Posted on 2020-11-30 17:00

U.S. healthcare provider AspenPointe notified patients of a data breach stemming from a September 2020 cyberattack that enabled attackers to steal protected health information (PHI) and personally identifiable information (PII). AspenPointe is a nonprofit funded by Medicaid, state, federal, and local government contracts, as well as donations, that manages 12 organizations serving over 50,000 individuals and families every.


Belden Discloses Data Breach Affecting Employee, Business Information

Permalink - Posted on 2020-11-25 17:00

Specialty networking solutions provider Belden on Tuesday disclosed a data breach resulting in the theft of employee and business information. The company said the incident involved “unauthorized access and copying of some current and former employee data, as well as limited company information regarding some business partners.”


Denamrk: Ritzau News Agency Hit by Cyber Attack

Permalink - Posted on 2020-11-25 17:00

Denmark's biggest news agency that delivers text and photos to Danish media has been knocked offline following a hacking attack. "Ritzau has been the target of a hacker attack early this morning. It appears to be a professional attack," the news agency's CEO Lars Vesterloekke said. "We have now chosen to shut down all our servers because we were unsure how much damage the attack could cause." Email and telephones were down and news was instead sent out via an emergency email system.


Illinois Valley Community College Victim of Data Breach

Permalink - Posted on 2020-11-25 17:00

Illinois Valley Community College has sent out more than 160,000 letters to current and former students, faculty and applicants warning them that their data may have been compromised in connection with a data breach back in April.


Ransomware Attack Hits Baltimore County Public Schools

Permalink - Posted on 2020-11-25 17:00

Baltimore County schools are out one day early during the holiday week after the system’s networks were struck by ransomware. The school system had initially characterized the disruption as “issues with our network” Wednesday morning, but said in a follow-up post on social media that it was attributable to a ransomware attack that “caused systemic interruption to network information systems.”


Update: Post-Breach, Peatix Data Reportedly Found on Instagram, Telegram

Permalink - Posted on 2020-11-25 17:00

In a data breach notice to affected users, Peatix said it learned on Nov. 9 that user account data had been improperly accessed. Upon further investigation, the company found that user names, email addresses,salted and hashed passwords, nicknames, preferred languages, countries and time zones had been compromised.


Mayo Clinic Hit with Multiple Data Breach Class Actions for Unauthorized Access of Patient Records

Permalink - Posted on 2020-11-25 17:00

This month, following disclosure of the breach, Mayo Clinic was hit with two data privacy class action lawsuits in Minnesota state courts. See Bloxton-Kippola, et al. v. Mayo Clinic, et al., Case No. 55-cv-20-6188 (Minn. Dist. Ct.) and Ryabchuk v. Mayo Clinic, et al., Case No. 55-cv-20-6445 (Minn. Dist. Ct.). Among other things, the litigations allege that Mayo Clinic failed to “put into place systems or procedures to ensure that Plaintiffs’ and similarly situated individuals’ health records would be protected and would not be subject to unauthorized access.” The Plaintiffs assert claims against Mayo Clinic under the Minnesota Health Records Act (“MHRA”) and for common law privacy torts.


Disabled Children's Names Revealed in Bristol City Council Email

Permalink - Posted on 2020-11-25 17:00

The identities of hundreds of families with disabled children have been shared with other parents without their consent by a council, in a "fundamental breach of trust and data". Bristol City Council sent an email asking for views on a new support service to hundreds of people. The names of all the children and the email addresses of their primary carers were viewable to all recipients. The authority said it has apologised and was investigating.


Home Depot Settles 2014 Breach Lawsuit for $17.5 Million

Permalink - Posted on 2020-11-25 17:00

The settlement, which involves 46 states and Washington, D.C., stems from the breach that happened between April 10 and Sept. 13, 2014, when fraudsters planted credit card skimming malware in Home Depot's network to steal customer payment data. In addition to the financial component of the settlement, the company agreed to implement specific cybersecurity measures to safeguard the personal information of its customers.


PIA Data Hacked: Threat Actor Put Databases Up for Sale on Dark Web

Permalink - Posted on 2020-11-24 17:00

Pakistan International Airlines (PIA) reportedly suffered a major security breach after its network access and database were put on sale for $4,000 on the dark web.


Real Estate Firm The Corcoran Group Exposed Homeowner and Agent Data Online

Permalink - Posted on 2020-11-24 17:00

Secure Thoughts collaborated with Security Expert Jeremiah Fowler to expose a massive leak of property-owner and agent records by a luxury real estate firm.


Louisiana Hospitals Report Data Breach

Permalink - Posted on 2020-11-24 17:00

The data of thousands of patients has been exposed following a cyber-attack on Louisiana State University medical centers. LSU Health New Orleans issued a HIPAA breach notification on November 20 after detecting a cyber-intrusion into an employee’s electronic mailbox.


Floor Covering Provider Headlam Discloses Data Breach

Permalink - Posted on 2020-11-24 17:00

Floor coverings distributor Headlam Group said on Tuesday there had been an unauthorised access to some of its computer systems, resulting in some data being accessed. Certain back office systems were affected, including the email system which is now restored, the company said.


France Banijay Group Hit by Ransomware

Permalink - Posted on 2020-11-24 17:00

France-based Entertainment Company Banijay Group is reported to have become a victim of a ransomware attack where hackers accessed and stole sensitive details of employee, including bank details and home addresses. High placed sources say that the cyber attack where hackers are seen demanding millions to decrypt or unlock the data disrupted the servers of producer of MasterChef. Cybersecurity Insiders discovered the attack was carried out on Endemol Shine Group, and the hackers infiltrated other networks through this database. FYI, Banijay acquired Endemol for $2.2 billion last year.


Law In Order Hit by Ransomware Attack

Permalink - Posted on 2020-11-24 17:00

Law In Order, an Australian supplier of document and digital services to law firms, suffered a ransomware infection over the weekend that is believed to be the Netwalker malware.


Attack on Vendor Affects Website of Arizona Court System

Permalink - Posted on 2020-11-24 17:00

A internet interruption resulting from a ransomware attack on a hosting provider has limited functionality of the Arizona state court system’s webpage for most of this week, according to the vendor and court officials. The court system acknowledged the continuing problem in a brief notice on the judicial branch’s azcourts.gov homepage, which on Friday did not display the normal full array of content. The vendor, Managed.com, said it had an “unscheduled service interruption” that began Monday and continued into Friday.


Tesla Hacked and Stolen Again Using Key Fob

Permalink - Posted on 2020-11-24 17:00

Researchers have demonstrated for the third time how hacking into the key fob of a Tesla can allow someone to access and steal the car in minutes. The new attack again shows a security vulnerability in the keyless entry system of one of the most expensive electric vehicles (EVs) on the market.


Hacker Leaks the User Data of Event Management App Peatix

Permalink - Posted on 2020-11-24 17:00

A hacker has leaked this month the data of more than 4.2 million users registered on Peatix, an event organizing platform, currently ranked among the Alexa Top 3,500 most popular sites on the internet. The site's user data was made available through ads posted via Instagram stories, on Telegram channels, and on several different hacking forums. According to samples of the Peatix data seen by ZDNet, the leaked information included full names, usernames, emails, and salted and hashed passwords.


GoDaddy Staff Fall Prey to Social Engineering Scam

Permalink - Posted on 2020-11-23 17:00

GoDaddy employees were exploited to facilitate attacks on multiple cryptocurrency exchanges through social engineering and phishing. Staff at the domain name registrar were subject to a social engineering scam that duped them into changing email and registration records, used to conduct attacks on other organizations.


Spotify Users Hit with Rash of Account Takeovers

Permalink - Posted on 2020-11-23 16:00

vpnMentor’s research team spotted an open Elasticsearch database containing more than 380 million individual records, including login credentials and other user data, actively being validated against Spotify accounts. The database in question contained over 72 GB of data, including account usernames and passwords verified on Spotify; email addresses; and countries of residence.


Louisiana Hospitals Report Data Breach

Permalink - Posted on 2020-11-23 16:00

The data of thousands of patients has been exposed following a cyber-attack on Louisiana State University medical centers. LSU Health New Orleans issued a HIPAA breach notification on November 20 after detecting a cyber-intrusion into an employee’s electronic mailbox. "The intrusion appears to have occurred on September 15, 2020, and the mailbox access was discovered and disabled on September 18, 2020," said LSU Health.


A Fifth of Consumers Affected by Identity Fraud in 2020

Permalink - Posted on 2020-11-23 16:00

The findings come amid a year in which there has been a much greater reliance on digital services as a result of social distancing restrictions. GBG noted that 47% of people had opened up a new online shopping account while 35% had opened a new social media account and 31% an online bank account in 2020. Additionally, a third of consumers aged 75 or older had signed up to a new online account this year.


Retail Giant E-Land Closes Nearly Half of Stores Due to Ransomware Attack

Permalink - Posted on 2020-11-23 16:00

South Korean fashion and retail conglomerate E-Land Group said Sunday it has suspended operations at nearly half of its stores in the country due to a ransomware attack. The group said its corporate network system was attacked by ransomware early in the morning. Such a malware attack has forced 23 of its 50 branches of NC Department Store and NewCore Outlet to halt their operations, E-Land added.


Nearly $20 Million Stolen from the DeFi Protocol Pickle Finance

Permalink - Posted on 2020-11-23 16:00

Another liquidity mining project fell victim to the hack attack and lost about $20 million of users' funds in DAI tokens. The attacker exploited the vulnerability of Pickle Finance smart contract called DAI PickleJar using fake swaps.


Hundreds of Female Sports Stars and Celebrities Have Their Naked Photos and Videos Leaked Online

Permalink - Posted on 2020-11-23 16:00

Threat actors have stolen naked photos and videos from hundreds of female sports stars and celebrities and leaked them online. The attack took place in the same hours as hackers hit Manchester United and brings us back to mind the Fappening cases that exposed online cache of nude photos and videos of celebrities back in 2014.


$65,000 Fine for University of Cincinnati Medical Center Issued in HIPAA Failure

Permalink - Posted on 2020-11-20 17:00

In 2019, OCR announced a new drive to ensure individuals are given timely access to their health records, at a reasonable cost, as mandated by the HIPAA Privacy Rule. It had become clear to OCR that healthcare providers were not always fully complying with this important HIPAA Privacy Rule provision and some patients were having trouble obtaining a copy of their medical records. The latest financial penalty of $65,000 was imposed on the University of Cincinnati Medical Center, LLC (UCMC) and stemmed from a complaint received by OCR on May 30, 2019 from a patient who had sent a request to UCMC on February 22, 2019 asking for an electronic copy of the medical records maintained in UCMC’s electronic health record system to be sent to her lawyer.


GO SMS Pro Exposes Messages of Millions of Users

Permalink - Posted on 2020-11-20 17:00

Popular messaging application GO SMS Pro is exposing the audio, video, and photo messages of its users, Trustwave’s SpiderLabs security researchers discovered. In the summer of 2020, the SpiderLabs security researchers discovered that the application exposes media files that users transfer between one-another, and that even an unauthenticated attacker could have access to the exposed data.


Denmark: Ransomware Attack at the GWG Housing Association

Permalink - Posted on 2020-11-20 17:00

As it became known yesterday, the Munich GWG housing association has been the victim of a ransomware attack. Much of the company’s IT systems and data is affected; even backup servers and other data backups were encrypted in the course of the attack.


Thousands of New Zealanders' Email Addresses, Passwords Stolen in Data Breach

Permalink - Posted on 2020-11-20 17:00

A person is claiming to be in possession of 2.6 million email addresses and encrypted passwords from Nitro PDF, of which 4000 are .nz email addresses, cyber security organisation CERT NZ said in an alert this afternoon.


Mitsubishi Electric Again Falls Victim to Cyber Attack

Permalink - Posted on 2020-11-20 17:00

Mitsubishi Electric Corp. has again been hit by a massive cyberattack that may have resulted in the leaking of information related to its business partners. Company officials on Nov. 20 said they were checking the 8,653 accounts of those it has business transactions with to determine if information related to bank accounts of the other parties as well as other information leaked.


1/3 of Employees Report Their Company Has No Security Measures in While Working from Home

Permalink - Posted on 2020-11-20 17:00

65% of organizations are not mandating a secure WiFi be used. 69% aren’t requiring Multi-Factor Authentication (MFA). 69% aren’t using a VPN.


Mount Locker Ransomware Now Targets Your TurboTax Tax Returns

Permalink - Posted on 2020-11-20 17:00

The Mount Locker ransomware operation is gearing up for the tax season by specifically targeting TurboTax returns for encryption. When encrypting a computer, Mount Locker only encrypts files that have certain file extensions. With the latest version, the ransomware developers are now targeting the .tax, .tax2009, .tax2013, and .tax2014 file extensions associated with the TurboTax tax preparation software.


93% of Businesses Are Worried About Public Cloud Security

Permalink - Posted on 2020-11-19 17:00

Findings suggest that organizations are struggling to use cloud-based resources safely. For example, a mere 31% of organizations use cloud DLP, despite 66% citing data leakage as their top cloud security concern. Similarly, organizations are unable to maintain visibility into file downloads (45%), file uploads (50%), DLP policy violations (50%), and external sharing (55%) in the cloud.


Ongoing Data Breach Dispute Underscores Emerging Legal Issues in Data Privacy Litigation

Permalink - Posted on 2020-11-19 17:00

Two sobering statistics illustrate that as the world has become more connected, fraud has only proliferated. In 2001, the FTC received 137,306 reports of fraud. In 2019, that number increased to 1,697,934 – an increase of over 1,000%. As fraud has increased, so too are disputes about who bears the cost.


The Former Coop fédérée Is the Target of Cyber Hackers

Permalink - Posted on 2020-11-19 17:00

Quebec’s largest agricultural company, Sollio Groupe coopératif, suffered a ransomware attack on November 7. The cyber hackers are threatening to publish the mass of data they have stolen in three days.


Oregon County Hit by Ransomware Attack

Permalink - Posted on 2020-11-19 17:00

Jackson County's website is currently down following a recent ransomware attack on the county's web-hosting service provider, Managed.com. The company took down all its servers on Monday after reportedly becoming the latest target of REvil.


REvil Ransomware Demands 500K Ransom to Managed.com Hosting Provider

Permalink - Posted on 2020-11-19 17:00

Impacted systems included WordPress and DotNetNuke managed hosting platforms, online databases, email servers, DNS servers, RDP access points, and FTP servers.


As Businesses Move to Multicloud Approach, Ransomware Follows

Permalink - Posted on 2020-11-19 17:00

The average US company uses 16 cloud services, but only a third of IT professional believe their security measures have kept up with the change.


Crypto Trading Platform Liquid Hacked

Permalink - Posted on 2020-11-18 17:00

Crypto trading platform Liquid is advising customers to change their passwords and 2FA credentials after being hacked in a domain name hosting attack. The hacker was able to lift emails, names, addresses and encrypted passwords from the firm's user database.


Northampton Public Library Victim of Ransomware Attack

Permalink - Posted on 2020-11-18 17:00

Ransomware threat actors have hit yet another public library. This time it is Northampton Public Library in Pennsylvania. The Library collects name, address, phone number, email address, driver’s license number, and birth date.


Mental Health Providers People Incorporated and My Choice HouseCalls Hit by Cyber Attack

Permalink - Posted on 2020-11-18 17:00

People Incorporated Mental Health Services, a provider of integrated behavioral and mental health services in Minnesota, is notifying 27,500 patients that some of their protected health information was exposed in an email account breach between April 28, 2020 and May 4, 2020. The PHI in the compromised accounts included names, dates of birth, addresses, treatment information, insurance information, and medical record numbers and, for a limited number of individuals, Social Security numbers, financial account information, health insurance information, and driver’s license or state identification numbers.


LAPD Bans Facial Recognition, Citing Privacy Concerns

Permalink - Posted on 2020-11-18 17:00

The Los Angeles Police Department (LAPD) has banned the use of commercial facial-recognition services – citing “public trust” considerations. The move comes in the wake of a report that showed that more than 25 employees of the department had performed 475 searches so far using the Clearview AI, an artificial intelligence (AI)-powered facial-recognition platform.


Mercy Iowa City Hospital Reports Data Breach, Over 60,000 Iowans Affected

Permalink - Posted on 2020-11-18 17:00

Unauthorized access to a hospital email account may have revealed the personal information of tens of thousands of Iowans, officials revealed in a letter to those potentially affected.


Ransomware Attack Forces Web Hosting Provider Managed.com to Take Servers Offline

Permalink - Posted on 2020-11-18 17:00

Managed.com, one of the biggest providers of managed web hosting solutions, has taken down all its servers in order to deal with a ransomware attack, ZDNet has learned today. Managed.com said the incident only impacted a limited number of customer sites, which the company said it immediately took offline. But hours after the attack, Managed.com said it also took down its entire web hosting infrastructure, which the company is now working to restore. This included WordPress and DotNetNuke managed hosting solutions, email servers, DNS servers, RDP access points, FTP servers, and online databases.


IoT Cyber Security Improvement Act Passes Senate

Permalink - Posted on 2020-11-18 17:00

The IoT Cybersecurity Improvement Act, a bill that aims to improve the security of Internet of Things (IoT) devices, passed the Senate on Tuesday and is heading to the White House for the president’s signature. The bill was first introduced in 2017 and it was reintroduced in 2019, passing the U.S. House of Representatives in September 2020.


Nearly Half of Spear Phishing Emails Bypass Security Filters

Permalink - Posted on 2020-11-18 17:00

47% of payloadless phishing emails are able to bypass the most popular secure email gateways (SEGs), according to researchers at IronScales. These are emails that don’t contain malicious links or attachments, but instead try to manipulate the user in a more targeted manner.


Pharmaceutical Industry Sees Increase in Mobile Phishing Encounters

Permalink - Posted on 2020-11-18 17:00

Lookout's newest Pharmaceutical Industry Threat Report shows attackers have turned to spear phishing campaigns to steal employees’ login data or deliver malicious payloads to their mobile devices to compromise the infrastructure of pharma companies. The rate at which devices encounter mobile phishing, app threats, device threats and risky networks is increasing.


North Dakota and Delaware State Departments Report Breaches of PHI

Permalink - Posted on 2020-11-17 17:00

The North Dakota Department of Health, Department of Human Services, Cavalier County Health District, and other state agencies were impacted by a phishing attack that saw multiple employee email accounts compromised between November 23 and December 23, 2019.


Over 80,000 ID Cards and Fingerprint Scans Exposed in Cloud Leak

Permalink - Posted on 2020-11-17 17:00

A US-based used electronics retailer has exposed over 2.6 million files, including ID cards and biometric images, after a misconfigured AWS S3 bucket was discovered. Researchers at Website Planet traced the instance back to California-based TronicsXchange, previously trading as GreenElectronicsExchange (GEEx).


Dating Site Bumble Leaves Swipes Unsecured for 100M Users

Permalink - Posted on 2020-11-17 17:00

After a taking closer look at the code for popular dating site and app Bumble, where women typically initiate the conversation, Independent Security Evaluators researcher Sanjana Sarda found concerning API vulnerabilities. These not only allowed her to bypass paying for Bumble Boost premium services, but she also was able to access personal information for the platform’s entire user base of nearly 100 million.


NC: Alamance Skin Center Breach Left Patient Data Totally Unrecoverable

Permalink - Posted on 2020-11-17 17:00

Alamance Skin Center recently reported a HIPAA breach to HHS as being a “Loss” incident with data in EMR. But previous media coverage provided an even more dire understanding of the incident. Alamance notified HHS that 100,000 patients were impacted by the incident.


New Canada Privacy Law to Level Stiff Fines for Digital Breaches

Permalink - Posted on 2020-11-17 17:00

Prime Minister Justin Trudeau’s government unveiled a remake of Canadian privacy laws to strengthen user rights in the digital world. Under legislation introduced Tuesday in Ottawa, companies that commit the most serious offenses would be hit with fines worth as much as 5% of revenue or C$25 million ($19 million), whichever is higher. The government said these penalties would be the strongest among the Group of Seven.


Majority of APAC Firms Pay Up in Ransomware Attacks

Permalink - Posted on 2020-11-17 17:00

Despite expert advice against paying up, most victims of ransomware attacks in the region including 88% in Australia and 78% in Singapore have paid the ransom in full or in part, and the number of such attacks is only going to keep climbing amidst accelerated digital transformation efforts and remote work.


American Bank Systems Hit by Ransomware Attack, Full 53 GB Data Dump Leaked

Permalink - Posted on 2020-11-17 17:00

American Bank Systems (ABS), a service provider to US banks and financial institutions has suffered a ransomware attack with some of its clients' data leaked.


Cold Storage Giant Americold Hit by Cyber Attack, Services Impacted

Permalink - Posted on 2020-11-17 17:00

Cold storage giant Americold is currently dealing with a cyberattack impacting their operations, including phone systems, email, inventory management, and order fulfillment.


Cyber Security Is top Business Worry in "Age of Risk": Marsh & McLennan CEO

Permalink - Posted on 2020-11-17 17:00

Cybersecurity has emerged as the most pressing exposure for business confronting a new "age of risk," topping the coronavirus pandemic and climate change, in part because cybercrime is so pervasive, the head of insurance broker and consulting firm Marsh & McLennan Companies Inc MMC.N said on Monday. “For most large multinational companies, cyber may not have been their largest exposure pre-COVID, but it’s certainly their biggest exposure now,” Chief Executive Dan Glaser said at the Reuters Events Future of Insurance USA conference. “Think about the ability to service clients if, for example, the system went down.” Cyber risk also is difficult for companies to deal with conclusively. “CEOs like to get things done and say it’s finished,” he said. “Cyber is a never-ending phenomenon. It will continue for the rest of all of our careers.”


Update: London Council Cyber Attack Disruption Could Last for Months

Permalink - Posted on 2020-11-17 17:00

Hackney Council, which provides services to 280,000 people in east London, said in an update on the mid-October cyberattack that it was continuing to work hard to recover the affected systems and end the "significant disruption" that has prevented residents from accessing some services. Services still affected include the land searches and planning applications needed for property sales, plus the ordering and reporting systems the council uses to process reports such as noise nuisance, antisocial behaviour and missed waste collections. Systems the council uses to access accounts, create new accounts and process payments for things like benefits, Council Tax, rents and service charges, and the online apps that residents use to manage these themselves, are also affected.


Biotech Company Miltenyi Biotec Discloses Malware Attack

Permalink - Posted on 2020-11-17 17:00

The Cologne, Germany-based company provides solutions for cell and therapy research, including COVID-19-related products. It has facilities in 28 countries and employs more than 3,000 people. In an official statement, Miltenyi Biotec announced that, over the past couple of weeks, it experienced malware attacks that affected some of its order processing capabilities.


Exposed Database Reveals 100K+ Compromised Facebook Accounts

Permalink - Posted on 2020-11-17 17:00

Cybercriminals left an ElasticSearch database exposed, revealing a global attack that compromised Facebook accounts and used them to scam others. Researchers said that the cybercriminals behind the scam were tricking Facebook victims into providing their account login credentials by using a tool that pretended to reveal who was visiting their profiles.


Update: Capcom Confirms Data Breach After Gamers' Data Stolen in Cyber Attack

Permalink - Posted on 2020-11-17 17:00

In a data breach notification released today, Capcom has admitted that not only has confidential corporate documents been stolen, but that the threat actors stole customers' and employees' data as well. During the attack, the hackers gained access to customers' names, addresses, gender, phone numbers, email addresses, birth dates, investor names, and amount of shareholdings, and photos. For employees, the information exposed could include names, addresses, passport information, signatures, birth dates, phone numbers, photos, email addresses, and more.


City of Saint John Hit by Significant Cyber Attack

Permalink - Posted on 2020-11-17 17:00

There's been a "significant" cyber attack against the City of Saint John, according to a news release from the municipality on Sunday evening. The city's 911 communication system is working, but other services such as online payments systems, email and customer service applications are all down. So is the city's website. Officials with the city say they don't yet know whether any personal information stored on the networks has been compromised.


Pluto TV Likely Suffered a Security Breach Affecting 3.2 Million Accounts

Permalink - Posted on 2020-11-17 17:00

The breach comes from hacking group ShinyHunters, which has previously released customer records from over 17 companies, and was allegedly responsible for breaking into Microsoft's private GitHub repository earlier this year. The Pluto TV database was released for free access by ShinyHunters, and according to BleepingComputer, the records contain display names, email addresses, hashed passwords, birthdays, device platforms, and IP addresses.


Private Practitioner Pays $15,000 Penalty for HIPAA Right of Access Failure

Permalink - Posted on 2020-11-13 17:00

The U.S. Department of Health and Human Services’ Office for Civil Rights (OCR) has announced its 11th financial penalty under its HIPAA Right of Access enforcement initiative. Dr. Rajendra Bhayani, a Regal Park, NY-based private practitioner specializing in otolaryngology has agreed to pay a financial penalty of $15,000 to settle the case and adopt a corrective action plan to address areas of noncompliance discovered by OCR during the investigation.


Update: Luxottica Data Breach Impacts 829,454 Individuals in the United States

Permalink - Posted on 2020-11-13 17:00

Luxottica discovered the cyberattack on August 9, 2020 and immediately took steps to contain the breach. The subsequent investigation confirmed personal and protected health information were potentially accessed and acquired by the attackers. The types of data exposed included names, contact information, appointment dates and times, health insurance policy numbers, appointment notes, doctors’ notes, and information related to eye care treatment, including health conditions, procedures, and prescriptions. A limited number of patients also had their credit card number and/or Social Security number exposed. This is not the only security breach to have affected Luxottica this year. On September 18, 2020, the eyewear company suffered a Nefilim ransomware attack that caused significant outages and disruption to services in Italy and China. Sensitive information was also stolen in the attack prior to the deployment of ransomware.


€10m Fine Demanded in Lawsuit for IT Firm Behind Huge Data Breach of Malta Voter Data

Permalink - Posted on 2020-11-13 17:00

Three of the 337,384 Maltese voters whose data was leaked in a massive security breach in April, have filed a complaint with the Data Protection Authority requesting that the IT company that held the data be fined up to €10 million. Their complaint comes a month after more than 620 claimants filed a joint lawsuit claiming EU data protection laws were breached by the data leak and asked the civil courts to quantify and award them damages for harm suffered due to the breach. The collective action was led by The Daphne Caruana Galizia Foundation and Repubblika.


Hacker Steals $2 Million from Crypto Currency Service Akropolis

Permalink - Posted on 2020-11-13 17:00

Flash loan attacks have become common against cryptocurrency services running DeFi (decentralized finance) platforms that allow users to borrow or loan using cryptocurrency, speculate on price variations, and earn interest on cryptocurrency savings-like accounts.


Malware Activity Spikes 128%, Office Document Phishing Skyrockets

Permalink - Posted on 2020-11-13 17:00

There has been a significant increase in malware activity over the course of Q3 2020; the 128% increase from Q2 represents more than 43,000 malware variants detected a day.


Successful Ransomware Attacks on Education Sector Grew 388% in Q3 2020

Permalink - Posted on 2020-11-13 17:00

This isn’t the first time that security researchers documented an increase in ransomware attacks between the second and third quarters of the same year. Looking back to 2019, for instance, Emsisoft found that the number of crypto-malware infections had grown from five in Q2 2019 to 51 a quarter later. That’s a growth rate of 1,020%.


Info. of 27.7 Million Texas Drivers Exposed in Vertafore Data Breach

Permalink - Posted on 2020-11-13 17:00

Vertafore blames incident on human error after user data was stored on an unsecured external storage service. The files were accessed by an external party.


Ticketmaster Fined £1.25m Over Payment Data Breach

Permalink - Posted on 2020-11-13 17:00

The fine was issued by the Information Commissioner's Office (ICO) following a cyber-attack on the Ticketmaster website in 2018. The ICO said personal information and payment details had potentially been stolen from more than nine million customers in Europe.


Popular Stock Photo Service Hit by Data Breach, 8.3M Records for Sale

Permalink - Posted on 2020-11-12 17:00

From the samples of the database seen by BleepingComputer, the stolen data includes a 123RF members' full name, email address, MD5 hashed passwords, company name, phone number, address, PayPal email if used, and IP address. There is no financial information stored in the database.


Zoll Medical Corp. Breach Lawsuit Spotlights Complex Vendor Issues

Permalink - Posted on 2020-11-12 17:00

Medical device maker Zoll Medical Corp. has sued IT vendor Barracuda Networks in the wake of an email server migration mishap that exposed the health data of more than 277,000 individuals. The case illustrates the complexities of vendor risk management - especially after mergers and acquisitions.


Animal Jam Kids' Virtual World Hit by Data Breach, Impacts 46M Accounts

Permalink - Posted on 2020-11-12 17:00

The immensely popular children's online playground Animal Jam has suffered a data breach impacting 46 million accounts. The two stolen databases are titled 'game_accounts' and 'users' and contain approximately 46 million stolen user records. As part of the free release, the threat actor shared only a partial database containing approximately 7 million user records for children/parents who signed up for the game.


Ransomware Attack on Medical Billing Company

Permalink - Posted on 2020-11-12 17:00

An Iowa medical billing and reimbursements services company is boosting its cybersecurity after suffering a ransomware attack. An unknown threat actor hit Timberline Billing Service LLC with malware between February 12 and March 4, 2020. After gaining access to the company's network, the attacker encrypted files and removed information.


Update: Steelcase Furniture Giant Down for 2 Weeks After Ransomware Attack

Permalink - Posted on 2020-11-12 17:00

The office furniture manufacturer expects some third-quarter shipments to be delayed to the fourth quarter "due to the timing of the operational shutdown, which spanned into early November." Steelcase incurred additional costs due to system remediation, restoration, and reinforcement, as well as operational inefficiencies after the attack.


Pell City, AL Notifies Residents of Vendor Breach

Permalink - Posted on 2020-11-12 17:00

In Pell City’s case, the exposed information includes the “name, address, checking account number, ABA routing number, and any other information appearing on the front of the check.”


Encryption-Based Threats Grow by 260% in 2020

Permalink - Posted on 2020-11-11 17:00

Researchers witnessed a 5x increase in ransomware attacks over encrypted traffic beginning in March, when the World Health Organization declared the virus a pandemic. Earlier research from Zscaler indicated a 30,000 percent spike in COVID-related threats, when cybercriminals first began preying on fears of the virus.


Phillipines Privacy Commission Probes Suspected LTO Data Leak

Permalink - Posted on 2020-11-11 17:00

The National Privacy Commission is investigating a suspected data leak involving car registrations under the Land Transportation Office. In a statement, the privacy body said it is looking into the data available on lisensya.info, which has a “Motor Vehicle Authenticator” that reveals the car make, plate and engine number, registration expiry date, and the name of the registered owner by encoding the motor vehicle file number. The website also features a “license authenticator” on its homepage. The LTO has denied any connection with the website. However, the NPC said netizens have reported that the vehicle registration data which the site provided were accurate, raising suspicions of a leak from the LTO database. There were 12.725 million vehicles registered with the LTO as of 2019, the regulator said.


E.U. Agrees on Tighter Rules for Surveillance Tech. Exports

Permalink - Posted on 2020-11-11 17:00

EU lawmakers and the European Council reached a provisional deal to update controls of so-called dual use goods such as facial recognition technology and spyware to prevent them from being used to violate human rights. Under the new rules, European companies will have to apply for government licenses to export certain products and they’ll have to meet criteria that have been beefed up to include requirements to consider whether the sale poses a risk to human rights. EU countries will also have to be more transparent by publicly disclosing details about the export licenses they grant. And the rules can also be swiftly changed to cover emerging technologies.


Ransomware Attack on Medicaid Billing Service Provider Impacts 116,000 Individuals

Permalink - Posted on 2020-11-11 17:00

Timberline Billing Service, LLC, a Des Moines, IA-based Medicaid billing company, has suffered a ransomware attack that resulted in the encryption and theft of data. An investigation into the attack revealed an unknown individual gained access to its systems between February 12, 2020 and March 4, 2020 and deployed ransomware. Prior to the encryption of files, some information was exfiltrated from its systems.


Hacker Sells Access to Pakistani Airlines' Network

Permalink - Posted on 2020-11-11 17:00

Access to Pakistan International Airlines’ network is being offered for sale on the cyber underground, according to threat researchers in Israel. A team at dark net threat intelligence firm KELA spotted a threat actor touting domain admin access to the airline for $4,000 on two Russian-speaking illegal online forums and one English-speaking forum that they had been monitoring.


130k+ Extremely NSFW Sexual Photos, Video and Audio Leaked by LimitChat

Permalink - Posted on 2020-11-11 17:00

The sexting – or sex texting/messaging – industry has certainly boomed in 2020 in response to forced isolation in many regions. As Covid-19 has locked down entire populations, individuals are increasingly looking online for digital intimacy when physical intimacy is forbidden or risky. Since people generally want to feel safe when sending these kinds of explicit communications, it can be seen as a betrayal that a platform would be so loose in its security.


New Government Contractor Cyber Security Requirements Loom

Permalink - Posted on 2020-11-11 17:00

A new U.S. Department of Defense rule goes into effect later this month that will require DoD contractors and subcontractors to complete a cybersecurity self-assessment. The rule, technically an interim rule, amends the Defense Federal Acquisition Regulation Supplement, or DFARS, by requiring the implementation of a DoD Assessment Methodology and Cybersecurity Maturity Model Certification (CMMC) framework to ensure unclassified information within the DoD supply chain is protected. Beginning November 30, prime contractors and subcontractors will need to complete an assessment before receiving new DoD contracts and before to the exercise of new options under existing DoD contracts.


Dutch Government Orders Further Anti-Spying Measures for Telecoms

Permalink - Posted on 2020-11-11 17:00

The Dutch government on Wednesday ordered a raft of new security regulations for telecommunications providers, including rules on equipment and software suppliers and a requirement that only people with background checks are allowed access to networks. The requirements, which will cover major providers KPN KPN.AS, T-Mobile and Vodafone VOD.L, are part of a series of moves to strengthen standards after a 2019 assessment of the risks posed by China and other countries identified as having an "offensive cyber strategy".


Sandicliffe Customer Data Breach Could Affect Thousands

Permalink - Posted on 2020-11-10 17:00

A data breach at Sandicliffe Motor Group could affect “thousands” of staff and customers of the AM100 car retailer, according to a legal firm. Bank account details and medical histories may be included in the information taken in the cyber-attack, which was initially reported to the Information Commissioner’s Office (ICO), back in February, after an employee opened a link in an unsolicited email.


Ransomware Group Turns to Facebook Ads

Permalink - Posted on 2020-11-10 17:00

On the evening of Monday, Nov. 9, an ad campaign apparently taken out by the Ragnar Locker Team began appearing on Facebook. The ad was designed to turn the screws to the Italian beverage vendor Campari Group, which acknowledged on Nov. 3 that its computer systems had been sidelined by a malware attack. On Nov. 6, Campari issued a follow-up statement saying “at this stage, we cannot completely exclude that some personal and business data has been taken.”


Trump Site Alleging AZ Election Fraud Exposes Voter Data

Permalink - Posted on 2020-11-10 17:00

Slapdash setup of Trump website collecting reports of Maricopa County in-person vote irregularities exposed 163,000 voter data records to fraud, via SQL injection.


5.8 Million RedDoorz User Records for Sale on Hacking Forum

Permalink - Posted on 2020-11-10 17:00

After suffering a data breach in September, a threat actor is selling a RedDoorz database containing 5.8 million user records on a hacker forum. RedDoorz is a Singapore-based hotel management & booking platform with over 1,000 properties across Southeast Asia. Using the website or mobile app, users can register an account to browser available budget hotels and book a reservation. At the end of September 2020, RedDoorz disclosed that they suffered a data breach after an unauthorized person accessed one of their databases. At the time, though, no RedDoorz financial information or passwords were exposed "to the best of its knowledge."


Update: Luxottica Data Breach Exposes Info. of LensCrafters and EyeMed Patients

Permalink - Posted on 2020-11-09 16:00

Luxottica Group S.p.A. is an Italian eyewear conglomerate and the world’s largest company in the eyewear industry. As a vertically integrated company, Luxottica designs, manufactures, distributes and retails its eyewear brands, including LensCrafters, Sunglass Hut, Apex by Sunglass Hut, Pearle Vision, Target Optical, Eyemed vision care plan, and Glasses.com. Its best known brands are Ray-Ban, Persol, and Oakley. Luxottica also makes sunglasses and prescription frames for designer brands such as Chanel, Prada, Giorgio Armani, Burberry, Versace, Dolce and Gabbana, Miu Miu, and Tory Burch.


Ransomware Hits E-Commerce Platform X-Cart

Permalink - Posted on 2020-11-09 16:00

E-commerce software vendor X-Cart suffered a ransomware attack at the end of October that brought down customer stores hosted on the company's hosting platform. The incident is believed to have taken place after attackers exploited a vulnerability in a third-party software to gain access to X-Cart's store hosting systems.


Compal, the Second-Largest Laptop Manufacturer in the World, Hit by Ransomware

Permalink - Posted on 2020-11-09 16:00

Compal, a Taiwanese electronics company that builds laptops for some of the world's largest computer brands, suffered a ransomware attack over the weekend. Responsible for the breach is believed to be the DoppelPaymer ransomware gang, according to a screenshot of the ransom note shared by Compal employees with Yahoo Taiwan reporters.


Millions of Hotel Guests Worldwide Caught Up in Mass Data Leak

Permalink - Posted on 2020-11-09 16:00

A widely used hotel reservation platform has exposed 10 million files related to guests at various hotels around the world, thanks to a misconfigured Amazon Web Services S3 bucket. The records include sensitive data, including credit-card details. Prestige Software’s “Cloud Hospitality” is used by hotels to integrate their reservation systems with online booking websites like Expedia and Booking.com. The incident has affected 24.4 GB worth of data in total, according to the security team at Website Planet, which uncovered the bucket. Many of the records contain data for multiple hotel guests that were grouped together on a single reservation; thus, the number of people exposed is likely well over the 10 million, researchers said. Some of the records go back to 2013, the team determined – but the bucket was still “live” and in use when it was discovered this month.


$350,000 Settlement Reached to Resolve Saint Francis Healthcare Data Breach Lawsuit

Permalink - Posted on 2020-11-09 16:00

A class action lawsuit was filed against Saint Francis Healthcare in January 2020 in the U.S. District Court of Eastern Missouri which alleged negligence per se, breach of express and implied contracts, invasion of privacy, and violations of the Missouri Merchandise Practices Act. Almost 90,000 of the affected patients added their name to the lawsuit.


Housing Group Struck by Sodinokibi Data Thieves

Permalink - Posted on 2020-11-09 16:00

A housing association in East Anglia has suffered a ransomware attack, leading to the compromise of an unknown volume of employee and customer data. Norwich-headquartered Flagship Group put out a statement last week that it was forced to take most of its IT systems offline after the Sodinokibi strain entered the company via a phishing attack. Although these efforts were described as “successful,” the association admitted that “there has been some data encryption, and some personal customer and staff data has been compromised.


FTC Requires Zoom to Enhance Its Security Practices as Part of Settlement

Permalink - Posted on 2020-11-09 16:00

The Federal Trade Commission today announced a settlement with Zoom Video Communications, Inc. that will require the company to implement a robust information security program to settle allegations that the video conferencing provider engaged in a series of deceptive and unfair practices that undermined the security of its users. Zoom has agreed to a requirement to establish and implement a comprehensive security program, a prohibition on privacy and security misrepresentations, and other detailed and specific relief to protect its user base, which has skyrocketed from 10 million in December 2019 to 300 million in April 2020 during the COVID-19 pandemic.


Eight Months After Ransomware Attack, Advanced Urgent Care of Florida Keys Notifies Patients

Permalink - Posted on 2020-11-09 16:00

On March 14, DataBreaches.net reported that Advanced Urgent Care of the Florida Keys had been attacked, and patient data dumped. The data dump had been listed on a Russian-language forum known for data dumps, and the threat actor, then known as “m1x,” called the medical group “Malicious Defaulters” because they wouldn’t pay to prevent data dumping. There was also billing information dumped. From timestamps, it appeared the attack occurred on or about March 1. DataBreaches.net also posted a number of redacted screenshots from the data dump, while noting that the medical center had not responded to several inquiries sent to them by this site.


Alibaba-Backed Bigbasket Suffers Major Data Loss in Cyber Attack

Permalink - Posted on 2020-11-09 16:00

Cyberattackers have stolen the personal details of million users of top Indian internet grocer Bigbasket, the latest e-commerce data breach to emerge as home-bound consumers flock online. Bigbasket co-founder and chief executive officer Hari Menon confirmed the attack, which was first reported by U.S. cybersecurity researcher Cyble Inc. The stolen data, which includes sensitive information including email IDs, mobile phone numbers and full addresses, has been put up for sale on the dark web for more than $40,000, the Atlanta-based outfit said in a blogpost.


Half of Ransomware Attacks Now Involve the Theft of Data Prior to Encryption

Permalink - Posted on 2020-11-06 17:00

Coveware has released its Quarterly Ransomware report for Q3, 2020 highlighting the latest ransomware attack trends. The report confirms that data exfiltration prior to the use of ransomware continues to be a popular tactic, with around half of all ransomware attacks involving data theft. Attacks involving the theft of data doubled in Q3, 2020.


Update: Hackers Demand $11 Million from Capcom After Ransomware Attack

Permalink - Posted on 2020-11-06 17:00

The company revealed on November 4 in a press release that it detected unauthorized access to its internal networks a couple of days earlier. Capcom said it was forced to halt some operations and that the incident impacted its email and file servers, among other systems. It claimed that it had found no evidence of customer information being compromised. However, the cybercriminals who breached Capcom, a group that uses the ransomware known as Ragnar Locker, claim to have stolen more than 1 TB of files, including accounting files, banking statements, financial reports, tax documents, intellectual property, proprietary business information, personal information of employees and customers, corporate contracts, emails, private chats, and various other types of information.


Sodinokibi/REvil Ransomware Gang Pwns British Housing Biz

Permalink - Posted on 2020-11-06 17:00

A social housing provider in Norwich, England, has said it was hit with the Sodinokibi ransomware following what it assumes was a successful phishing attack. Flagship Group revealed last night that its systems were compromised by a "cyberattack" on Sunday, 1 November.


Almost 11 Million Patients Impacted by Blackbaud Incident and Counting

Permalink - Posted on 2020-11-06 17:00

A snapshot on Tuesday of the Department of Health and Human Services’ HIPAA Breach Reporting Tool website – along with notification statements issued by the breached entities – shows that at least four dozen healthcare sector organizations were affected by the Blackbaud hacking incident.


Ireland Data Protection Commission Fine on Tusla Child and Family Agency Confirmed in Court

Permalink - Posted on 2020-11-06 17:00

The Irish Data Protection Commission (DPC) today had the decision to impose an administrative fine on Tusla Child and Family Agency confirmed in the Dublin Circuit Court. The application to confirm the decision to impose an administrative fine of €75,000 was made pursuant to Section 143 of the Data Protection Act 2018. This was the first fine issued under the GDPR in Ireland following a statutory inquiry and is the first application under Section 143.


Linux Version of RansomEXX Ransomware Discovered

Permalink - Posted on 2020-11-06 17:00

This marks the first time a major Windows ransomware strain has been ported to Linux to aid hackers in their targeted intrusions.


34% of Employees say Their Company Doesn't Follow Basic Cyber Security Protocols

Permalink - Posted on 2020-11-06 17:00

More than one-third (34%) of full-time employees at companies in the U.S. admitted to not practicing basic cybersecurity protocols during COVID–19, according to a new survey report from Visual Objects, a visual guide to finding and hiring the best creative firms. Despite increased risk due to remote work, employees said their companies aren’t requiring secure WiFi networks, phishing training, two-factor authentication, VPNs, or password managers.


Italian Beverage Vendor Campari Knocked Offline After Ransomware Attack

Permalink - Posted on 2020-11-05 18:00

Campari Group, the famed Italian beverage vendor behind brands like Campari, Cinzano, and Appleton, has been hit by a ransomware attack and has taken down a large part of its IT network. The attack took place last Sunday, on November 1, and has been linked to the RagnarLocker ransomware gang, according to a copy of the ransom note shared with ZDNet by a malware researcher who goes online by the name of Pancak3.


Indian Pharmaceutical Giant Lupin Reports Cyber Attack

Permalink - Posted on 2020-11-05 18:00

Another leading Indian pharmaceutical, Lupin, has reported a cybersecurity attack on its IT systems within two weeks of a ransomware attack on Dr Reddy’s Laboratories.


Club Fitness Provides Notice of Data Security Incident

Permalink - Posted on 2020-11-05 18:00

Club Fitness Holdings, Inc. ("Club Fitness") is notifying members of the Club Fitness Community of a data security incident that may have involved certain individual's personal information. Club Fitness is notifying the potentially impacted individuals of this incident and providing resources to assist them in protecting their information.


Over Half of Organizations Still Operating Without a BYOD Policy

Permalink - Posted on 2020-11-05 18:00

More than half (51%) of global organizations still do not have a BYOD policy despite the growing use of these devices by staff as a result of the shift to home working during the COVID-19 pandemic.


California Voters Expand Data Privacy Law

Permalink - Posted on 2020-11-05 18:00

California voters have backed an initiative expanding a data privacy law criticized by rights watchdogs as having worrying "loopholes" for firms such as Google and Facebook. The initiative, which got 56 percent of the vote in Tuesday's election, builds on a state law by letting people limit how businesses use data such as their location, race and religion.


Two-Thirds of Financial Services Firms Suffered Cyber Attack in the Past Year

Permalink - Posted on 2020-11-05 18:00

Almost two-thirds (65%) of large financial services companies have suffered a cyber-attack in the past year, while 45% have experienced a rise in attack attempts since the start of the COVID-19 pandemic.


Rackspace Hosted Email Flaw Actively Exploited by Attackers

Permalink - Posted on 2020-11-05 18:00

The company has told at least some customers, including Information Security Media Group - a customer of Rackspace's hosted email service - that it aims to have a fix in place by the end of November. But Rackspace did not immediately respond to multiple, additional questions concerning the flaw, including recommended mitigation steps pending a full fix, and for what length of time the flaw may have been getting exploited, or to what extent.


Private Prison Operator GEO Hit by Ransomware

Permalink - Posted on 2020-11-05 18:00

Data for inmates and employees at three centers in California, Florida, and Pennsylvania was exposed in a ransomware attack on August 19.


Premium-Rate Phone Fraudsters Hack VoIP Servers of 1200 Companies

Permalink - Posted on 2020-11-05 18:00

Cybersecurity researchers today took the wraps off an on-going cyber fraud operation led by hackers in Gaza, West Bank, and Egypt to compromise VoIP servers of more than 1,200 organizations across 60 countries over the past 12 months.


Japanese Video Game Firm Capcom Hit by a Cyber Attack

Permalink - Posted on 2020-11-05 18:00

The Notice Regarding Network Issues published by the company states that on the morning of November 2nd, 2020 is suffered a cyberattack, In response to the incident the game developer shut down portions of their corporate network to prevent the malware from spreading.


ShinyHunters Hacker Leaks 5.22GB Worth of Mashable.com Database

Permalink - Posted on 2020-11-05 18:00

After analyzing some of the data, Hackread.com can confirm that the leaked database contains staff, users, and subscribers data such as full names, email addresses, country, gender, job description, online behavior related details, date of registration, IP addresses, social media profile links, and authentication tokens, etc.


Brazil's Court System Under Massive RansomExx Ransomware Attack

Permalink - Posted on 2020-11-05 18:00

Brazil's Superior Court of Justice was hit by a ransomware attack on Tuesday during judgment sessions that were taking place over video conference.


23,600 Hacked Databases Have Leaked from a Defunct Data Breach Index Site

Permalink - Posted on 2020-11-04 16:00

he database collection is said to have originated from Cit0Day.in, a private service advertised on hacking forums to other cybercriminals. Cit0day operated by collecting hacked databases and then providing access to usernames, emails, addresses, and even cleartext passwords to other hackers for a daily or monthly fee.


Configuration SNAFU Exposes Passwords for Two Million Marijuana Growers

Permalink - Posted on 2020-11-04 16:00

Passwords for GrowDiaries users were stored using the weak MD5 hashing function, putting customer accounts at risk of attacks.


Leading Toy Maker Mattel Hit by Ransomware

Permalink - Posted on 2020-11-04 16:00

​Toy industry giant Mattel disclosed that they suffered a ransomware attack in July that impacted some of its business functions but did not lead to data theft. The filing does not indicate what ransomware operation was responsible for the attack, but a source told BleepingComputer that Mattel suffered a TrickBot infection in July.


New Data Shows Just How Badly Home Users Overestimate IoT Security

Permalink - Posted on 2020-11-04 16:00

A new survey from the National Cyber Security Alliance (NCSA) shows adult workers vastly overestimate the security of the internet devices in their homes. IoT devices, particularly those that are cheap, outdated and hard to upgrade, are widely considered to be an easy target for hackers. Yet 87 percent of the younger group and 77 percent of the older group said they were either “somewhat” or “very confident” in the security of their connected things.


Former eBay Execs Indicted for Cyber-Stalking Campaign

Permalink - Posted on 2020-11-04 16:00

Two former eBay executives have been indicted with cyber-stalking charges connected to harassment of the editor and publisher of a newsletter critical of their former employer. Former senior director of safety and security, James Baugh, and director of global resiliency, David Harville, were charged with multiple counts by a federal grand jury in Boston. The duo were previously charged by criminal complaint in June 2020 but the latest development raises the stakes significantly given the potentially lengthy jail terms associated with federal crimes.


Police to Livestream Ring Camera Footage of Mississippi Residents

Permalink - Posted on 2020-11-04 16:00

Police in Mississippi are testing a program in which they can livestream video footage from private security cameras – including Ring doorbell cameras – installed at private homes and businesses. The program in Jackson, Miss., to use the Ring door cameras as part of surveillance efforts, is being touted as a new way to help police fight rising crime, according to a report in the Jackson Free Press. However, the move is also sounding an alarm bell with the American Civil Liberties Union (ACLU) and other privacy advocates who worry of surveillance issues.


Wakefern Food Corporation Settles HIPAA Breach Case with NJ Attorney General for $235,000

Permalink - Posted on 2020-11-04 16:00

Wakefern Food Corporation has agreed to pay $235,000 in civil financial penalties to resolve allegations of violations of federal and state laws related to a data breach involving the protected health information of 9,700 customers of two ShopRite supermarkets in Millville, New Jersey and Kingston, New York. In addition to the financial penalties, the settlement requires improvements to be made to data security practices.


One in Three Attacks Are Coronavirus-Related

Permalink - Posted on 2020-11-03 18:00

The NCSC's Annual Review 2020 reveals that the cyber arm of GCHQ has handled more 200 cyber incidents related to coronavirus during the course of this year – almost a third of the total number of incidents it was called in to help with over that period.


Media Comms Giant Isentia says Ransomware Hit Will Cost Millions

Permalink - Posted on 2020-11-03 18:00

Media communications giant Isentia is reporting that its coffers will be emptied of as much as $6 million ($8.5 million AUS) in the wake of a ransomware attack last week.


ShopRite, Wakefern Will Pay $235k Fine, Improve Security After Massive Data Breach, AG Says

Permalink - Posted on 2020-11-03 18:00

hopRite and its parent company, Wakefern Food Corporation, will pay $235,000 after two supermarkets threw away electronic devices exposing thousands of customers' medical information, Attorney General Gurbir Grewal announced Monday. The company will also have to improve its data security after they failed to protect the information of more than 9,700 pharmaceutical customers at the ShopRites of Millville in Cumberland County and Kingston, New York.


Second-Hand USBs Purchased on eBay Expose Personal and Financial Information of Users

Permalink - Posted on 2020-11-03 18:00

More than two-thirds of second-hand USBs purchased from auction platforms such as eBay contain private and sensitive information belonging to their previous owners, according to researchers at Abertay University. An analysis of 100 USB drives purchased from the e-commerce website revealed 75,000 files with personal and financial information, cataloged in three categories:


Ransomware Alert as Emotet Detections Surge 1200%

Permalink - Posted on 2020-11-03 18:00

Detected attacks using the Emotet Trojan soared by over 1200% from Q2 to the third quarter of this year, supporting a surge in ransomware campaigns, according to the latest data from HP Inc.


BEC Attacks Increase in Most Industries, Invoice and Payment Fraud Rise by 155%

Permalink - Posted on 2020-11-03 18:00

BEC attacks increased 15% quarter-over-quarter, driven by an explosion in invoice and payment fraud, Abnormal Security research reveals.


Ryuk Ransomware Behind One Third of All Ransomware Attacks in 2020

Permalink - Posted on 2020-11-03 18:00

Ransomware attacks are making daily headlines as they wreak havoc on enterprises, municipalities, healthcare organizations and educational institutions. Researchers tracked aggressive growth during each month of Q3, including a massive spike in September.


Fewer Than 25 Percent of Companies Deployed Adequate Security Access Control Systems

Permalink - Posted on 2020-11-03 18:00

The survey, released today by the Control System Cyber Security Association International (CS)2AI and KPMG, also found that 60 percent of companies didn’t know if they had a security awareness training program, while another 20.6 percent say such programs are non-existent at their companies.


Folksam Data Breach Leaks Info. of 1M Swedes to Google, Facebook, More

Permalink - Posted on 2020-11-03 18:00

The insurer discovered the data breach after an internal audit according to Jens Wikström, Head of Marketing and Sales at Folksam, and reported the incident to the Swedish Data Protection Authority (Datainspektionen). The sensitive personal data shared by Folksam includes various types of info such as social security numbers or that an individual purchased union or pregnancy insurance.


Blackbaud Sued in 23 Class Action Lawsuits After Ransomware Attack

Permalink - Posted on 2020-11-03 18:00

The ransomware attack directly responsible for the software provider being sued was disclosed by the company on July 16, 2020. The cloud software provider has also received roughly 160 claims related to the ransomware attack from customers and/or their attorneys in the U.S., U.K., and Canada. Inquiries into the attack have also been made by government agencies and data regulators including a multi-state, consolidated Civil Investigative Demand issued on behalf of 43 state Attorneys Generals and the District of Columbia.


BBC Hit with Over 250,000 Phishing Emails Every Day

Permalink - Posted on 2020-11-02 18:00

The British Broadcasting Corporation (BBC) receives over a quarter of a million malicious email attacks every day, according to a Freedom of Information (FOI) request by the Parliament Street think tank’s cyber security team. The BBC blocked an average of 283,597 scam or spam emails a day over the first eight months of 2020, reporting an average of 6,704,188 malicious emails per month. Between January and August 2020, BBC systems managed to block a total of 51,898,393 infected emails. Additionally, the think tank also found that the BBC blocks an average of 18,662 malware attacks a month.


$202,000 HIPAA Fine Issued to New Haven, CT

Permalink - Posted on 2020-11-02 18:00

An OCR investigation was launched in May 2017 following receipt of a data breach notification from New Haven on January 24, 2017. OCR investigated whether the data breach was linked to potential violations of HIPAA Rules.


Cyber Attack Shuts Down Saskatchewan Polytechnic

Permalink - Posted on 2020-11-02 18:00

Online and in-person classes have been cancelled at Saskatchewan Polytechnic following a cybersecurity attack. School officials said classes are cancelled until Nov. 5 while IT staff work with outside experts to restore systems, with the first priority restoring online learning.


NetWalker Hits CMC in Ravenna

Permalink - Posted on 2020-11-02 18:00

Andrea Alberizia reports that CMC in Ravenna has been compromised by NetWalker ransomware. A team of 20 engineers from Itway has been working around the clock for four days to get the coop network fully restored.


Companies to Face Stiffer Penalties for Data Breaches Under Changes to PDPA

Permalink - Posted on 2020-11-02 18:00

Companies will be penalised more heavily for data breaches as part of proposed changes to the Personal Data Protection Act (PDPA), said Minister for Communications and Information S Iswaran on Monday (2 November).


Hackers Selling a Total of 34 Million User Records Stolen From 17 Companies

Permalink - Posted on 2020-11-02 18:00

A threat actor is selling account databases containing a total of 34 million user records that they claim were stolen from seventeen companies during data breaches. This was first advertised on October 28th by a data breach broker, who created a new topic on a hacker forum to sell the stolen user databases for seventeen companies.


Hackers Stole Credit Card Data from JM Bullion Online Bullion Dealer

Permalink - Posted on 2020-11-02 18:00

t is a classic Magecart attack, threat actors planted a malicious script on the website which was used to steal information entered by users while making a purchase. The company was alerted of the compromise on July 6, 2020 and immediately launched an investigation with the help of a third-party forensic firm.


Cyber Attack Hits Jewish General's IT Network

Permalink - Posted on 2020-10-30 18:00

The Jewish General Hospital and its sister institutions in the west end are scrambling to contain what appears to be a computer virus that struck its information technology systems Wednesday evening.


Montreal Metro Hacker Demands $2.8m Ransom

Permalink - Posted on 2020-10-30 18:00

The Société de transport de Montréal (STM) was targeted with ransomware on October 19. The attack knocked the agency’s reservation system for adapted transit offline and caused an outage that affected around 1,000 of STM's 1,600 servers, 624 of which are considered operationally sensitive.


Number of Breached Records Hits 36 Billion in 2020

Permalink - Posted on 2020-10-30 18:00

The number of publicly reported data breaches fell in the third quarter of 2020, but billions more records were exposed globally to bring the total this year to 36 billion, according to Risk Based Security. The security vendor’s 2020 Q3 Data Breach QuickView Report was compiled from human and automated analysis of publicly available reports, FOI requests and news reports. Elsewhere in the report, healthcare was the sector most affected by breach incidents, accounting for 11.5% of events. Interestingly, two breaches in Q3 exposed over one billion records each and four breaches exposed over 100 million records. So these six breaches cumulatively accounted for around eight billion exposed records, or over 22% of the total.


Marriott Fined £18.4m Over Data Breach

Permalink - Posted on 2020-10-30 18:00

The UK's independent body set up to uphold information rights imposed the financial penalty on Marriott for "failing to keep millions of customers' personal data secure."


Ransomware Demands Are Doubling Every Six Months

Permalink - Posted on 2020-10-30 18:00

The average payment demanded by ransomware operators has skyrocketed over the last several quarters, reaching an astounding $178,254 in the second quarter of 2020, nearly quadruple the amount demanded in the same period one year earlier, according to a report from cybersecurity firm Coveware.


University Email Hijacking Attacks Push Phishing, Malware

Permalink - Posted on 2020-10-30 18:00

Cybercriminals are hijacking legitimate email accounts from more than a dozen universities – including Purdue University, University of Oxford in the U.K. and Stanford University – and using the accounts to bypass detection and trick victims into handing over their email credentials or installing malware.


Invoice or Payment Fraud Attacks That Target Group Email Boxes Jump More Than 200%

Permalink - Posted on 2020-10-30 18:00

New research found that business email compromise (BEC) attacks focused on invoice or payment fraud and targeting group mailboxes increased 212 percent from second to third quarter. While invoice and payment fraud attacks on the c-suite are still prevalent, the sharp rise in attacks on group email boxes was significant because it pointed to a new favorite attack vector.


Dark Web Hackers say They Hold Keys to 10,000 Robinhood Accounts

Permalink - Posted on 2020-10-30 18:00

Access to more than 10,000 email login credentials allegedly tied to Robinhood accounts were available for sale this week, according to a Bloomberg review of dark web marketplaces. The number of Robinhood-related emails outnumber those for other brokerages by about 5-to-1, according to Eli Dominitz, chief executive officer of Q6 Cyber, an e-crime intelligence firm that analyzed the prevalence of these advertisements on the dark web


Experian's GDPR Violation Leaves Companies Scrambling to Understand "Legitimate Interest"

Permalink - Posted on 2020-10-30 18:00

A General Data Protection Regulation enforcement notice from United Kingdom regulators could leave credit reporting giant Experian on the hook for as much as $24 million – baffling U.S. and European Union companies alike, say legal experts.


Over 1M Lazada RedMart Accounts Sold Online After Data Breach

Permalink - Posted on 2020-10-30 18:00

Singapore's largest online grocery store Lazada Redmart has suffered a data breach after 1.1 million user accounts were put up for sale on a hacker forum. The database dump containing sensitive customer is priced at $1,500. Lazada is a billion-dollar arm of Alibaba with over 8,000 employees globally.


Majority of Microsoft 365 Admins Have Not Enabled Multi-Factor Authentication

Permalink - Posted on 2020-10-30 18:00

A new report published by CoreView has revealed the majority of Microsoft 365 admins have not enabled multi-factor authentication to protect their accounts from unauthorized remote access and are failing to implement other basic security practices. According to the study, 78% of Microsoft 365 administrators have not activated multi-factor authentication and 97% of Microsoft 365 users are not using MFA.


NH: Info. May Be Stolen in Salem Computer Attack

Permalink - Posted on 2020-10-30 18:00

Town officials still offline after a cybersecurity breach last week recently learned attackers were able to access internal systems, according to Town Manager Chris Dillon.


Threat Actors Dump Personal Employee and Student Data from Walled Lake Consolidated District

Permalink - Posted on 2020-10-29 18:00

One of the k-12 district ransomware attacks that DataBreaches.net has been following involves Walled Lake Consolidated District in Michigan. The district suffered a ransomware attack on or about October 10 that they are still working to recover from. But while they focus on recovery of systems, the threat actors have tried to pressure on them to pay the demanded ransom by starting to dump files that contain employee and student information.


Sky Lakes Medical Center and St. Lawrence Health System Attacked with Ransomware

Permalink - Posted on 2020-10-29 18:00

Two more hospitals have experienced ransomware attacks that have taken their computer systems offline and have forced clinicians to switch to pen and paper to record patient information. Both ransomware attacks occurred on Tuesday, October 27, 2020, one on Sky Lakes Medical Center in Klamath Falls, OR and the other on St. Lawrence Health System in New York. It is unclear what ransomware variant was used in the attack on Sky Lakes Medical Center at this stage, but the St. Lawrence Health System ransomware involved a new variant of Ryuk ransomware.


Home Depot Confirms Data Breach in Order Confirmation SNAFU

Permalink - Posted on 2020-10-29 18:00

Home Depot has exposed the private order confirmations of hundreds of Canadian consumers, containing names, physical addresses, email addresses, order details and partial credit-card information. After customers began reporting that they had received hundreds of emails from the home-improvement giant, each containing an order confirmation for a stranger, the company confirmed the issue.


Red Alert as U.S. Hospitals Are Flooded with Ryuk Ransomware

Permalink - Posted on 2020-10-29 18:00

The US government has been forced to issue an alert to healthcare providers of a major new ransomware campaign that may impair their ability to treat COVID-19 patients. The joint alert, issued by the FBI and Cybersecurity and Infrastructure Security Agency (CISA) and the Department of Health and Human Services (HHS), claimed that attackers using the Ryuk variant were targeting the sector with TrickBot malware.


Ransomware Hits Dozens of Hospitals in an Unprecedented Wave

Permalink - Posted on 2020-10-29 18:00

On Wednesday evening, the Cybersecurity and Infrastructure Security Agency, Federal Bureau of Investigation, and Department of Health and Human Services warned that there is a "an increased and imminent cybercrime threat to US hospitals and health care providers," above and beyond the wave of attacks that have already occurred. The alert points to the notorious Trickbot trojan and Ryuk ransomware as the primary hacking tools involved in the attacks. Security analysts at private companies say that the activity is tied to the Russian criminal gang sometimes called UNC 1878 or Wizard Spider.


Phishing Scam Costs Wisconsin GOP $2.3 Million

Permalink - Posted on 2020-10-29 18:00

The Republic Party of Wisconsin confirmed Thursday that fraudsters used phishing emails and doctored invoices to steal $2.3 million earmarked for President Donald Trump's reelection campaign.


Georgia County Voter Information Leaked by Ransomware Gang

Permalink - Posted on 2020-10-29 18:00

The DoppelPaymer ransomware gang has released unencrypted data stolen from Hall County, Georgia, during a cyberattack earlier this month. On October 7th, Hall County in Georgia announced that they had suffered a ransomware attack that impacted their networks and phone systems.


Medical Records of 3.5 Million U.S. Patients Can Be Accessed and Manipulated by Anyone

Permalink - Posted on 2020-10-28 17:00

The results of 13 million medical examinations relating to around 3.5 million U.S. patients are unprotected and available to anyone on the internet, SecurityWeek has learned. This is despite the third week of this year's National Cybersecurity Awareness Month (week beginning 19 October 2020) majoring on 'Securing Internet-Connected Devices in Healthcare'. The details were disclosed to SecurityWeek by Dirk Schrader, global vice president at New Net Technologies (NNT -- a security and compliance software firm headquartered in Naples, Florida). He demonstrated that the records can be accessed via an app that can be downloaded from the internet by anyone. The records found are in files that are still actively updated, and provide three separate threats: personal identity theft (including the more valuable medical identity theft), personal extortion, and healthcare company breaches.


German Infectious Disease Agency Hit by Hackers Days Before Arson Attack

Permalink - Posted on 2020-10-28 17:00

Germany’s Robert Koch Institute for infectious disease control was hit by a cyber attack days before its headquarters was the target of an arson attempt, Der Spiegel reported on Wednesday.


Credit Agency Experian Told to Stop sharing Data Without Consent

Permalink - Posted on 2020-10-28 17:00

Credit reference agency Experian has been sharing the personal information of millions of people without consent and must stop, the UK's information commissioner has ruled. The firm sold on the data to businesses that used it to identify who could afford goods and services, as well as to political parties. The company must make "fundamental changes" to how it handles data or face a huge fine, the watchdog said.


Aetna Pays $1,000,000 to Settle Three HIPAA Breaches

Permalink - Posted on 2020-10-28 17:00

In addition to the monetary settlement, Aetna will undertake a corrective action plan that includes two years of monitoring.


Confirmed: 3 NY St. Lawrence County Hospitals Hit by Ransomware

Permalink - Posted on 2020-10-28 17:00

The county’s emergency management office tells us ambulances were diverted Canton-Potsdam Hospital earlier in the morning Tuesday, but the diversion was lifted at 9:38 a.m. Officials said to the best of their knowledge, Gouverneur Hospital was still advising ambulances to take patients elsewhere as of late-afternoon. 7 News reached out to St. Lawrence Health System to clarify information about diversion, but officials did not reply. The news release mentioned nothing about it.


NPC to Allow Data Breach Victims to Apply for Cease-and-Desist Orders

Permalink - Posted on 2020-10-28 17:00

Victims of personal data breaches may request cease-and-desist orders from the National Privacy Commission (NPC) if the breach violates their privacy rights and causes “irreparable injury.” The NPC, in circular no. 20-02 signed on Oct. 6, said that it may issue such orders in the event of violations or threats to violate the Data Privacy Act. The order will be issued if the privacy breach harms the public interest or an individual.


Ambulance Chiefs Launch Inquiry into Serious Data Breach in Moray

Permalink - Posted on 2020-10-28 17:00

The SAS has launched a “detailed investigation” into how confidential details of employees were left in a garage in Forres. Moray MP Douglas Ross has raised the issue with SAS bosses after being contacted by a whistleblowing member of staff. Mr Ross said: “This appears be a serious breach of GDPR regulations on the safe storage of sensitive and confidential material.


Cyber Attack on WI's Unemployment System Exposes Banking Information

Permalink - Posted on 2020-10-28 17:00

The Department of Workforce Development says Wisconsin was one of several states to detect "unauthorized intrusions of state UI data originating from Japan, South Korea, Russia, and inside the U.S." A spokesperson says the department believes the cyber attack or attacks were able to access 116 active unemployment accounts.


ADHA Records Two My Health Record Security Incidents in FY20

Permalink - Posted on 2020-10-28 17:00

The agency responsible for oversight of My Health Record has revealed there were two incidents that compromised the medical records system during the 2019-20 financial year. In its annual report, the Australian Digital Health Agency (ADHA) outlined how one matter reported to the Office of the Australian Information Commissioner (OAIC) involved a breach to the external IT infrastructure that supports the My Health Record System


Finnish Therapy Clinic's CEO Fired After Nightmare Breach

Permalink - Posted on 2020-10-28 17:00

An investigation has uncovered that the database of customer details and therapy session notes was first breached in November 2018, but there was another security breach in mid-March 2019 which apparently CEO Ville Tapio knew about but – for reasons best known to himself – did not inform the appropriate authorities or with other members of Vastaamo’s board.


Japan's Nuclear Regulator Suspects Cyber Attack, Halts Email

Permalink - Posted on 2020-10-28 17:00

Japan’s Nuclear Regulation Authority halted email exchanges with outside people and organizations after a suspected cyberattack on its server, a spokesman said Wednesday.


In a First, Researchers Extract Secret Key Used to Encrypt Intel CPU Code

Permalink - Posted on 2020-10-28 17:00

Researchers have extracted the secret key that encrypts updates to an assortment of Intel CPUs, a feat that could have wide-ranging consequences for the way the chips are used and, possibly, the way they’re secured. The key makes it possible to decrypt the microcode updates Intel provides to fix security vulnerabilities and other types of bugs. Having a decrypted copy of an update may allow hackers to reverse engineer it and learn precisely how to exploit the hole it’s patching. The key may also allow parties other than Intel—say a malicious hacker or a hobbyist—to update chips with their own microcode, although that customized version wouldn’t survive a reboot.


76% of Applications Have at Least One Security Flaw

Permalink - Posted on 2020-10-28 17:00

The majority of applications contain at least one security flaw and fixing those flaws typically takes months, a Veracode report reveals. This year’s analysis of 130,000 applications found that it takes about six months for teams to close half the security flaws they find.


Isentia Hit by Cyber Attack

Permalink - Posted on 2020-10-27 17:00

Media monitoring provider Isentia has suffered a “cyber security incident” that is affecting its flagship intelligence and insights service. The company said in a financial filing on Tuesday that it is “urgently investigating” the incident, which is “disrupting services within its SaaS platform Mediaportal”.


Remote Workers Ignore Training to Open Suspicious Emails

Permalink - Posted on 2020-10-27 17:00

Remote workers are increasingly putting corporate data and systems at risk by failing to follow best practice security, according to new research from Mimecast. The email security vendor polled over 1000 global respondents working from corporate machines to compile its latest report, Company-issued computers: What are employees really doing with them? It found a litany of risky behavior: for example, 73% of respondents frequently use their company-issued device for personal matters such as checking webmail (47%), carrying out financial transactions (38%) and online shopping (35%). It also revealed that, although most (96%) of the respondents said they were aware of the repercussions of clicking through on malicious phishing links, nearly half (45%) open emails they consider to be suspicious. This is despite the fact that 64% claimed to have received special security training to equip them better for the new normal of working from home. Nearly half (45%) also admitted to not reporting such emails to their IT security teams.


Swedish Authorities, Banks Hit by Security Data Leak

Permalink - Posted on 2020-10-27 17:00

Details of bank vault floor plans, alarm systems and the security arrangements for Swedish authorities have been leaked online after a security company was hacked, local media reported Tuesday. A total of 19 gigabytes of information and around 38,000 files were stolen from security group Gunnebo by one or more hackers in August.


NY State Confirms Cyber Attack at St. Lawrence County Hospitals

Permalink - Posted on 2020-10-27 17:00

Ambulances were being diverted and computer systems were down. The St. Lawrence Health system also operates Massena Hospital.


78% of Microsoft 365 Admins Don't Activate MFA

Permalink - Posted on 2020-10-27 17:00

On average, 50% of users at enterprises running Microsoft 365 are not managed by default security policies within the platform.


Fragomen, a Law Firm Used by Google, Confirms Data Breach

Permalink - Posted on 2020-10-27 17:00

Immigration law firm Fragomen, Del Rey, Bernsen & Loewy has confirmed a data breach involving the personal information of current and former Google employees.


Nitro PDF Data Breach Confirmed

Permalink - Posted on 2020-10-27 17:00

A massive data breach suffered by the Nitro PDF might have a severe impact on well-known organizations, including Google, Apple, Microsoft, Chase, and Citibank.


Hacker Steals $24 Million from Cryptocurrency Service 'Harvest Finance'

Permalink - Posted on 2020-10-27 17:00

In total, the hacker stole $13 million worth of USD Coin (USDC) and $11 million worth of Tether (USDT), according to a transaction ID singled out by Harvest Finance administrators in a subsequent post-mortem investigation.


After Haldiram's, Now Mithaas Hit by Ransomware

Permalink - Posted on 2020-10-27 17:00

Barely 10 days after snack manufacturer Haldiram's was hit by ransomware, popular sweet seller Mithaas Sweets has claimed to have faced a similar attack on its servers by hackers who allegedly encrypted all its files and stole data.


'Among Us' Players Hit by Major Spam Attack

Permalink - Posted on 2020-10-27 17:00

InnerSloth, the developer of the popular whodunnit social deduction game Among Us, has had to fight off a cyberattack affecting its players during their online matches. The incident that started some time on Thursday took the form of a spam attack bombarding players in their in-game chats. The onslaught of spam messages foisted on game participants in their chats promoted a cryptic “Eris Loris” handle, prompting players to subscribe to its YouTube channel.


Steelcase Furniture Giant Hit by Ryuk Ransomware Attack

Permalink - Posted on 2020-10-27 17:00

Office furniture giant Steelcase has suffered a ransomware attack that forced them to shut down their network to contain the attack's spread. Steelcase is the largest office furniture manufacturer globally, with 13,000 employees and $3.7 billion in 2020.


Enel Group Hit by Ransomware Again, Netwalker Demands $14 Million

Permalink - Posted on 2020-10-27 17:00

Multinational energy company Enel Group has been hit by a ransomware attack for the second time this year. This time by Netwalker, who is asking a $14 million ransom for the decryption key and to not release several terabytes of stolen data.


Office 365 Users Targeted in Microsoft Teams Phishing Scam

Permalink - Posted on 2020-10-26 18:00

A new Office 365 phishing campaign has been detected by researchers at Abnormal Security that spoofs Microsoft Teams to trick users into visiting a malicious website hosting a phishing form that harvests Office 365 credentials.


Finnish Patients Blackmailed After Clinic Data Breach

Permalink - Posted on 2020-10-26 18:00

Patients whose data was stolen in a cyber-attack on a Finnish psychotherapy clinic are being individually blackmailed. An attack on the Vastaamo practice in November 2018 resulted in the theft of a customer database, with a second potential breach occurring in March 2019. Vastaamo serves thousands of patients from around 20 branches at locations across Finland.


Attacks Exploiting Digital Certs Soar by 700% in Five Years

Permalink - Posted on 2020-10-26 18:00

The number of cyber-attacks exploiting “machine identities” has soared by more than 700% over the past five years, according to new data from Venafi. The security vendor made the claims in its latest report, Machine Identities Drive Rapid Expansion of Enterprise Attack Surface. It also revealed that this type of attack has surged by 433% from 2018 to 2019 alone, whilst the use of commodity malware that abuses machine identities doubled.


FL: Cyber Security Incident Causes Indian River County Network to Shutdown

Permalink - Posted on 2020-10-26 18:00

Indian River County officials are investigating a cybersecurity system that has shut down employee emails, VoIP phones, and the county’s website. The network interruption was discovered Thursday night around 9 p.m. and has since impacted network capabilities in various county offices.


Nando’s Customers Hit by Credential Stuffing Attacks

Permalink - Posted on 2020-10-26 18:00

Some customers of popular high street eatery Nando’s have been left hundreds of pounds poorer after cyber-attackers hijacked their online accounts to place large orders. Reports in UK media revealed that multiple customers of the peri-peri chicken chain have had their accounts compromised. Due to COVID-19 restrictions, customers must now scan a QR code in store and order online to get their food.


Sopra Steria Hit by New Ryuk Variant

Permalink - Posted on 2020-10-26 18:00

French IT services giant Sopra Steria has said it will take weeks to return to normal after a serious ransomware attack forced key systems offline. The group posted a very brief message on its website last week claiming to have discovered the attack on Tuesday evening. However, its fintech business Sopra Banking Software confirmed in an update today that the incident was a ransomware attack.


Over 100 Irrigation Systems Left Exposed Online Without a Password

Permalink - Posted on 2020-10-26 18:00

More than 100 smart irrigation systems were left exposed online without a password last month, allowing anyone to access and tamper with water irrigation programs for crops, tree plantations, cities, and building complexes.


Judge Signs Off on $7.75m Equifax Settlement

Permalink - Posted on 2020-10-23 17:00

A federal judge has approved a multi-million-dollar settlement to resolve claims made by financial institutions against Equifax following a data breach three years ago. Between May and June 2017, cyber-criminals gained access to around 150 million records of Atlanta-based credit monitoring service Equifax by exploiting an unpatched Apache Struts vulnerability. The breach impacted roughly 56% of America's population and millions of consumers in the UK, costing Equifax over $1.35bn in losses.


Infected IoT Device Numbers Surge 100% in a Year

Permalink - Posted on 2020-10-23 17:00

Nokia’s Threat Intelligence Report 2020 is compiled from data processed by service providers using its NetGuard Endpoint Security tool. It revealed that infected IoT devices now comprise nearly a third (32.7%) of the total, up from 16.2% in the 2019 report.


Chenango County Hit with Cyber Attack

Permalink - Posted on 2020-10-23 17:00

Unable to access any of their computer network, Chenango County employees have had to come up with other solutions. The county Director of Information and Technology Herman Ericksen told 12 News the county system was attacked over the weekend. Hackers locked out employees and demanded $450 for each computer in exchange for giving back control; this is commonly known as a ransomware attack.


Names, Private Data of Child Sex Crime Victims Were Illegally Made Public In Cook County Court Records

Permalink - Posted on 2020-10-23 16:00

Cook County officials left the personal information of child sex crime victims in public court records, violating a state law that requires those details be kept hidden. The person charged with protecting those victims’ privacy in the records, Circuit Court Clerk Dorothy Brown, refused to restrict access to them for more than a month after being told about the problem. The information, which CBS 2 found in numerous cases, is sensitive: full names, home addresses, phone numbers, and other details for children as young as 5 years old who were sexually assaulted.


Japanese Drug Firm Shionogi Hit by Cyber Attack and Data Breach

Permalink - Posted on 2020-10-23 16:00

Japanese pharmaceutical firm Shionogi & Co. said Thursday that its Taiwanese subsidiary was hit by a cyberattack earlier this month leading to a data breach, although no information regarding the novel coronavirus vaccine it is currently developing was leaked.


Sonoma Valley Hospital Computer Systems Shut Down by Security Incident

Permalink - Posted on 2020-10-23 16:00

Sonoma Valley Hospital reported on Thursday, Oct. 22 that a security incident on Oct. 11 knocked out its computer systems, and is not fully restored. The incident “triggered a significant downtime event,” an official said. Some patients awaiting test results were repeatedly told to check back. Wendy Prine said she had an annual mammogram and called on Oct. 13 to get the results.


Data on 2,750 Partner Firms of Japan Post Unit Leaked

Permalink - Posted on 2020-10-23 16:00

On Oct. 6, an employee of the Tokyo-based unit, Japan Post Trading Service Co., which conducts catalog-based sales of midsummer and year-end gifts handled at post offices, mistakenly attached the file to a business email addressed to 32 other partner companies and sent it, according to Japan Post Co., the mail and parcel delivery service arm of Japan Post Holdings Co. The file contained information such as the names and telephone numbers of employees of the 2,750 companies, which are suppliers of items for the gifts, and bank account numbers of the firms.


Update: East London Council Still Combating Cyber Attack

Permalink - Posted on 2020-10-23 16:00

Hackney Council in London is continuing to try to restore services after a "serious and complex" cyberattack 10 days ago disrupted a number of its systems.


63 Billion Credential Stuffing Attacks Hit Retail, Hospitality, Travel Industries

Permalink - Posted on 2020-10-23 16:00

Between July 2018 and June 2020, more than 100 billion credential stuffing attacks ere observed in total. In the commerce category – comprising the retail, travel, and hospitality industries – there were 63,828,642,449 recorded. More than 90% of the attacks in the commerce category targeted the retail industry.


Machine Identity Related Cyber Attacks Grew by 433% Between 2018 and 2019

Permalink - Posted on 2020-10-23 16:00

The machine identity attack surface is exploding, with a rapid increase in all types of machine identity-related security events in 2018 and 2019, according to Venafi. For example, the number of reported machine identity-related cyberattacks grew by over 400% during this two-year period.


Ransomware Knocks Out Voter Database in Georgia

Permalink - Posted on 2020-10-23 16:00

The DoppelPaymer gang has taken credit for the attack, according to Brett Callow, a threat analyst at the security firm Emsisoft. He says this may be the first successful ransomware attack that has affected part of the election infrastructure.


WastedLocker Ransomware Hits Boyne Resorts Ski Resort Operator

Permalink - Posted on 2020-10-23 16:00

US-based ski and golf resort operator Boyne Resorts has suffered a cyberattack by the WastedLocker operation that has impacted company-wide reservation systems.


September 2020 Saw 9.7 Million Records Compromised

Permalink - Posted on 2020-10-22 17:00

September has been a bad month for data breaches. 95 data breaches of 500 or more records were reported by HIPAA-covered entities and business associates in September – A 156.75% increase compared to August 2020.


Retail, Hospitality and Travel Hit by 64 Billion Credential Stuffing Attacks

Permalink - Posted on 2020-10-22 17:00

Over 60% of credential stuffing attacks detected over the past two years have been targeted at retail, travel and hospitality businesses, according to Akamai. The security vendor’s latest report, Loyalty for Sale, is compiled from internet traffic flowing through its extensive global content delivery network. It revealed that, during the period July 1 2018 to June 30 2020, it detected over 100 billion credential stuffing attempts. Almost 64 billion of these were aimed at cracking open user accounts in the retail, travel and hospitality sectors.


Data Breach at Dr. Reddy's Forces Lab to Temporarily Shot Operations Across gGlobe

Permalink - Posted on 2020-10-22 17:00

After reports of a data leak from Hyderabad-based global pharmaceutical company Dr Reddy’s Laboratories Ltd, one of country’s leading pathology laboratory chains came out, IT has been forced to temporarily shut operations in its plants across the world. Apart from its plant in India, the other plants that have shut include the ones at Brazil, Russia, the United Kingdom and the United States. The breach is reported to have taken place early (India time) Thursday.


Hackers Hold Patient Information for Ransom in Psychotherapy Data Breach

Permalink - Posted on 2020-10-22 17:00

A company that offers psychotherapy to thousands of patients across Finland says it’s been the victim of a data breach, with the personal information of customers held for ransom. Vastaamo, which sees patients in 20 cities including Helsinki, Joensuu, Jyväskylä, Pori, Turku and Tampere, says “an unknown hostile party” got in touch with them saying they had obtained customer details.


Indian Companies Reported Over 25% Jump in Cyber Threats

Permalink - Posted on 2020-10-22 17:00

Organizations in India are seeing a significant increase in the cybersecurity challenges they face amid the shift to mass remote working, a new study by Cisco shows. According to the study, 73% of organizations in the country have experienced a 25% or more jump in either cyber threats or alerts since the start of COVID-19.


Sopra Steria Falls Victim to Ransomware Attack

Permalink - Posted on 2020-10-22 17:00

The firm, whose biggest customers in the financial sector include include Société Générale, BNP Paribas, La Banque Postale, HSBC, Crédit Agricole, RBS, Huyndai Capital and the Bank of China, issued a terse statement confirming a cyberattack on its IT network on the evening of 20th October.


Berlin to Give Secret Services Access to Encrypted Conversations

Permalink - Posted on 2020-10-22 17:00

The German government Wednesday agreed to allow secret services to listen in on conversations via encrypted messaging services such as Messenger or Whatsapp as a means of tackling terrorism.


Home Loan Trading Platform MAXEX Exposes Mortgage Documentation

Permalink - Posted on 2020-10-21 17:00

MAXEX exposed 9GB of its internal data, much of which deals with software development for its loan-trading platform. But the data also included confidential banking documents, system login credentials, emails, the company's data breach incident response policy and even reports from penetration tests done several years ago.


Hack Attack Takes Down Ansa McAl

Permalink - Posted on 2020-10-21 17:00

The Caribbean's biggest conglomerate, Ansa McAl, is the victim of ransomware hackers holding some of the company’s IT systems hostage. Newsday understands that work at Tatil, the country’s biggest insurer, has been effectively stalled for about two weeks as the IT department works to find and expel the ransomware from the company’s servers. If not, the company may have to pay the hackers’ ransom in order to free its data. In a statement late Tuesday evening, Ansa McAl said businesses were once again operational following a “security incident.”


Robo-Advice Firm Suffers Data Breach

Permalink - Posted on 2020-10-21 17:00

Germany-headquartered online advisory firm Scalable Capital has fallen victim to a data leak. The firm said that contact information, securities accounts, tax identification numbers, accounts with other banks and ID details were all accessed during the breach.


Recent Closing of Three Tribal Casinos Provides Cyber Attack Lessons

Permalink - Posted on 2020-10-21 17:00

Two Idaho tribal casinos and one California casino have temporarily closed following a cyberattack. This is relatively unusual, but other gaming properties should prepare for the continuing risk, several cybersecurity legal experts warn.


Twitter-Owned SDK Leaking Location Data of Millions of Users

Permalink - Posted on 2020-10-21 17:00

A series of popular apps using an outdated piece of code owned by Twitter are exposing their users' location data. In total, the apps have been downloaded nearly 10 million times. The news highlights the continued role of software development kits (SDKs), small bundles of code that developers often add to their apps in order to generate revenue, as well as how granular location data can be exposed through sloppily implemented phone software.


U.S. Retailer 'Made in Oregon' Confirms Website Data Breach

Permalink - Posted on 2020-10-21 17:00

A data breach at an Oregon-based retailer has potentially resulted in the sensitive information of customers, including their payment card details, being compromised. Made in Oregon, a regional retailer with five stores in the Portland area, confirmed its e-commerce site had suffered a breach lasting six months. According to the retailer, an unauthorized third party accessed information in an attack dating from February to August this year. Information including names, billing addresses, email addresses, and credit card details entered through the site was potentially accessed.


Morgan Stanley Fined $60m Over Data Disposal

Permalink - Posted on 2020-10-21 17:00

American multinational investment bank and financial services company Morgan Stanley has been fined $60m for improperly disposing of personal data. The substantial fine was imposed on Morgan Stanley Bank, N.A., and Morgan Stanley Private Bank, N.A. by the US Office of the Comptroller of Currency (OCC), which discovered deficiencies in the banks' data decommissioning practices. The federal banking agency found that in 2016, the banks "failed to exercise proper oversight of the decommissioning of two Wealth Management business data centers located in the United States."


Montreal's STM Public Transport System Hit by Ransomware Attack

Permalink - Posted on 2020-10-21 17:00

Montreal's Société de transport de Montréal (STM) public transport system was hit with a RansomExx ransomware attack that has impacted services and online systems.


Sweden Bans Use of Huawei, ZTE Equipment in New 5G Networks

Permalink - Posted on 2020-10-21 17:00

The Swedish government on Tuesday announced that telecommunications equipment from Chinese companies Huawei and ZTE would not be allowed to be used in the building of new fifth generation, or 5G, networks due to national security concerns. PTS noted that it was following advice from the Swedish Armed Forces and Security Services, with these organizations carrying out studies to ensure that the use of radio equipment in the spectrum bands being auctioned in November “does not cause harm to Sweden’s security.”


Barnes & Noble Confirms Cyber Attack, Ransomware Group Leaks Allegedly Stolen Data

Permalink - Posted on 2020-10-20 17:00

Data appears to have been leaked by a ransomware group. Details below. Barnes & Noble has confirmed a cyberattack impacting Nook services and potentially exposing customer data.


Passavant Memorial Homes Family of Services Notifies 25,000 After Someone Alerts Them to Vulnerability

Permalink - Posted on 2020-10-20 17:00

Someone tried to tip the entity that they had a vulnerability and the tipster provided proof. But then their investigation couldn’t definitively prove that no data had ever been accessed or exfiltrated or misused, so the entity decided that it was obligated to deal with this as a reportable breach under HIPAA.


Misconfigured Coud Storage Bucket Exposed Pfizer Drug Safety-Related Reports

Permalink - Posted on 2020-10-20 17:00

vpnMentor recently contacted DataBreaches.net about a leak their research team, led by Noam Rotem and Ran Locar, had discovered. The leak involved Pfizer, a well-known pharmaceutical firm. A misconfigured Google Cloud Storage bucket was exposing files involving reports of issues or concerns about Pfizer products such as Aromasin, Chantix, Depo-Medrol, Ibrance, Lyrica, Premarin, and Viagra. The files appeared to be transcripts of recorded calls to an automated interactive voice service system Pfizer uses as part of it reporting obligations to the U.S. Drug Safety Unit (US DSU). In some transcripts, an actual representative was on the line/call after the call was escalated.


City of Shafter Hit with Ransomware Attack

Permalink - Posted on 2020-10-20 17:00

The City of Shafter has announced its IT system has been compromised by ransomware. An Instagram post says the city's IT system appears to be frozen and locked.


Dickinson County Healthcare System Victim of Malware Attack

Permalink - Posted on 2020-10-20 17:00

The security incident involving malicious software (commonly known in the industry as ransomware) disrupted access to computer systems at the hospital and clinics.


Major Data Breach at Ohio School District

Permalink - Posted on 2020-10-20 17:00

Cyber-criminals have exfiltrated data from an Ohio school district and published personal information of faculty, staff, and students online.


MMO Game Street Mobster Leaking Data of 1.9 Million Users Due to Critical Vulnerability

Permalink - Posted on 2020-10-20 17:00

The CyberNews.com Investigation team discovered a critical vulnerability in Street Mobster, a browser-based massively multiplayer online game created by Bulgarian development company BigMage Studios. The records that can be compromised by exploiting the SQLi vulnerability in Street Mobster potentially include the players’ usernames, email addresses, and passwords, as well as other game-related data that is stored on the database.


15 Million Florida Voters' Data Leaked on Russian Hacking Forum

Permalink - Posted on 2020-10-20 17:00

A popular Russian hacking forum has leaked the data of roughly 15 million Florida voters. This leak comes two weeks before the US presidential elections, which will see Republican incumbent Donald Trump vying for reelection against Democratic opponent Joe Biden. The data leaked on the Russian hacking forum includes Florida voters’ names, voter IDs, phone numbers, addresses, dates of birth, gender, race, party affiliation and more.


Nefilim Ransomware Gang Published Luxottica Data on Its Leak Site

Permalink - Posted on 2020-10-20 17:00

The popular Italian cyber security expert Odysseus first revealed on the web site “Difesa e Sicurezza” that the Nefilim ransomware operators have posted a long list of files that appear to belong to Luxottica. The huge trove of files appears to be related to the personnel office and finance departments.


Two in Five Employees Are Not Sure What a Mobile Phishing Attack Is

Permalink - Posted on 2020-10-20 17:00

Mountain View,CA-based mobile security platform MobileIron has looked at the impact that lockdown has had on employees working habits. It polled polled 1,200 workers across the US, UK, France, Germany, Belgium, Netherlands, Australia, and New Zealand. The study showed that over four out of five (82%) of global participants agree they do not want to return to the office full-time, ever. This is despite one in three (30%) employees claiming that being isolated from their team was the biggest hindrance to productivity during lockdown.


Cyber Attack on Mississippi Schools Costs $300k

Permalink - Posted on 2020-10-19 16:00

A Mississippi school district has voted to pay $300,000 to recover files that were encrypted during a suspected ransomware attack. A federal investigation was launched after threat actors accessed Yazoo County School District’s information technology system without authorization. Superintendent Dr. Ken Barron told WLBT news that the school became aware of the cyber-attack on Monday, October 12. Barron did not state how the attackers had gained access to the system or what information had been compromised as a result of the incident.


Google Reveals It Was Hit by 2.5Tbps DDoS

Permalink - Posted on 2020-10-19 15:00

Google has revealed a nation state DDoS campaign against it originating from China, which may have been the biggest attack of its kind ever recorded. The 2.5Tbps DDoS struck in September 2017 but was made public for the first time on Friday in a report designed to share best practices on cyber-defense and plug Google Cloud mitigations. According to Google security reliability engineer, Damian Menscher, the attack topped a six-month campaign against the firm.


Instagram's Handling of Children's Data Under Investigation

Permalink - Posted on 2020-10-19 16:00

Social media app Instagram is being investigated by the EU for allegedly failing to protect the privacy of children's data. Instagram's alleged data mishandling allowed the email addresses and phone numbers of children aged under 18 to become visible to other users of the platform. Facebook, which owns the social media app, has denied breaking any privacy laws. The investigation into the app is being led by Ireland's Data Protection Commissioner (DPC), the lead European Union regulator under the EU's General Data Protection Regulation (GDPR), which came into force in 2018.


Singapore: Courts Fined $9,000 for Second Data Breach in Two Tears

Permalink - Posted on 2020-10-19 15:00

Electronics retailer Courts has been fined $9,000 for failing to secure customers' personal details such as names, mobile numbers and addresses, the second time in two years that it has been found to have breached data protection laws.


Commission Kings' Brands Suffer Cyber Attack Outage

Permalink - Posted on 2020-10-19 15:00

Commission Kings, one of the largest affiliate networks catering to a global sports betting and iGaming audience, has come under a heavy cyber-attack.


Global Adoption of Data and Privacy Programs Still Maturing

Permalink - Posted on 2020-10-19 16:00

The importance of privacy and data protection is a critical issue for organizations as it transcends beyond legal departments to the forefront of an organization’s strategic priorities.


Albion Online Game Maker Discloses Data Breach

Permalink - Posted on 2020-10-19 15:00

"The intruder was able to access forum user profiles, which include the email addresses connected to those forum accounts," said Sandbox Interactive GmbH, the company behind Albion Online. The attacker also harvested encrypted passwords. Sandbox Interactive said the passwords were hashed with the Bcrypt password-hashing function and then salted with random data to make it harder for attackers to reverse and crack the password.


DDoS Attacks Triple in Size as Ransom Demands Re-Emerge

Permalink - Posted on 2020-10-19 15:00

The last quarter of 2020 has seen a wave of web application attacks which have used ransom letters to target businesses across a number of industries. According to research from Akamai, the largest of these attacks sent over 200Gbps of traffic at their targets as part of a sustained campaign of higher Bits Per Second (BPS) and Packets Per Second (PPS) than similar attacks had displayed a few weeks prior.


Kleenheat Customer Names and Addresses Exposed in System Breach

Permalink - Posted on 2020-10-19 15:00

Australian gas producer Kleenheat has warned a number of its customers about a data breach that may have resulted in information such as name and address being exposed. The Perth-based retailer and distributor believes the breach occurred in 2014 on a third-party system. ZDNet understands that system is no longer in use.


More Details Emerge on Hall County, Georgia Ransomware Attack

Permalink - Posted on 2020-10-16 16:00

Hall County, Georgia had revealed a ransomware attack on October 7, but until now, we didn’t know who attacked them. Now the threat actors known as DoppelPaymer have added Hall County to their dedicated leak site.


Ohio: Potential Cass Action Against Health Recovery Services Survives Motion to Dismiss

Permalink - Posted on 2020-10-16 16:00

This Court finds the Third Circuit’s reasoning in Horizon persuasive. The disclosure of plaintiff’s sensitive medical information to a third party—even where, as here, that third party is a hacker— constitutes an invasion of privacy, the very type of injury that Congress enacted the FCRA to remedy.


Cosmote Reveals Cyber Attack Exposed Telephone Data from Thousands of Customers

Permalink - Posted on 2020-10-16 16:00

The largest mobile network operator in Greece, Cosmote, revealed that thousands of customers’ information was accessed during a cyber attack that occurred between September 1-5.


India: Hackers Attack Haldiram's Servers, Demand Rs 7.5 Lakh

Permalink - Posted on 2020-10-16 15:00

Unidentified hackers attacked the servers of Noida-based Haldiram’s Snacks private limited with ransomware, stealing sensitive data and demanding a ransom of Rs 7.5 lakh to release the information. A case was registered at Noida Sector 58 police station on Wednesday. The incident occurred on the intervening night of July 12 and 13 when issues were reported with the company server which later turned out to be ransomware attacks.


British Airways Hit with U.K. Data Watchdog's Biggest-Ever Fine

Permalink - Posted on 2020-10-16 15:00

Britain’s data protection watchdog said on Friday it has fined British Airways 20 million pounds - its biggest such penalty to date - for failing to protect data that left more than 400,000 of its customers’ details the subject of a 2018 cyber attack.


Personal Data of Bharatmatrimony Users Breached

Permalink - Posted on 2020-10-16 15:00

Personal data of customers of online matchmaking website Bharatmatrimony.com suffered a breach and was available for sale on the darkweb on Thursday, according to Atlanta-based cyber security firm Cyble. The company said that it is investigating the issue and added that there has been "no breach of its current active database of customers". According to Cyble, the leaked data includes sensitive personal information like names, phone numbers, user IDs and date and time of account creation. A sample of the leaked data has been reviewed by ET. Customer data worth 1.7 GB belonging to thousands of users was up for sale in exchange for $500 in cryptocurrency, according to researchers at the firm. ET could not independently verify the number of users whose data was compromised.


Card Details for 3 Million Dickey's Customers Posted on Carding Forum

Permalink - Posted on 2020-10-16 15:00

ickey's Barbecue Pit, the largest barbecue restaurant chain in the US, suffered a POS breach between July 2019 and August 2020.


Hackers Target Puerto Rico Firefighting Department Servers

Permalink - Posted on 2020-10-16 15:00

Puerto Rico’s firefighting department said Wednesday that its database was hacked by unknown people demanding $600,000 in an act of alleged extortion.


Cyber Attack on London Council Still Having Significant Impact

Permalink - Posted on 2020-10-15 16:00

In an update on the situation the council said that its staff are working with the National Cyber Security Centre, National Crime Agency, external experts and the Ministry of Housing, Communities and Local Government to investigate and understand the impact of the cyberattack on its servers. It has also reported the incident to the Information Commissioner's Office.


Online Proctor Service ProctorTrack Disables Service After Hack

Permalink - Posted on 2020-10-15 16:00

Starting yesterday, students began receiving emails sent by the hacker from the Verificient Support account. This email contained racial slurs, and falsely stated that the company and ProctorTrack were ceasing operations.


Privacy Nightmare for Toledo Public Schools: Hackers Dumped SEtudent and Employee Data

Permalink - Posted on 2020-10-15 16:00

On September 14, DataBreaches.net reached out to TPS to ask them to confirm or deny Maze’s claim of a successful attack. TPS did not respond, and the data Maze dumped as “proof” was not proof of any attack on TPS at all — in fact, the “proof” data appeared to come from a construction firm, which is why DataBreaches.net referred to the breach claim but did not name the school district in the September post. But now Maze has dumped all of the data they claim to have acquired from TPS, and the data appear real. Worryingly, the more than 9 GB of compressed data contains a lot of personal and/or sensitive student and employee data.


Barnes & Noble Warns Customers About Data Breach

Permalink - Posted on 2020-10-15 16:00

The notification comes on the heels of a "system failure" that led to users of Nook, Barnes and Noble's e-book reader, to lose access to their books and purchases on their mobile devices.


Carnival Corp. Ransomware Attack Affects Three Cruise Lines

Permalink - Posted on 2020-10-15 16:00

Hackers accessed personal information of guests, employees and crew for Carnival Cruise, Holland America and Seabourn as well as casino operations.


Ubisoft, Crytek Data Posted on Ransomware Gang's Site

Permalink - Posted on 2020-10-15 16:00

Details about hackers obtained the files remain unclear. Ransomware gang also threatened to leak the source code of Watch Dogs: Legion, an upcoming Ubisoft game.


Social Media App Leaks Data of 172,000 Users, Including Location Coordinates

Permalink - Posted on 2020-10-15 16:00

The CyberNews investigations team discovered an unsecured data bucket that belongs to Panion, a Swedish software company. The unprotected bucket contains more than 2.5 million user records, including full names, email addresses, genders, interests, location coordinates and last login dates, as well as selfies and document photos.


Broadvoice Leak Exposes 350M Records, Personal Voicemail Transcripts

Permalink - Posted on 2020-10-15 16:00

The data includes hundreds of thousands of voicemail transcripts, many involving sensitive information such as details about medical prescriptions and financial loans.


Robinhood Estimates Hackers Infiltrated Almost 2,000 Accounts

Permalink - Posted on 2020-10-15 16:00

A person with knowledge of an internal review, who asked not to be identified because the findings aren’t public, provided the estimated figure. When Bloomberg first reported on the hacking spree last week, the popular online brokerage disclosed few details. It said “a limited number” of customers had been struck by cyber-criminals who gained access by breaching personal email accounts outside of Robinhood, an assertion that some of the victims acknowledge and others reject.


Ransomware Victims Struggle to Recover, Hire and Spend on Threat Prevention

Permalink - Posted on 2020-10-14 16:00

IT managers at organizations hit by ransomware are nearly three-times as likely to feel “significantly behind” when it comes to understanding cyber-threats. According to new research from Sophos, organizations “are never the same after being hit by ransomware” and a third (35%) of victims reported that recruiting and retaining skilled IT security professionals was their single biggest challenge when it comes to cybersecurity.


Compliance Activities Cost Organizations $3.5 Million Annually

Permalink - Posted on 2020-10-14 16:00

Organizations are struggling to keep up with IT security and privacy compliance regulations, according to a Telos survey.


Privacy Watchdog to Probe Klarna After Email Backlash

Permalink - Posted on 2020-10-14 16:00

The Information Commissioner's Office said it will make enquiries into Klarna after scores of angry people questioned why it had their details despite never doing business with the payments firm.


Marketing Agency for NFL, Mastercard, MLB and Soundcloud Exposes Clients' Sensitive Data

Permalink - Posted on 2020-10-14 16:00

CyberNews recently discovered that the digital marketing agency teamDigital was exposing multiple environment config files which contain sensitive data. By exposing this type of data, teamDigital is putting their own data and the data of their clients – big names like the NFL, Mastercard, Soundcloud, and more – at risk, potentially leading to ransomware, targeted phishing campaigns, and others.


Executive Overconfidence a Security Risk

Permalink - Posted on 2020-10-13 16:00

Executives are out of touch and overconfident when it comes to their organizations' web application security practices, according to new research published today by Netsparker. Netsparker teamed up with Dimensional Research to survey security professionals from 382 organizations worldwide about the maturity and effectiveness of web application security in their organizations. Respondents worked in roles spanning development, DevOps, and C-suite.


U.S. GAO Calls for Greater Cyber Security for Commercial Airplanes

Permalink - Posted on 2020-10-13 17:00

The US Government Accountability Office (GAO) has urged the Federal Aviation Administration to take action to better protect modern commercial airplanes from cyber-risks. In a post on its website, the GAO wrote: “Modern airplanes are equipped with networks and systems that share data with the pilots, passengers, maintenance crews, other aircraft and air-traffic controllers in ways that were not previously feasible.


Election Systems Under Attack via Microsoft Zerologon Exploits

Permalink - Posted on 2020-10-13 17:00

Cybercriminals are chaining Microsoft’s Zerologon flaw with other exploits in order to infiltrate government systems, putting election systems at risk, a new CISA and FBI advisory warns.


Home Security Cams Hacked in Singapore, and Stolen Footage Sold on Adult Websites

Permalink - Posted on 2020-10-13 17:00

Clips stolen from more than 50,000 hacked cameras have been uploaded to pornographic websites, and X-rated footage sold to people prepared to pay a subscription fee of US $150.


Singapore Tightens Security Requirements for New Home Routers

Permalink - Posted on 2020-10-13 17:00

Effective from April 13 next year, home routers will have to meet new security requirements before they can be sold in Singapore.


Miami-Based Tech Company Suffers Massive 1TB Customer and Business Data Leak

Permalink - Posted on 2020-10-13 16:00

The Miami-based “value-added solutions and technology products” company Intcomex has suffered a major data breach, with nearly 1 TB of its users’ data leaked. The leaked data includes credit cards, passport and license scans, personal data, payroll, financial documents, customer databases, employee information and more.


Global Firms Seek Zero-Trust as 58% Suffer COVID-Era Breach

Permalink - Posted on 2020-10-13 16:00

Over half of global organizations have suffered a data breach during the COVID-19 crisis, with even more arguing that they need to shift to a zero-trust model to bolster security, according to Forrester.


Serious Cyber Attack Targets London City Council

Permalink - Posted on 2020-10-13 16:00

Hackney Council in north London says it has been the target of a serious cyberattack, which is affecting many of its services and IT systems.


Software AG Continues Efforts Against $20M Ransomware Attack

Permalink - Posted on 2020-10-13 16:00

The attack began on October 3 as a ransomware attack in which the attackers demanded the unusually high ransom in return for a decryption key. According to reporting from ZDNet, stolen confidential employee information began to be released on the Dark Web on October 9 after negotiations between the company and attackers failed.


25% of BEC Cybercriminals Based in the U.S.

Permalink - Posted on 2020-10-13 16:00

A new analysis of business email compromise (BEC) attacks reveals the global footprint of BEC activity: Twenty-five percent of perpetrators behind these threats are located in the United States. Of these attackers, nearly half are based in five states: California, Georgia, Florida, Texas, and New York.


Seyfarth Shaw LLP Law Firm Discloses Ransomware Attack

Permalink - Posted on 2020-10-12 18:00

Seyfarth Shaw LLP, disclosed a ransomware attack. The fact that they disclosed it themselves immediately removed one of the threats these groups make — to make the attack public and harm the entity’s reputation by showing that they failed to secure sensitive information.


Spotless Hit by Ransomware Attack

Permalink - Posted on 2020-10-12 18:00

Spotless Group, the Downer-owned facilities services provider, is the latest high-profile Australian company to fall victim to ransomware attackers. iTnews learned that the company had been attacked on Friday last week, and a Downer spokesperson confirmed the infection.


OCR Announces 9th Financial Penalty under its HIPAA Right of Access Initiative

Permalink - Posted on 2020-10-12 18:00

The HHS’ Office for Civil Rights (OCR) is continuing its crackdown on healthcare providers that are not fully complying with the HIPAA right of access. Last week, OCR announced its ninth enforcement action against a HIPAA-covered entity for the failure to provide patients with timely access to their medical records at a reasonable cost.


228,000 Individuals Impacted by Legacy Community Health Services Phishing Attack

Permalink - Posted on 2020-10-12 18:00

Legacy Community Health Services in Texas is alerting 228,009 patients about a data breach involving some of their protected health information (PHI). The PHI was stored in an email account that was accessed by an unauthorized individual. The breach was detected on July 29, 2020, one day after an employee responded to a phishing email and disclosed login credentials to the attacker.


Bitcoin Wallet Update Trick Has Netted Criminals More Than $22 Million

Permalink - Posted on 2020-10-12 17:00

A simple technique has helped cybercrime gangs steal more than $22 million in user funds from users of the Electrum wallet app; a ZDNet investigation has discovered. This particular technique was first seen in December 2018. Since then, the attack pattern has been reused in multiple campaigns over the past two years. ZDNet has tracked down multiple Bitcoin accounts where criminals have gathered stolen funds from attacks they carried out over the course of 2019 and 2020, with some attacks taking place as recently as last month, in September 2020.


Children and Parent Info. Exposed in Georgia DHS Data Breach

Permalink - Posted on 2020-10-12 17:00

The security breach took place over the spring. Georgia DHS officials said that between May 3, 2020, and May 15, 2020, hackers managed to gain access to several employee email accounts.


Carnival Corp. Confirms Personal Information Compromised in Ransomware Incident

Permalink - Posted on 2020-10-12 17:00

Carnival, which owns 10 global cruise line brands and a tour company, employs more than 120,000 people and has a fleet of 102 ships. Prior to the COVID-19 pandemic, which forced the company to suspend operations, Carnival served more than 11 million guests per year.


Hackers Publish Public School District's Stolen Data Online

Permalink - Posted on 2020-10-12 17:00

Computer hackers who obtained information about a Virginia public school district’s students and employees have posted stolen data online, school officials said Friday in an email to parents and staff.


Uganda’s Banks Have Been Plunged into Chaos by a Mobile Money Fraud Hack

Permalink - Posted on 2020-10-12 17:00

The Oct. 3 hack was a result of a security breach on a consumer finance aggregator, Pegasus Technologies, which mainly affected bank to mobile wallet transfers, according to an Oct. 8 statement by MTN Uganda, the country’s largest mobile phone company. Kampala-based Pegasus Technologies provides financial and billing solutions for various companies including all the affected entities.


Tyler Technologies Finally Paid the Ransom to Receive the Decryption Key

Permalink - Posted on 2020-10-12 17:00

Some reports circulating online speculate the company was infected with the RansomExx ransomware. The RansomEXX is human-operated ransomware, this means that attackers manually infected the systems after gained access to the target network. In June 2020, the same ransomware was employed in an attack on the Texas Department of Transportation, in September it infected the systems at the IPG Photonics high-performance laser developer.


Community Health Systems Pays $5 Million to Settle Multi-State Breach Investigation

Permalink - Posted on 2020-10-09 16:00

A joint investigation, led by Tennessee Attorney General Herbert H. Slatery III, was launched following a breach of the protected health information (PHI) of 6.1 million individuals in 2014. At the time of the breach, Community Health Systems owned, leased, or operated 206 affiliated hospitals. According to a 2014 8-K filing with the U.S. Securities and Exchange Commission, the health system was hacked by a Chinese advanced persistent threat group which installed malware on its systems that was used to steal data. PHI stolen by the hackers included names, phone numbers, addresses, dates of birth, sex, ethnicity, Social Security numbers, and emergency contact information.


Parents Using School Payment Service Have Card Details Compromised

Permalink - Posted on 2020-10-09 16:00

UK school payment service Wisepay has revealed that the card details of parents who made transactions on its site between October 2 and 5 have been compromised. This was after Wisepay’s website was hacked, resulting in an attacker harvesting payment details via a spoof page. The attack begun on the evening of Friday October 2 and was not noticed until the following Monday morning at 10.00am.


Marketing Firm Spills Nearly Three Million Records

Permalink - Posted on 2020-10-09 16:00

A US digital marketing provider has exposed almost three million records containing personally identifiable information (PII) after another cloud configuration mistake. The privacy snafu at Friendemic, whose main clients are reportedly US car dealerships, was discovered by Aaron Phillips at Comparitech.


Tennessee Health Data Management Firm Agrees to $2m Data Breach Settlement

Permalink - Posted on 2020-10-09 16:00

A Tennessee firm that provides health data management services has agreed to pay the United States Office for Civil Rights (OCR) $2.3m to settle charges related to a data breach. Charges were brought against Tennessee-based Community Health Systems (CHSPSC LLC) by 28 states after the personal health information (PHI) of millions of people ended up in the hands of cyber-criminals.


Fitbit Allowed Spyware on Official App Store

Permalink - Posted on 2020-10-09 16:00

Miscreants had the ability to upload a malicious app containing spyware to Fitbit’s official website, a security researcher has discovered. Fitbit markets fitness trackers which can monitor a users’ heart rate, calorie intake, and exercise sessions, among other data. Its devices are compatible with a number of apps which can be downloaded from its official website and other app stores. Customers can also download watch faces.


Online Romance Scams Spike Under Lockdown

Permalink - Posted on 2020-10-09 16:00

Police and banks are celebrating after revealing that £19 million in fraud was stopped in the first half of the year, although romance scams are reportedly on the rise. Over 600 reports of romance scams each month were made in June, July and August, contributing to a 26% year-on-year increase in cases recorded by Action Fraud, according to Sky News.


Crypto Exchange Leaks Every User's Support Ticket to Every Other User

Permalink - Posted on 2020-10-09 16:00

CyberNews recently discovered a bug affecting the cryptocurrency exchange platform Bitexlive in which support tickets were exposed to every visitor of the site via the socket. This data can be mundane or extremely sensitive, depending on the type of information being communicated between the customer and the customer support agents.


Most Enterprises Struggle with IoT Security Incidents

Permalink - Posted on 2020-10-09 16:00

According to new data released by Cybersecurity Insiders, 72% of organizations experienced an increase in endpoint and IoT security incidents in the last year, while 56% anticipate their organization will likely be compromised due to an endpoint or IoT-originated attack with the next 12 months.


Town of Franklin Lloses Over $500K to Phishing Scam

Permalink - Posted on 2020-10-09 16:00

Officials in Franklin have announced that the town has been the victim of a phishing scam in which over half a million dollars of town money was sent to the scammers. The scam was part of “a recent ‘spear-phishing attack,’” Town Administrator Jamie Hellen said in a news release. A total of $522,000 “was misdirected to a third party.”


Sam's Club Customer Accounts Hacked in Credential Stuffing Attacks

Permalink - Posted on 2020-10-08 17:00

Over the past two weeks, Sam's Club has started sending automated password reset emails and security notifications to customers who were hacked in credential stuffing attacks.


Massachusetts School District Shut Down by Ransomware Attack

Permalink - Posted on 2020-10-08 17:00

Springfield is the third largest school district in Massachusetts with over 25,000 students, 4,500 employees, and more than sixty schools. Due to the COVID-19 pandemic, the school district opened in a remote learning model, with a planned transition to hybrid learning towards the end of October.


ACAS X Just as Vulnerable to Spoofing as Its Predecessor

Permalink - Posted on 2020-10-08 17:00

In a paper distributed via ArXiv, computer scientists at the UK's University of Oxford and Switzerland's Federal Office for Defence Procurement analyzed the Airborne Collision Avoidance System X (ACAS X), due to be deployed on commercial aircraft in the next few years, and found that it can be manipulated by a miscreant to produce fake collision alerts that prompt pilots to take evasive action.


One-Fifth of Organizations Did Not Make Cyber Security a Priority During the Pandemic

Permalink - Posted on 2020-10-08 17:00

56% of IT and OT security professionals at industrial enterprises have seen an increase in cybersecurity threats since the start of the COVID-19 pandemic in March, a Claroty research reveals. Additionally, 70% have seen cybercriminals using new tactics to target their organizations in this timeframe.


Data from Airlink International U.A.E. Leaked on Multiple Dark Web Forums

Permalink - Posted on 2020-10-08 17:00

Airlink International U.A.E. is a leading company for any travel and logistics requirements. It has more than than 200 employees with around $250 million in revenue. The data leak is the result of a misconfigured server containing 60 directories with approximately 5,000 files each.


Indonesia Soon to Become the Fifth ASEAN Country to Adapt Data Privacy Laws

Permalink - Posted on 2020-10-08 17:00

On January 28th, Indonesia’s Ministry of Communication and Information Technology announced that the final draft for the Personal Data Protection Act has been submitted to the president of Indonesia. The PDP Draft Law is now sitting with the House of Representatives and other concerned government officials. The press has been informed that they expect the draft law to be enacted this year. Indonesia’s adaptation of the law heavily resembles the European Union’s GDPR. The draft bill accedes to almost all rights of data subjects as per the GDPR as well as the general regulations in regards to personal data processing.


Number of Corporate Credentials Exposed on the Dark Web Increased by 429%

Permalink - Posted on 2020-10-08 17:00

For a typical organization, this means there are now, on average, 17 sets of corporate credentials available on the dark web that could be used by hackers.


School Meal Payment System Wisepay Attacked

Permalink - Posted on 2020-10-08 17:00

UK cashless school payments firm Wisepay has pulled its website offline after spotting a miscreant trying to spoof its card payment page.


CPS Under Fire Again After Data Breach Cases Jump 18%

Permalink - Posted on 2020-10-08 17:00

The UK’s Crown Prosecution Service (CPS) has recorded over 1600 data breaches over the course of a year, including scores of unauthorized disclosures classed as “severe,” it has emerged. The data featured in the CPS annual report revealed a total of 1627 recorded data breaches in the 2019-20 financial year, up 18% from the previous year. These included 59 incidents that were serious enough to be reported to the Information Commissioner’s Office (ICO).


OCR Imposes $160,000 Penalty on Healthcare Provider for HIPAA Right of Access Failure

Permalink - Posted on 2020-10-08 17:00

The Department of Health and Human Services’ Office for Civil Rights has announced its 12th HIPAA penalty of 2020 and its 8th under the HIPAA Right of Access enforcement initiative that was launched in 2019. The $160,000 settlement is the largest HIPAA penalty to date for a failure to provide an individual with timely access to their requested medical records.


Office of the Comptroller of the Currency Fines Morgan Stanley $60 Million for 2016 Data Breach

Permalink - Posted on 2020-10-08 17:00

The consent order by the Comptroller of the Currency cited failures at both Morgan Stanley Bank NA and Morgan Stanley Private Bank NA related to the shutdown of two wealth management data centers and the company's use of third-party vendors to help with the closings. The OCC found that the bank did not take proper precautions in dismantling and disposing of outgoing hardware that contained sensitive customer data and failed to properly supervise the vendors Morgan Stanley tasked with wiping customer data from the old equipment before it was resold.


Hall County, Georgia Reports Ransomware Attack

Permalink - Posted on 2020-10-08 17:00

Hall County first posted a notice about a ransomware attack on October 7. Since then, they have posted updates on their site, including the restoration of their phone services. Nothing has been revealed about who the attackers might be or what any ransom demand might have been.


Dr. Lal PathLabs, One of India's Largest Blood Test Labs, Exposed Patient Data

Permalink - Posted on 2020-10-08 17:00

The lab testing giant, headquartered in New Delhi, serves some 70,000 patients a day, and quickly became a major player in testing patients for COVID-19 after winning approval from the Indian government. But the company was storing hundreds of large spreadsheets packed with sensitive patient data in a storage bucket, hosted on Amazon Web Services (AWS), without a password, allowing anyone to access the data inside.


AAA Ambulance Service Experienced Ransomware Attack

Permalink - Posted on 2020-10-07 16:00

On August 26, 2020, after thorough investigation, AAA learned that the personal information of certain individuals may have been accessed or taken during the incident.


U.K. Department for Education Fails to Meet U.K., GDPR Data Protection Standards

Permalink - Posted on 2020-10-07 16:00

In light of data protection concerns and potential violations of the EU's General Data Protection Regulation (GDPR), the ICO launched a compulsory audit into the department's data practices. The results are in and it appears the DFE has a long way to go before coming close to complying with UK protection laws. In total, 139 recommendations for improvement have been made, with over 60% classified as "urgent" or "high priority."


37% of Remote Employees Have No Security Restrictions on Corporate Devices

Permalink - Posted on 2020-10-07 16:00

ManageEngine unveiled findings from a report that analyzes behaviors related to personal and professional online usage patterns. 63% of respondents report that their organization has provided them with a corporate device to utilize while working remotely. Interestingly, 37% of those respondents also say that there are no security restrictions on these corporate devices. Therefore, risky online activities such as visiting unsecured websites, sharing personal information, and downloading third-party software could pose potential threats. For example, 54% said they would still visit a website after receiving a warning about potential insecurities. This percentage is also significantly higher among younger generations – including 42% of people 18-24 years and 40% of 25-34 years.


Comcast TV Remote Hack Opens Homes to Snooping

Permalink - Posted on 2020-10-07 16:00

A security flaw allowing attackers to remotely snoop in on victims’ private conversations was found to stem from an unexpected device – their TV remotes. The flaw stems from Comcast’s XR11, a popular voice-activated remote control for cable TV, which has more than 18 million units deployed across the U.S. The remote enables users to say the channel or content they want to watch rather than keying in the channel number or typing to search.


USPS and FedEx Phishing Attack Texts Flood Mobile Phones

Permalink - Posted on 2020-10-07 16:00

Most of these attacks attempted to steal Google account credentials, while some pointed to fake casino games. Back in February, the Federal Trade Commission issued an alert on such scams, but it wasn’t until last month that these types of texts went mainstream.


Corporate Credentials on the Dark Web Up by 429% This Year

Permalink - Posted on 2020-10-06 16:00

There has been a 429% growth in the number of corporate credentials with plaintext passwords on the dark web so far this year, according to Arctic Wolf’s 2020 Security Operations Annual Report. This amounts to an average of 17 separate sets of credentials per a typical organization, leaving businesses particularly vulnerable to account takeover attacks (ATO).


Over Half of IT and OT Professionals in Industrial Enterprises Experiencing Rise in Cyber Threats

Permalink - Posted on 2020-10-06 16:00

ver half (56%) of IT and operational technology (OT) security professionals from industrial enterprises have experienced a rise in cybersecurity threats since the start of the COVID-19 pandemic in March, with 72% finding that their jobs have become more challenging.


Canada Bombarded with COVID-19-Themed Cyber Attacks

Permalink - Posted on 2020-10-06 16:00

More than a quarter of Canadian IT workers say their organization has suffered a COVID-19-themed cyber-attack, according to a new survey. The "2020 Cybersecurity Report" released today by the Canadian Internet Registration Authority (CIRA) surveyed more than 500 Canadian IT security decision-makers to learn more about their experience with cyber-threats.


Magnolia Pediatrics and Accents on Health Suffer Ransomware Attacks

Permalink - Posted on 2020-10-06 16:00

Prairieville, LA-based Magnolia Pediatrics is notifying 12,861 patients that some of their protected health information has potentially been compromised in a ransomware attack that occurred on or around March 26, 2020.


U.N. Maritime Agency Hit by Sophisticated Cyber Attack

Permalink - Posted on 2020-10-06 16:00

The United Nations’ International Maritime Organization (IMO) last week said some of its systems were disrupted as a result of a cyberattack. IMO has not shared any technical information about the attack. It may have been a distributed denial-of-service (DDoS) attack, a ransomware attack, or a different type of breach.


Heartland Community College Experiences Cyber Attack

Permalink - Posted on 2020-10-06 16:00

Heartland Community College is working with outside consultants to address a security breach in its computer system. The college’s online operations, including classes, remained shut down on Tuesday morning as a safety measure after the college detected an outside source had compromised some of its systems on Monday, college officials said.


Cyber Attack on UJIA Centenary Event Being Investigated

Permalink - Posted on 2020-10-06 16:00

UJIA is investigating a cyber-attack which targeted its virtual centenary event last week, as it reported the incident to the regulator and Charity Commission. The British Jewish charity’s event was targeted last Wednesday evening, with hundreds of participants kicked off a video platform or prevented from joining the virtual event.


Hackers Breached Telegram, Email Accounts of 20 Israeli Crypto Execs

Permalink - Posted on 2020-10-06 16:00

Many of the executives had their Telegram apps hacked; others had their Gmail and Yahoo mail accounts breached.


Insurance firm Ardonagh Group Hit with Ransomware

Permalink - Posted on 2020-10-06 16:00

Jersey-headquartered insurance company Ardonagh Group has suffered a potential ransomware infection. Informed sources whispered to The Register that the insurance firm had been forced to suspend 200 internal accounts with admin privileges as the "cyber incident" progressed through its IT estate. The UK's second largest privately owned insurance broker, according to the Financial Times, Ardonagh Group has spent the year to date acquiring other companies. The timing of the most recent attack is unfortunate: Ardonagh recently published its financials, showing a loss of £94.m, according to reports.


Chowbus Delivery Service Breached, Hacker Emails Data to Users

Permalink - Posted on 2020-10-06 16:00

A threat actor has hacked into the Chowbus food delivery service and emailed links to the stolen data to all customers.


Ransomware Threat Surge, Ryuk Attacks About 20 Orgs per Week

Permalink - Posted on 2020-10-06 16:00

Malware researchers monitoring ransomware threats noticed a sharp increase in these attacks over the past months compared to the first six months of 2020. At the top of the list are Maze, Ryuk, and REvil (Sodinokibi) ransomware families, according to recently published data from Check Point and IBM Security X-Force Incident Response team. Both companies observed a surge in ransomware incidents at a global level between June and September, with some threats being more active than others.


HMRC Hit by Multiple Phishing and Spam Emails

Permalink - Posted on 2020-10-05 17:00

According to data obtained by think tank Parliament Street, an average of over 5000 spam, phishing and malware attacks were recorded by the organization in the three month period between June and September, while spam and junk made up the largest proportion of attacks, contributing 377,820 of the total 521,582 recorded by HMRC.


Clinical Trial Software Provider Hit with Ransomware Attack

Permalink - Posted on 2020-10-05 17:00

Philadelphia-based eResearchTechnology, a company that sells software that is used in clinical trials, including clinical trials of Covid-19 vaccines, was hit with a ransomware attack that has affected several of its clients, including at least one company running Covid-19 vaccine trials. The attack occurred on September 20, 2020 and forced some clinical trial researchers to switch to pen and paper to track their patients. While patient safety was never put at risk, the attack has had an effect on clinical trials and has slowed progress.


Chinese Hackers Steal Personal Data of Half of Taiwan's Workforce

Permalink - Posted on 2020-10-05 17:00

The data sets belonged to Taiwan's popular online job site 104 and hackers were selling the data on the dark web for $500 to $1,000 each.


Ransomware Victims Aren't Reporting Attacks to Police. That's Causing a Big Problem

Permalink - Posted on 2020-10-05 17:00

Europol's annual cyber crime report says ransomware is under-reported by victims - some of which appear to be simply hoping that nobody finds out they were a victim.


Testing Mistake Triggered Telstra Route "Hijacks"

Permalink - Posted on 2020-10-05 17:00

An erroneous bulk upload of static routes to a Telstra production network edge router was the cause of last Wednesday's internet-wide service disruption that saw data traffic take a long detour via Australia, causing performance degradation for other providers in the process. Telstra senior network engineer Mark Duffell apologised for the error, which meant that 500 internet protocol version 4 (IPv4) prefixes, or subnetworks, were advertised as belonging to Telstra.


Hackers Stole a Six-Figure Amount from Swiss Universities

Permalink - Posted on 2020-10-05 17:00

The hackers carried out spear-phishing attacks against the Swiss universities in an attempt of tricking its employees into providing their access data.


Cyber Attack Grounds Transport Malta Online Systems

Permalink - Posted on 2020-10-02 17:00

A cyber attack has shut down Transport Malta's online systems for five days and no date has been given as to when they will be back up, leaving motorists unable to renew their road licences.


Hacked Hospital Chain says All 250 U.S. Facilities Affected

Permalink - Posted on 2020-10-02 16:00

Doctors and nurses at affected hospitals and clinics, many already burdened with coronavirus care, have had to rely on manual record-keeping, with lab work slowed. Employees have described chaotic conditions impeding patient care.


Financial information and SSNs Potentially Accessed in Blackbaud Ransomware Attack

Permalink - Posted on 2020-10-02 16:00

On Wednesday, Blackbaud filed a Form 8-K with the U.S. Securities and Exchange Commission (SEC) that provides further information on the ransomware attack the company suffered in May 2020. Blackbaud explained that the forensic investigation into the breach has revealed further information was potentially compromised in the breach. For certain customers, unencrypted fields that were intended for Social Security numbers, bank account information, and usernames and passwords may also have been accessed by the hackers.


Edtech Startup Edureka Suffers Server Breach, Data of 2 Million Users Exposed

Permalink - Posted on 2020-10-02 16:00

The SafetyDetectices report mentions that the vulnerability was with Edureka’s US-based Elasticsearch server which was left unsecured, without password protection. The SafetyDetectices security research team, led by Anurag Sen is said to have found 25 gigabytes of data, containing more than 45 Mn breached records of personal data. Since some of the records were duplicated, the number of users affected by the data breach is conservatively estimated to be around 2 Mn, with most of them in India and a handful in other countries such as the US as well.


Germany Fines H&M 35 Million Euros for Data Protection Breaches

Permalink - Posted on 2020-10-01 17:00

Sweden’s H&M has been fined 35 million euros ($41 million) by the German authorities for internal data security breaches at its customer service centre in Nuremberg, the fashion retailer said on Thursday.


Click & Collect Fraud Up by 55% Following Shift to Online Shopping

Permalink - Posted on 2020-10-01 17:00

Buy online, pick-up in store fraud rose by 55% in the first half of 2020, according to the latest edition of the Forter Fraud Attack Index, published today. The study demonstrates that e-commerce is increasingly being targeted by fraudsters following the huge shift to online shopping since the start of the COVID-19 pandemic.


PHI of 26,861 Patients Potentially Compromised in Oaklawn Hospital Phishing Attack

Permalink - Posted on 2020-10-01 17:00

It is unclear when the breach was detected, but the forensic investigation revealed on July 28, 2020 that the email accounts of certain employees had been accessed by unauthorized third parties between April 14 and April 15, 2020. Access to the accounts was gained after employees responded to phishing emails and disclosed their email credentials. The breach was detected when suspicious emails were found in several employee email accounts.


InterPlanetary Storm Botnet Infects 13K Mac, Android Devices

Permalink - Posted on 2020-10-01 17:00

A new variant of the InterPlanetary Storm malware has been discovered, which comes with fresh detection-evasion tactics and now targets Mac and Android devices (in addition to Windows and Linux, which were targeted by previous variants of the malware). Researchers say, the malware is building a botnet with a current estimated 13,500 infected machines across 84 countries worldwide – and that number continues to grow. Half of the infected machines are in Hong Kong, South Korea and Taiwan. Other infected systems are in Russia, Brazil, the U.S., Sweden and China.


Ransomware Victims That Pay Up Could Incur Steep Fines from Uncle Sam

Permalink - Posted on 2020-10-01 17:00

Companies victimized by ransomware and firms that facilitate negotiations with ransomware extortionists could face steep fines from the U.S. federal government if the crooks who profit from the attack are already under economic sanctions, the Treasury Department warned today.


Northern California Casino Shut Down by External Computer Attack

Permalink - Posted on 2020-10-01 17:00

Northern California’s Cache Creek Casino Resort, which has been shut down since Sept. 20 because of what it called a “systems infrastructure failure,” confirmed Wednesday that its computer systems were the target of an outside attack and that the incident is under investigation.


VOXX Notifies Employees and Dependents Enrolled in Health Plan of Ransomware Attack

Permalink - Posted on 2020-10-01 17:00

On July 7, 2020, VOXX identified a security incident that resulted in data on certain devices becoming encrypted by ransomware. VOXX immediately began to investigate, a cybersecurity firm was engaged, and measures were taken to address the incident and restore operations. The investigation then determined that in the weeks before encryption of data occurred, there was unauthorized access to files saved to VOXX file servers between June 4, 2020 and July 7, 2020.


Recover Our Youth Notifies Clients and Guardians of Data Security Incident

Permalink - Posted on 2020-10-01 17:00

Recover Our Youth has posted a notice of a data security incident that does not specifically say there was a ransom demand involving exfiltrated data, but it sounds like they may have paid some ransom to get copies of data destroyed. Recover Our Youth offers residential treatment programs and group homes for behaviorally and emotionally disturbed youth and adults in South Carolina and North Carolina.


70% of Consumers Would Cut Tes with Doctors Over Unprotected Health Data

Permalink - Posted on 2020-10-01 17:00

There are growing privacy concerns among Americans due to COVID-19 with nearly 70 percent citing they would likely sever healthcare provider ties if they found that their personal health data was unprotected, a CynergisTek survey reveals.


Two Telus Health Medical Service Providers Pay Ransom After 60K Client Files Accessed

Permalink - Posted on 2020-10-01 17:00

The Medisys Health Group and its affiliate Copeman Healthcare say they paid an unspecified ransom to retrieve personal information for about 60,000 clients after detecting a security breach on Aug. 31. An email from Medisys head office in Montreal says privacy officials were notified Sept. 4, four days after the breach was discovered, and began notifying customers last week. They say hackers got demographic information, such as ages and addresses, and some personal health numbers but no financial information or Social Insurance Numbers..


People of Praise Reportedly Suffered a Data Breach Ahead of Member A.C. Barrett's SCOTUS Nomination

Permalink - Posted on 2020-09-30 17:00

On September 23, 2020, our security staff identified an incident via our website involving unauthorized access to contact information in our membership directory.


Kylie Jenner's Makeup Company Warns of Data Breach

Permalink - Posted on 2020-09-30 17:00

Kylie Jenner's makeup company has warned customers that their information may have been compromised in a recently detected security incident at a Canadian e-commerce merchant. Earlier this month, Shopify reported the theft, by members of its own support team, of transactional records belonging to up to 200 of the company's merchants. The incident, which is now under investigation by the FBI, involved two Shopify employees who no longer have access to the company's network.


Click & Collect Fraud Up by 55% Following Shift to Online Shopping

Permalink - Posted on 2020-09-30 17:00

Buy online, pick-up in store fraud rose by 55% in the first half of 2020, according to the latest edition of the Forter Fraud Attack Index, published today. The study demonstrates that e-commerce is increasingly being targeted by fraudsters following the huge shift to online shopping since the start of the COVID-19 pandemic.


Account Takeover Fraud Rates Skyrocketed 282% Over Last Year

Permalink - Posted on 2020-09-30 17:00

Account takeover (ATO) fraud attempts to steal from consumers and e-commerce merchants swelled 282% between Q2 2019 to Q2 2020, new data from digital trust and safety provider Sift finds. The ATO rate is the ratio of attempted fraudulent logins over total logins. ATO rates for physical e-commerce businesses jumped 378% since the start of the COVID-19 pandemic, Sift's Q3 2020 Digital Trust & Safety Index found. This indicates that fraudsters are leaning heavily on this attack vector to steal payment information and rewards points stored in online accounts on merchant websites, according to the company.


Anthem to Pay Nearly $40 Million to Settle Data Breach Probe by U.S. States

Permalink - Posted on 2020-09-30 17:00

Anthem Inc said on Wednesday it would pay $39.5 million as part of a settlement with U.S. states attorneys general following an investigation into a massive cyber-attack at the company in 2015. The second largest U.S. health insurer said a state sponsored criminal group had perpetrated the attack, adding that it does not believe the company had violated the law in connection with its data security.


Inspector General's Report Confirms CBP Contractor Was Hacked

Permalink - Posted on 2020-09-29 16:00

Last year, a CBP vendor suffered a data breach affecting more than 100,000 people who had crossed the border at checkpoints. The CBP refused to name the contractor involved in the breach, but internal documents indicated it was Perceptics. Perceptics provided and maintained the system that photographed cars and their occupants as they crossed the border. The vendor's involvement in the breach has now been publicly confirmed, thanks to an Inspector General's investigation of the incident. Sensitive information that was never supposed to be located on Perceptics' servers was obtained by hackers and (partially) distributed on the dark web.


Swatch Shuts Down Some Technology Systems After Cyber Attack

Permalink - Posted on 2020-09-29 16:00

Swatch Group UHR.S shut down some of its technology systems after detecting a cyberattack over the weekend, the world's biggest watchmaker said on Tuesday.


Arthur J. Gallagher Targeted in Ransomware Attack

Permalink - Posted on 2020-09-29 16:00

“We promptly took all of our global systems offline as a precautionary measure, initiated response protocols, launched an investigation, engaged the services of external cybersecurity and forensics professionals, and implemented our business continuity plans to minimize disruption to our customers,” Arthur J. Gallagher reported.


Security Lapse Exposes Hundreds of Addresses of Minnesotans Infected with COVID-19

Permalink - Posted on 2020-09-29 16:00

5 EYEWITNESS NEWS obtained internal city and state documents which show there have been numerous times, starting in August, where those protocols were not followed and the privacy of addresses of COVID-19 patients was compromised. In a letter from the Minneapolis City Attorney's Office to MDH Commissioner Jan Malcolm and DPS Commissioner John Harrington, there were serious warnings and examples of the data breach.


MU Health Care Phishing Attack Impacts 5,000 Patients

Permalink - Posted on 2020-09-29 16:00

MU Health Care in Missouri has experienced a phishing attack that saw several employee email accounts compromised between May 4 and May 6, 2020. An investigation into the breach revealed the compromised email accounts contained patient information including names, account numbers, dates of birth, health insurance information, Social Security numbers, and driver’s license numbers.


Las Vegas Students' Personal Data Leaked, Post-Ransomware Attack

Permalink - Posted on 2020-09-29 16:00

Personal information for students in the Clark County School District, which includes Las Vegas, has reportedly turned up on an underground forum, following a ransomware attack that researchers say was carried out by the Maze gang.


Flightradar24 Hit by Third Cyber Attack in Two Days

Permalink - Posted on 2020-09-29 16:00

Popular real-time flight-tracking website Flightradar24 was hit by a cyber-attack that knocked out access to its services for hours. The attack is the third the company has suffered in two days, it said. Early attempts to restore the site failed, with "significant instability due to the sustained attacks", it said. It said the Distributed Denial of Service (DDoS) attack had hit "the availability of our services" but not compromised user data.


Fashion Retailer BrandBQ Exposes Seven Million Customer Records

Permalink - Posted on 2020-09-28 16:00

A European fashion retailer has become the latest big-name brand to expose personal data on millions of its customers after misconfiguring a cloud database. Researchers at vpnMentor discovered the unencrypted Elasticsearch server on June 28 and parent company BrandBQ finally secured it around a month later, on August 20. The Krakow-based retailer operates online and physical stores across Eastern Europe, in: Poland, Romania, Hungary, Bulgaria, Slovakia, Ukraine and the Czech Republic. Its main brands are Answear and WearMedicine.com.


UHS Hospitals Hit by Reported Country-Wide Ryuk Ransomware Attack

Permalink - Posted on 2020-09-28 16:00

Universal Health Services (UHS), a Fortune 500 hospital and healthcare services provider, has reportedly shut down systems at healthcare facilities around the US after a cyber-attack that hit its network during early Sunday morning. UHS operates over 400 healthcare facilities in the US and the UK, has more than 90,000 employees and provides healthcare services to approximately 3.5 million patients each year.


Logistics Giant CMA CGM Goes Offline to Block Malware Attack

Permalink - Posted on 2020-09-28 16:00

CMA CGM S.A., a French maritime transport and logistics giant, today disclosed a malware attack affecting some servers on the edge of its network. The attack forced CMA CGM's IT teams to cut Internet access to some applications to block the malware from spreading to other network devices.


Most Canadians Reluctant to Use Businesses After Data Breach

Permalink - Posted on 2020-09-28 16:00

A data breach can have lasting impacts on a company, according to polling data. The survey of more than 2,000 people was conducted online by KPMG, a consulting firm, earlier this month. It found about 84 per cent of Canadians say they would be reluctant to do business with companies that suffer a data breach. Nearly all (90 per cent) say they are “leery” about sharing personal or financial information with any organization that had been hit by hackers. Of those surveyed, roughly one-quarter of them report their login credentials being stolen from a trusted site.


20% of Remote Staff Have Downloaded Company Data on Personal Devices

Permalink - Posted on 2020-09-28 16:00

One in five (20%) UK employees have downloaded commercially sensitive or confidential company files on a personal device whilst working from home, a new study from gadget insurance firm Protect Your Bubble has found. What is more, of these respondents, 40% admitted that there was either no password protection or up-to-date security installed on these devices, which include desktops, laptops, tablets or smartphones. A further 7% had neither.


$150 Million Stolen From Singaporean Crypto-Exchange KuCoin

Permalink - Posted on 2020-09-28 16:00

The exchange announced that it identified a number of large withdrawals in Bitcoin, ERC-20 and other tokens from its hot wallets, and that it launched an investigation into the matter, while suspending the deposit and withdrawal service.


Data Security Incident Shuts Down Montgomery, TN County's Computer Network

Permalink - Posted on 2020-09-28 16:00

Montgomery County’s government networks were taken down over the weekend during a “data security incident” that started on Friday. While several websites were accessible to the public on Sunday, they had limited functionality.


Legal Action Underway Over University of Cumbria Data Breach

Permalink - Posted on 2020-09-25 16:00

Students, staff and partners of universities across the UK who may have had their personal details leaked online are preparing to take legal action against the organisations amidst concerns that more should have been done to protect their data. Confidential information including names, dates of birth, addresses, phone numbers and email addresses are thought to have been stolen by hackers in the ransomware attack which took place this year on Blackbaud – a cloud computing provider that serves non-profits, foundations, corporations, education institutions and healthcare organisations.


Premera Blue Cross Pays $6.85 Million to Settle Data Breach Affecting Over 10.4 Million People

Permalink - Posted on 2020-09-25 16:00

HHS has announced another big settlement and corrective action plan. This one stems from a hack of Premera Blue Cross (PBC) in 2014 that went undetected until March of 2015. DataBreaches.net had covered this incident at the time and the follow-ups that included a class action lawsuit that settled, a settlement with state attorneys general, and news that federal auditors had warned Premera of security issues three weeks before the hack. Not surprisingly, the settlement starts out by noting the entity’s failure to perform a risk assessment, and that becomes the first element in the corrective action plan.


Nebraska Medicine Was Vctim of Cyber Attack

Permalink - Posted on 2020-09-25 16:00

Nebraska Medicine confirmed Thursday night that it was the victim of a cyber attack. The attack caused a significant downtime for its information technology system, leading to many postponed appointments throughout the week.


Slew of Lawsuits Filed Over Recent Healthcare Data Breaches

Permalink - Posted on 2020-09-25 16:00

Individuals impacted by the recent data breaches at Blackbaud, Assured imaging, and BJC Healthcare have taken legal action over the exposure and theft of their personal and protected health information.


Elderly People in the U.K. Lost Over £4m to Cybercrime Last Year

Permalink - Posted on 2020-09-25 16:00

A freedom of information (FOI) request submitted by the charity to the UK’s national fraud reporting center, Action Fraud, showed that the police received 4173 reports of cybercrime from people aged 55+ from April 2018 to March 2019. Of those that became victims, a total loss of just over £4m was recorded. Those in this age group represented 19% of the overall number of reported cybercrime victims in this period.


Government Software Provider Tyler Technologies Hit by Possible Ransomware Attack

Permalink - Posted on 2020-09-24 16:00

Tyler Technologies, a major Texas-based provider of software and services for the U.S. government, started informing customers on Wednesday of a security incident that is believed to have involved a piece of ransomware.


Data Breach at New York Sports Clubs Owner Exposed Customer Data

Permalink - Posted on 2020-09-23 16:00

Town Sports International, the parent company of New York Sports Clubs and Christi’s Fitness gyms, is mopping up after a security lapse exposed customer data. Security researcher Bob Diachenko received a tip from a contact, Sami Toivonen, about an unprotected server containing almost a terabyte of spreadsheets representing years of internal company data, including financial records and personal customer records. But because there was no password on the server, anyone could access the files inside. The server was exposed for almost a year, Diachenko told TechCrunch.


Bit-and-Piece DDoS Attacks Increased 570% in Q2 2020

Permalink - Posted on 2020-09-23 16:00

Analysts witnessed attacks using much smaller sizes—more than 51% of bit-and-piece attacks were smaller than 30Mbps—to force communications service providers (CSPs) to subject entire networks of traffic to risk mitigation. This causes significant challenges for CSPs and typical threshold-based detection, which is unreliable for pinpointing the specific attacks to apply the correct mitigation.


Shopify says Customer Data Likely Exposed as Employees Accessed Records

Permalink - Posted on 2020-09-23 16:00

Shopify Inc said on Tuesday data of customers who shopped at fewer than 200 merchants listed on the company’s e-commerce platform was likely exposed after two employees tried to steal transaction records. The data exposed includes email, name, and address, as well as order details, but does not involve complete payment card numbers or financial information, the Canadian company said.


eBay Execs to Plead Guilty to Cyber-Stalking

Permalink - Posted on 2020-09-23 16:00

Four former eBay executives accused of cyber-stalking and intimidating a Massachusetts couple are to admit their guilt before a court next month.Horrific parcels sent to the couple included a bloody pig mask, live spiders and cockroaches, a book on surviving the death of a spouse, and a wreath of funeral flowers. In addition, pornographic magazines addressed to the husband were received by one of the couple's neighbors. The four defendants due to plead guilty in October are among six former senior employees of the American multinational e-commerce corporation who were charged in June with carrying out the terrifying cyber-campaign.


Business Associate Fined $2.3 Million for Breach of 6 Million Records and Multiple HIPAA Failures

Permalink - Posted on 2020-09-23 16:00

The Department of Health and Human Services’ Office for Civil Rights has announced its 10th HIPAA violation fine of 2020. This is the 7th financial penalty to resolve HIPAA violations that has been announced in as many days.


St. Clair County Is Latest Victim of Cyber Attack

Permalink - Posted on 2020-09-23 16:00

The attack will cause some inconveniences for the general public over the upcoming days, but county leaders and its professionals are working closely with cyber-security specialists to restore the county to a fully functioning environment.


Just 13% of SMEs Have Cyber Insurance

Permalink - Posted on 2020-09-22 16:00

Less than 13% of small and medium-sized businesses (SMBs) have cyber-insurance, potentially leaving large numbers exposed to the serious financial impact of online attacks, according to GlobalData.


Data Breach at Long Island Hospital

Permalink - Posted on 2020-09-22 16:00

Long Island's only tertiary care center and Regional Trauma Center has issued a warning to patients that their personal data may have been exposed as a result of a ransomware attack.


Details of 540,000 Sports Referees Taken in Ransomware Attack

Permalink - Posted on 2020-09-22 16:00

In a data breach notification letter filed with multiple states across the US [1, 2], the company said that despite detecting and blocking the hackers from encrypting its files, the intruders managed to steal a copy of its backups. This backup contained data from ArbiterGame, ArbiterOne, and ArbiterWorks — three of the web applications used by schools and sports leagues to assign and manage the schedules and training programs of referees and game officials.


Microsoft Leaves Entire Bing Search Engine Log File Storage Open for Public Access

Permalink - Posted on 2020-09-22 16:00

Microsoft has suffered a rare cyber-security lapse earlier this month when the company's IT staff accidentally left one of Bing's backend servers exposed online. The server was discovered by Ata Hakcil, a security researcher at WizCase, who exclusively shared his findings with ZDNet last week. According to Hakcil's investigation, the server is believed to have exposed more than 6.5TB of log files containing 13 billion records originating from the Bing search engine. The Wizcase researcher was able to verify his findings by locating search queries he performed in the Bing Android app in the server's logs.


Only 44% of Healthcare Providers Conform to Protocols Outlined by the NIST CSF

Permalink - Posted on 2020-09-22 16:00

Analysts examined nearly 300 assessments of provider facilities across the continuum, including hospitals, physician practices, ACOs and Business Associates. The report also found that healthcare supply chain security is one of the lowest ranked areas for NIST CSF conformance. This is a critical weakness, given that COVID-19 demonstrated just how broken the healthcare supply chain really is with providers buying PPE from unvetted suppliers.


Ray-Ban Owner Luxottica Reportedly Hit with Cyber Attack

Permalink - Posted on 2020-09-22 16:00

Italy-based eyewear and eyecare giant Luxottica has reportedly suffered a cyberattack that has led to the shutdown of operations in Italy and China.


Kentucky Unemployment Breach: Legal Misinterpretation to Blame for Delay in Reporting

Permalink - Posted on 2020-09-21 16:00

An inspector general report has found there were "unacceptable" delays in reporting an April security breach of Kentucky's unemployment system but that residents' personal information doesn't appear to have been misused. The report primarily blames the month-long delay in reporting the breach on current legal staff who relied on a holdover procedure from the previous administration that misinterpreted state law governing when breaches need to be reported. Under state law, security breaches are required to be reported within 72 hours.


U.K. Home Office Data Loss Incidents Surge by 120%

Permalink - Posted on 2020-09-21 16:00

Figures from the Home Office’s Annual Report and Accounts 2019-20 that were compiled by the think tank Parliament Street showed that there were 4204 individual incidents in 2019-20 compared to 1895 in 2018-19. The most common type of data loss in the last financial year was inadequately protected electronic equipment, devices or paper documents from outside secured government premises, with 2404 incidents occurring in 2019-20, representing a 242% increase on the previous year. This was followed 946 incidents of lost electronic equipment or documents from secured government premises, a rise of 552% from the 145 recorded in 2018-19.


Systemic Noncompliance with HIPAA Results in $1.5 Million Financial Penalty for Athens Orthopedic Clinic

Permalink - Posted on 2020-09-21 16:00

The HHS’ Office for Civil Rights has announced a settlement has been reached with Athens Orthopedic Clinic PA to resolve multiple violations of the Health Insurance Portability and Accountability Act (HIPAA) Rules.


Attack on Ontario's Nurses College Puts at Risk Personal Information of Nearly 190,000 Individuals

Permalink - Posted on 2020-09-21 16:00

The College of the Nurses of Ontario (CNO) has recently announced that it has been dealing with a cyberattack that has forced the nurses’ regulatory body to shut down its services. Moreover, a list of stolen CNO document files has surfaced on the dark web. The perps gave the college 12 days to respond to their demands and avoid the publication of stolen information.


University of Tasmania Students' Personal Information Exposed in Email Bungle

Permalink - Posted on 2020-09-21 16:00

The University of Tasmania has apologised after an email bungle released almost 20,000 students’ personal details to its entire faculty. The data leak, which contained personally identifiable information, was made accessible to all users with a utas.edu.au email address.


Hackers Leak Details of 1,000 High-Ranking Belarus Police Officers

Permalink - Posted on 2020-09-21 16:00

A group of hackers has leaked on Saturday the names and personal details of more than 1,000 high-ranking Belarusian police officers in response to violent police crackdowns against anti-government demonstrations. The leaked data included names, dates of birth, and the officers' departments and job titles.


ATO Declines to Fix Code Replay Flaw Within myGovID

Permalink - Posted on 2020-09-21 16:00

Security researchers advise users to not use the system until it is patched, and given the taxation office's response, that could be a long time coming.


500,000 Activision Games Customers Have Data Exposed in Attack

Permalink - Posted on 2020-09-21 16:00

According to reports, more than 500,000 Activision accounts may have been hacked with login data being compromised. The eSports site Dexerto has reported that a data breach occurred on Sunday, September 20. The credentials to access these accounts are, Dexerto said, being leaked publicly, and account details changed to prevent easy recovery by the rightful owners. Activision accounts are mostly used by players of the hugely popular Call of Duty franchise.


University of Missouri Health Care Email Hack Exposes Info. of 5,000 Patients

Permalink - Posted on 2020-09-21 16:00

Patient information in the compromised email accounts included names, birth dates, medical record numbers and health insurance and procedure data. Social Security numbers of some patients were in the email accounts.


Patient Breach Victims File Lawsuits Against Assured Imaging, BJC Health

Permalink - Posted on 2020-09-21 16:00

On August 26, Arizona-based Assured Imaging, a mobile digital mammography provider, began notifying 244,813 patients that their data was potentially breached after a ransomware attack, which lasted from May 15 to May 17. In the process, patient data was exfiltrated. But the investigation could not determine just what data was stolen. A review of all impacted systems found that the hacker could have accessed patient names, contact details, medical histories, patient IDs, provided services, testing recommendations, and other sensitive information.


32 Million Americans (14%) Have Been Victims of New Account Fraud in Only Four Months

Permalink - Posted on 2020-09-21 16:00

A new study by IDology captures the impact of increasing fraud complexity and changing consumer behavior in new research comparing data among a representative sample of online American adults collected in March 2020 and July 2020. Rapid rise in fraud: Fraud is growing at a faster rate. 32 million Americans (14%) have been victims of new account fraud in only four months compared to (19%) in the 12 months leading up to COVID-19.


Health Care Patient, Donor Data May Have Been Breached in Blackbaud Attack

Permalink - Posted on 2020-09-18 16:00

Patients and donors to at least four different health care providers in Minnesota are being notified that their personal information may have been compromised. The potential data breach involves hundreds of thousands of patients and donors at Children’s Minnesota, Allina Health, Regions Hospital and Gillette Children’s Specialty Healthcare. The hack is part of a ransomware attack on a cloud computing company called Blackbaud, which manages databases for a number of nonprofits.


Chinese Hackers "Stole Data from Spanish Vaccine Labs"

Permalink - Posted on 2020-09-18 16:00

Chinese hackers have stolen information from Spanish laboratories working on a vaccine for Covid-19. Spain's secret service chief Paz Esteban said hackers had mounted "a particularly virulent campaign targeting laboratories working on the search for a vaccine" not only in Spain but elsewhere. Speaking to journalists on Thursday, Esteban who heads the CNI intelligence services, said there had been a "qualitative and quantitative" increase in attacks during lockdown, with hackers targeting "sensitive sectors such as healthcare and pharmaceuticals".


Leading U.S. Laser Developer IPG Photonics Hit with Ransomware

Permalink - Posted on 2020-09-18 16:00

IPG Photonics, a leading U.S. developer of fiber lasers for cutting, welding, medical use, and laser weaponry has suffered a ransomware attack that is disrupting their operations.


Glow Inc. Settles Consumer Privacy Violation with California AG

Permalink - Posted on 2020-09-18 16:00

alifornia Attorney General Xavier Becerra today announced a landmark settlement against Glow, Inc. (Glow), a technology company that operates a fertility-tracking mobile app that stores personal and medical information. The settlement, which is subject to court approval, resolves the Attorney General’s investigation of Glow's app for serious privacy and basic security failures that put women’s highly-sensitive personal and medical information at risk. In addition to a $250,000 civil penalty, the settlement includes injunctive terms that require Glow to comply with state consumer protection and privacy laws, and a first-ever injunctive term that requires Glow to consider how privacy or security lapses may uniquely impact women.


Patient Dies After Ransomware Attack Reroutes Her to Remote Hospital

Permalink - Posted on 2020-09-17 17:00

A woman seeking emergency treatment for a life-threatening condition died after a ransomware attack crippled a nearby hospital in Duesseldorf, Germany, and forced her to obtain services from a more distant facility.


Universities Face Increase in Ransomware Attacks as Students Return

Permalink - Posted on 2020-09-17 17:00

According to an alert issued by the National Cyber Security Centre (NCSC) there has been a recent spike in ransomware attacks against UK schools, colleges and universities. It claimed that, in recent incidents, it has observed remote desktop protocols and unpatched software and hardware being utilized, as well as attackers using phishing emails to deploy ransomware. Attackers have also sabotaged backup or auditing devices to make recovery more difficult, encrypted entire virtual servers and used scripting environments (including PowerShell) to deploy tooling or ransomware


DDoS Attacks Rise in Intensity, Sophistication and Volume

Permalink - Posted on 2020-09-17 17:00

There have been significant shifts in DDoS attack patterns in the first half of 2020, a Neustar report reveals. There has been a 151% increase in the number of DDoS attacks compared to the same period in 2019. These included the largest and longest attacks that Neustar has ever mitigated at 1.17 Terabits-per-second (Tbps) and 5 days and 18 hours respectively.


German Shopping Site Exposes Data of Over 500,000 Customers

Permalink - Posted on 2020-09-17 17:00

The company in the discussion is German shopping giant Windeln.de who did not secure its database despite being alerted by researchers.


U.S. Staffing Firm Hit by Ransomware Again

Permalink - Posted on 2020-09-16 16:00

One of the largest IT staffing companies in America has been hit by a second ransomware attack in nine months. At the start of September, Artech Information Systems disclosed a data breach caused by a ransomware attack perpetrated between January 5 and 8, 2020.


Attacks on Mid-Market Organizations Soar

Permalink - Posted on 2020-09-16 16:00

According to global data gathered by specialist insurer Beazley Group, middle-market organizations have been especially hard hit by online social engineering attacks. Of all the social engineering attacks reported to Beazley Breach Response (BBR) Services globally in Q2 2020, 60% of organizations targeted were in the middle market (defined as over $35m in annual revenue), up from 46% in Q1. In more than 80% of the incidents reported, the attack was stymied before a direct financial loss occurred. Fraudulent instruction attacks also primarily hit middle-market organizations, which were the target in 55% of incidents, compared to 24% in Q1.


Lawsuit Filed Against Warner Music Group Over Data Breach

Permalink - Posted on 2020-09-16 16:00

A lawsuit has been filed against Warner Music Group following the disclosure of a data breach that compromised customers' sensitive personal information. Warner notified customers of a breach earlier this month after discovering a number of its e-commerce websites had fallen victim to a prolonged skimming attack.


U.S. House Passes IoT Cyber Security Bill

Permalink - Posted on 2020-09-16 16:00

First introduced in 2017 and reintroduced in 2019, the IoT Cybersecurity Improvement Act will now have to pass the Senate before it can be signed into law by the president.


Floral Park-Bellerose School District Hit with Ransomware Attack

Permalink - Posted on 2020-09-16 16:00

Floral Park-Bellerose school district officials announced at their Board of Education meeting Monday that the district’s computer system had been infected with a type of malware known as “ransomware,” impeding its progress in delivering virtual education to students.


Dunkin' Donuts Settles Data Breach Lawsuit

Permalink - Posted on 2020-09-16 16:00

Dunkin' Donuts today settled a lawsuit in which it was accused of hushing up the fact hackers siphoned its customers' personal information from its systems in 2015. The US coffee-and-pastry slinger will refund said customers as part of an agreement [PDF] that will end a lawsuit brought against it by New York. The US state claimed Dunkin failed to warn its sugar addicts that miscreants had gained access to their DD accounts, downloaded their details, and sold them on underground internet forums. That information included their Dunkin' loyalty card details, which miscreants could use to buy stuff from the coffee houses using money stored on the cards. In addition to refunding its sugar addicts for fraudulent charges made to their cards, Dunkin will pay New York $650,000 and agree to the standard "we won't let this happen again" promise.


University Hospital New Jersey Hit by SunCrypt Ransomware, Data Leaked

Permalink - Posted on 2020-09-16 16:00

University Hospital New Jersey (UHNJ) has suffered a massive 48,000 document data breach after a ransomware operation leaked their stolen data. Established in 1994, the University Hospital is a New Jersey state-owned teaching hospital that provides medical care to residents. The hospital runs on a $626 million budget and has over 3,500 employees, 519 licensed beds, and over 172,000 annual outpatient visits.


More Cyberattacks in the First Half of 2020 Than in All of 2019

Permalink - Posted on 2020-09-16 16:00

A study by CrowdStrike of recent threat activity on networks belonging to its customers showed more intrusion attempts in the first six months of this year than in all of 2019. The security vendor's threat-hunting team blocked some 41,000 potential intrusions just between Jan. 1 and June 30 this year compared with 35,000 for all of last year. Incidents of hands-on-keyboard intrusions in the first six months of 2020 — where a threat actor is actively engaged in malicious activity — was some 154% higher than the number of similar instances that CrowdStrike's researchers observed in 2019.


JIA Computer System Infiltrated in Ransomware Attack

Permalink - Posted on 2020-09-16 16:00

Jekyll Island Authority fell victim last week to a ransomware attack that has since been mostly addressed. JIA Executive Director Jones Hooks informed the authority’s board at its monthly meeting Tuesday that JIA computer systems were infected by a ransomware attack designed to damage or gain unauthorized access to the system.


European Police Malware Could Harvest GPS, Messages, Passwords, More

Permalink - Posted on 2020-09-15 16:00

The malware that French law enforcement deployed en masse onto Encrochat devices, a large encrypted phone network using Android phones, had the capability to harvest "all data stored within the device," and was expected to include chat messages, geolocation data, usernames, passwords, and more, according to a document obtained by Motherboard.


Magento Online Stores Hacked in Largest Campaign to Date

Permalink - Posted on 2020-09-15 16:00

Almost 2,000 Magento stores have been compromised over the weekend in the largest hacking campaign since 2015.


Research Finds Nearly 800,000 Access Keys Exposed Online

Permalink - Posted on 2020-09-15 16:00

When AWS keys were exposed in GitHub repositories, GitHub responded by invalidating those keys. Researchers at Digital Shadows have found that this proper action doesn't end the issue of exposed keys as they have found almost 800,000 keys available on the Web. The researchers searched approximately 150 million entities across GitHub, GitLab, and Pastebin during a 30-day period in August and September to find the roughly 800,000 keys. They discovered that more than 40% of the keys were database keys while 38% were for cloud services. Redis was the most common database involved, while Google Cloud API was the most common cloud service key.


Unsecured Chinese Database Leaks 2.4 Million Peoples' Information

Permalink - Posted on 2020-09-15 16:00

A US academic has revealed the existence of 2.4-million-person database he says is compiled by a Chinese company known to supply intelligence, military, and security agencies. The academic alleges the purpose of the database is enabling overseas influence operations to be conducted against prominent or influential people outside China.


Wales says Personal Data of 18,000 COVID Patients Accidentally Published

Permalink - Posted on 2020-09-15 16:00

The data breach was a result of individual human error, the public health body said, adding that it had commissioned an external investigation into the data breach and taken steps to prevent any similar incident.


Department of Veteran Affairs Discloses Breach Impacting 46,000 Veterans

Permalink - Posted on 2020-09-15 16:00

The Department of Veterans Affairs (VA) has disclosed today a security breach during which the personal information of around 46,000 veterans was obtained by a malicious third-party. Officials said the breach took place after "unauthorized users" accessed an online application managed by the VA Financial Services Center (FSC). The VA said the hackers used "social engineering techniques" and exploited the "authentication protocol" to gain access to the FSC app and then divert VA payments intended for healthcare providers for the­ medical treatment of US veterans


39% of Employees Access Corporate Data on Personal Devices

Permalink - Posted on 2020-09-14 16:00

The Head in the Clouds study, which surveyed more than 13,000 remote workers globally, found that many of the personal devices used to access company data were not as secure as their corporate equivalents.


Bill Requiring Notification of Security Breaches Compromising Personal Information Approved

Permalink - Posted on 2020-09-14 16:00

The Senate Communications & Technology Committee approved a bill requiring timely public notification when a security breach compromises personal information, according to Senator Dan Laughlin, prime sponsor of the bill. Senate Bill 487 updates the Breach of Personal Information Notification Act to require state agencies victimized by a breach involving personally identifiable information to report the incident to those affected within seven days.


Leaky Server Exposes Users of Dating Site Network

Permalink - Posted on 2020-09-14 16:00

Personal details of hundreds of thousands of dating site users were temporarily exposed online earlier this month.


Development Bank of Seychelles Hit by Ransomware

Permalink - Posted on 2020-09-14 16:00

The Central Bank of Seychelles (CBS) on Friday announced that the network of the Development Bank of Seychelles (DBS) was recently targeted in a ransomware attack.


U.S. Staffing Firm Artech Suffers Data Breach, Delays Reporting

Permalink - Posted on 2020-09-14 16:00

Artech Information Systems, a minority- and women-owned diversity supplier and one of the largest IT staffing companies in the U.S., has disclosed a data breach exposing personal, financial, and health information of some of its clients. Notably, the attack occurred in January, eight months ago.


Staples Discloses Data Breach Exposing Customer Information

Permalink - Posted on 2020-09-14 16:00

Giant office retail company Staples informed some of its customers that data related to their orders has been accessed without authorization.


Virginia's Largest School System Hit with Ransomware

Permalink - Posted on 2020-09-14 16:00

Fairfax County Public Schools (FCPS), the largest school system in Virginia, is investigating a cyberattack on its technology systems. Ransomware group Maze has claimed responsibility.


Ransomware Hits U.S. District Court in Louisiana

Permalink - Posted on 2020-09-14 16:00

The ransomware attack has exposed internal documents from the court and knocked its website offline.


U.S. Court Documents Published in Ransomware Attack

Permalink - Posted on 2020-09-11 15:00

Attackers claim to have successfully targeted the Fourth Judicial District Court of Louisiana with a ransomware strain known as Conti, first detected in the wild in December 2019. The malware has been observed to use the same ransom note deployed by the Ryuk crypto-malware family, and code similarities have been spotted between the two ransomware strains.


Travel Industry Giants Failed to Secure their Websites Despite High-Profile Data Breaches

Permalink - Posted on 2020-09-11 15:00

Major airlines and hotel chains have failed to secure their online platforms even after previous data breaches and cyberattacks exposed information of millions of customers’ and drew fines from privacy regulators. That’s the conclusion of an investigation by Which?, which found hundreds of data security vulnerabilities on popular travel companies including Marriott, British Airways, and EasyJet, all of who have previously suffered a severe data breach.


Razer Gaming Fans Caught Up in Data Leak

Permalink - Posted on 2020-09-11 15:00

An estimated 100,000 customers of Razer, a purveyor of high-end gaming gear ranging from laptops to apparel, have had their private info exposed, according to a researcher. Security consultant Bob Diachenko ran across a misconfigured Elasticsearch cloud cluster that exposed a segment of Razer’s infrastructure to the public internet, for anyone to see. It contained a raft of information of use to cybercriminals, including full name, email, phone number, customer internal ID, order number, order details, billing and shipping address.


Japan Regulator Is Set to Ask Nomura to Report on Data Leak

Permalink - Posted on 2020-09-11 15:00

Japan’s Financial Services Agency is set to order Nomura Holdings Inc. to submit a report on how client information was leaked to a rival firm, a person with knowledge of the matter said. The regulator has asked Nippon Institutional Securities Co., the company that received the information from a Nomura employee, to provide a separate report, the person said, asking not to be identified because the matter is confidential.


Development Bank of Seychelles Hit by Ransomware Attack

Permalink - Posted on 2020-09-11 15:00

DBS was founded in 1977 as a joint venture by the Seychelles government and several other shareholders including the European Investment Bank, Standard Chartered Bank, Barclays Bank, Deutsche Investitions und Entwicklungsgesellschaft (DEG), and Caisse Francaise de Cooperation.


SoftServe Hit by Ransomware, Windows Customization Tool Exploited

Permalink - Posted on 2020-09-11 15:00

Ukrainian software developer and IT services provider SoftServe suffered a ransomware attack on September 1st that may have led to the theft of customers' source code.


Nine Out of Ten IT Pros Have Experienced a Data Breach

Permalink - Posted on 2020-09-10 17:00

Exonar, has today published research revealing that 94 percent of IT pros have experienced a data breach, and an overwhelming majority (79 percent) are worried that their current organization could be next.


Portland Adopts Strictest Facial Recognition Ban in Nation to Date

Permalink - Posted on 2020-09-10 17:00

The Portland City Council voted on two ordinances related to facial recognition: one prohibiting use by public entities, including the police, and the other limiting its use by private entities. Both measures passed unanimously, according to local NPR and PBS affiliate Oregon Public Broadcasting.


Inova Suffers Third-Party Data Breach Affecting 1.5 Million Patients

Permalink - Posted on 2020-09-10 17:00

Inova Health Systems has notified customers that it was hit by a ransomware attack through a third-party vendor. Blackbaud, a vendor that provides fundraising support to nonprofit organizations, was itself hit by an attack that resulted in Inova data being exfiltrated from the Blackbaud servers.


Eterbase Crypto Exchange Attacked and Hot Wallets Fully Emptied

Permalink - Posted on 2020-09-10 17:00

In its official announcement, the exchange has also confirmed assets worth approximately $5.4 million were stolen.


Leading U.S. Video Delivery Provider Confirms Ransomware Attack

Permalink - Posted on 2020-09-10 17:00

SeaChange International, a US-based leading supplier of video delivery software solutions, has confirmed a ransomware attack that disrupted its operations during the first quarter of 2020.


Data Center Giant Equinix Discloses Ransomware Incident

Permalink - Posted on 2020-09-10 17:00

Equinix, one of the world's largest providers of on-demand colocation data centers, has disclosed today a security breach. In a short statement published on its website, Equinix said it found ransomware on its internal systems.


Ransomware Accounted for 41% of All Cyber Insurance Claims in H1 2020

Permalink - Posted on 2020-09-10 17:00

In the first half of 2020 alone, we observed a 260% increase in the frequency of ransomware attacks amongst policyholders, with the average ransom demand increasing 47%. Cyber insurance claims ranged in size from $1,000 to well over $2,000,000 per security incident.


Thailand: Ransomware Attack on Saraburi Hospital

Permalink - Posted on 2020-09-09 15:00

The director of Saraburi Hospital on Wednesday confirmed the hospital computer system had been attacked with ransomware, but said no demand for money was received. Patients were being advised to bring their own medical records and old medicine packaging with them if they visit the hospital.


Up to 308,000 Patients Potentially Affected by Baton Rouge Clinic Ransomware Attack

Permalink - Posted on 2020-09-09 15:00

The Baton Rouge Clinic in Louisiana experienced a cyberattack in early July that took its email and phone system out of action and limited its lab and radiology services. The cyberattack, which involved ransomware, took certain systems out of action for several weeks. It is now two months after the attack and the external email system is still not working.


Businesses Fear Insider-Enabled Data Breaches

Permalink - Posted on 2020-09-09 15:00

Businesses fear suffering a data breach and expect it to be caused by an insider or internal error. A survey of 500 IT professionals by Exonar found that 94% of respondents have experienced a data breach, and 79% were worried their organization could be next.


A Data Fail Left Banks and Councils Exposed by a Quick Google Search

Permalink - Posted on 2020-09-09 15:00

Details of more than 50,000 letters sent by banks and local authorities were left online for anyone to see.


PHI of Almost 140,000 Individuals Potentially Compromised in Imperium Health Phishing Attack

Permalink - Posted on 2020-09-08 17:00

Imperium Health Management, a Louisville, KY-based provider of development services to Accountable Care Organizations (ACOs), is notifying 139,114 individuals that some of their protected health information was potentially compromised in a recent phishing attack.


Webmaster Forum Database Exposed Data of 800,000 Users

Permalink - Posted on 2020-09-08 17:00

On July 1, the WebsitePlanet research team and cybersecurity researcher Jeremiah Fowler uncovered an unsecured Elasticsearch database containing over 62 million records. In total, data belonging to 863,412 Digital Point users was included in the leak.


Chilean Bank Shuts Down All Branches Following Ransomware Attack

Permalink - Posted on 2020-09-08 17:00

Details about the attack have not been made public, but a source close to the investigation told ZDNet that the bank's internal network was infected with the REvil (Sodinokibi) ransomware.


143mn Windows Malware Hit Consumer Smart Devices in Q2

Permalink - Posted on 2020-09-08 17:00

According to researchers at cybersecurity firm Quick Heal, attackers are still using COVID-19 as bait to drop malicious payloads to consumer devices, usually in the form of phishing emails that contain infected attachments.


City of Hartford Postpones First Day of School After Ransomware Attack

Permalink - Posted on 2020-09-08 17:00

Ransomware attack impacted the IT system that the school district uses to manage school buses and transportation routes.


Israel's Tower Semi Halts Some Operations After Cyber Attack

Permalink - Posted on 2020-09-08 17:00

Israeli chip manufacturer Tower Semiconductor said on Sunday some of its systems were hit by a cyberattack and as a result, it was putting on hold some servers and manufacturing operations.


Service NSW Reveals 738GB of Customer Data Was Stolen During Email Breach

Permalink - Posted on 2020-09-08 17:00

Service NSW has revealed that the personal information of 186,000 customers was stolen because of a cyber attack earlier this year on 47 staff email accounts.


DDoS Attacks on Virtual Education Rise 350%

Permalink - Posted on 2020-09-04 16:00

Distributed denial of service (DDoS) attacks against online educational resources are over three times more prevalent in 2020 than they were last year, according to new research by Kaspersky.


Assured Imaging Ransomware Attack Affects Almost 245,000 Patients

Permalink - Posted on 2020-09-04 16:00

Tucson, AZ-based Assured Imaging, a subsidiary of Rezolut Medical Imaging and provider of Health Screening and Diagnostic Services, has announced it has suffered a ransomware attack that resulted in the encryption of its medical record system.


Blackbaud Data Breach Healthcare Victim Count Rises to Almost 1 Million

Permalink - Posted on 2020-09-04 16:00

The number of healthcare providers confirmed to have been affected by the Blackbaud ransomware attack and data breach is growing, with a further four healthcare providers issuing breach notifications in the past few days.


Cyber Attack on Lugar Laboratory in Georgia Confirmed

Permalink - Posted on 2020-09-04 16:00

A cyber attack has been carried out on the Georgian Ministry of Health and the Lugar laboratory. The Ministry of Internal Affairs says the cyberattack was executed on the territory of a neighboring country. Some of the stolen documents have been uploaded to a foreign website and are available to the general public.


Warner Music Discloses Months-Long Web Skimming Incident

Permalink - Posted on 2020-09-04 16:00

Music recording powerhouse Warner Music Group has disclosed today a security incident that involved some of the company's online stores. Called "web skimming" or "magecart," this type of attack happens when hackers take control over a website and insert malicious code that logs customer details entered inside payment forms.


Australia says Cyber Attacks Rise, Cites 4,500 Hacking Attempts in One Day

Permalink - Posted on 2020-09-04 16:00

Cyber attacks against Australia have increased in frequency in recent months, Defence Minister Linda Reynolds said on Friday, as the country released its first cybersecurity threat report which cited 4,500 hacking attempts in one day.


Northumbria Uni Campus Closed After Serious Cyber Attack

Permalink - Posted on 2020-09-03 17:00

Northumbria University is still reeling from a cyber-attack which forced it to reschedule exams and close its entire campus in Newcastle-Upon-Tyne.


U.S. Surveillance Exposed by Snowden Ruled Unlawful

Permalink - Posted on 2020-09-03 17:00

A surveillance program undertaken by America's National Security Agency has been ruled unlawful.The program involved the collection of data from the private phone records of millions of Americans. It was exposed by whistleblower Edward Snowden, whose revelations were published by the Guardian newspaper. Intelligence leaders who publicly defended the program have now been classed as liars following a ruling by the US Court of Appeals.


One Year Compliance Deadline for New Children's Code

Permalink - Posted on 2020-09-03 17:00

Online service providers, app developers and other relevant businesses have one year to comply with a new statutory code introduced on Wednesday to help protect children’s privacy. The Age Appropriate Design Code or Children’s Code will apply to any business providing “online services and products” likely to be used by UK youngsters under 18, according to the Information Commissioner’s Office (ICO).


56,000 Northwestern Memorial HealthCare Donors Impacted by Blackbaud Ransomware Attack

Permalink - Posted on 2020-09-03 17:00

Northwestern Memorial HealthCare has discovered the personal information of individuals who had previously made donations to Northwestern Memorial HealthCare was potentially compromised in the recent Blackbaud ransomware attack. An unauthorized individual first gained access to Blackbaud systems on February 7, 2020, with the access possible until May 20,2020 when ransomware was deployed.


Jewish Federation of Greater Washington Reports $7.5 Million Hack

Permalink - Posted on 2020-09-03 17:00

CEO Gil Preuss announced the hack to employees in a virtual call Wednesday morning, saying the initial attack targeted an employee using a personal computer while working from home.


The Cost of an Insider Attack Is as Much as $2 Million

Permalink - Posted on 2020-09-03 17:00

Employees, whether careless or malicious, can pose a great risk to organizations, a Bitglass survey reveals. 61% of survey respondents reported at least one insider attack over the last 12 months (22% reported at least six separate attacks).


Hackers Are Exploiting a Critical Flaw Affecting >350,000 WordPress Sites

Permalink - Posted on 2020-09-03 16:00

Hackers are actively exploiting a vulnerability that allows them to execute commands and malicious scripts on Websites running File Manager, a WordPress plugin with more than 700,000 active installations, researchers said on Tuesday.


55% of Cyber-Squatted Domains Are Malicious or Potentially Fraudulent

Permalink - Posted on 2020-09-03 16:00

n Palo Alto Networks' research, almost 19% of the 13,857 cybersquatted domains are classified as "malicious," either used for malware distribute or phishing attacks. Another 37% of the cybersquatted domains are considered "suspicious," which includes domains that are questionable, appear to be parked, have insufficient content, or host legally questionable software.


Online Marketing Company Exposes 38+ Mllion U.S. Citizen Records

Permalink - Posted on 2020-09-03 16:00

The CyberNews research team discovered an unsecured data bucket that belongs to View Media, an online marketing company. The bucket contains close to 39 million US user records, including their full names, email and street addresses, phone numbers and ZIP codes. The database was left on a publicly accessible Amazon Web Services (AWS) server, allowing anyone to access and download the data. Following the 350 million email leak covered by CyberNews earlier in August, this is the second time this summer we encountered an unsecured Amazon bucket containing such massive amounts of user data.


European ISPs Report Wave of DDoS Attacks

Permalink - Posted on 2020-09-03 16:00

Over the past week, multiple ISPs in Belgium, France, and the Netherlands reported DDoS attacks that targeted their DNS infrastructure.


Virtual Classes for Miami-Dade School District Dsrupted by Cyber Attack

Permalink - Posted on 2020-09-03 16:00

Miami-Dade County Public Schools (M-DCPS) announced late Tuesday that its virtual classroom systems had been hit by a cyberattack that temporarily disrupted online classes amid the pandemic. In a statement, the district noted that its My School Online distance learning platform had been hit by a distributed denial of service, or DDoS attack, that negatively impacted the first two days of the 2020-2021 school year.


Big Ransomware Attacks Overshadowing Other Alarming Trends

Permalink - Posted on 2020-09-02 16:00

The attacks on major enterprises, which have been publicized by Maze and other gangs on their "news" sites, have overshadowed many other attacks that haven't been publicized. "For every ransomware attack you're reading in the news, there's several hundred you're not reading about. Some of them are very large. Some of them are business divisions of larger units. But if you're looking at the cyber insurance industry, they're looking at upwards of 100 claims per day that are ransomware-oriented."


Morgan Stanley Hit with $5 Million Data Breach Suit

Permalink - Posted on 2020-09-02 16:00

The suit is being brought by Morgan Stanley customer Timothy Smith in the U.S. District Court for the Southern District of New York on behalf of about 100 other customers affected by the data breach. The case is tied to incidents in 2016 and 2019 when the firm decommissioned several pieces of computer equipment without properly scrubbing the personal data.


33% of Companies Expose Unsafe Network Services to the Internet

Permalink - Posted on 2020-09-02 16:00

A new report finds that 33% of companies within the digital supply chain expose common network services such as data storage, remote access, and network administration to the internet. As such, admins should either eliminate direct internet access or deploy compensating controls for when/if such services are required, according to the report by RiskRecon, a Mastercard company, and the cybersecurity research services firm Cyentia Institute. The research is based on RiskRecon's assessment of millions of internet-facing systems across approximately 40,000 commercial and public institutions, the company said. Cyentia and RiskRecon analyzed the data in two ways: The direct proportion of internet-facing hosts running unsafe services, as well as the percentage of companies that expose unsafe services somewhere across their infrastructure.


CEOs Could Face Jail Time for IoT Attacks by 2024

Permalink - Posted on 2020-09-02 16:00

Corporate CEOs could soon be personally liable if they fail to adequately secure IT systems connected to the physical world, Gartner has warned. The analyst firm predicted that as many as 75% of business leaders could be held liable by 2024 due to increased regulations around so-called “cyber-physical systems” (CPSs) such as IoT and operational technology (OT).


American Payroll Association User Data Stolen in Skimmer Attack

Permalink - Posted on 2020-09-01 16:00

According to APA, information that was compromised during the attack included user login information and payment card information.


Apple Accidentally Approved Malware to Run on MacOS

Permalink - Posted on 2020-09-01 16:00

The ubiquitous Shlayer adware has picked up a new trick, slipping past Cupertino's “notarization” defenses for the first time.


Norway's Parliament Hit by 'Cyber Attack

Permalink - Posted on 2020-09-01 16:00

The Norwegian parliament suffered a cyber attack during the past week and the e-mail accounts of several elected members as well as employees were hacked, the national assembly and a counter-intelligence agency said on Tuesday.


Phishing Gangs Mounting High-Ticket BEC Attacks, Average Loss Now $80,000

Permalink - Posted on 2020-09-01 16:00

Agari reported average wire transfer loss from BEC attacks smashed all previous frontiers, spiking from $54,000 in the first quarter to $80,183 in Q2 2020 as spearphishing gangs reached for bigger returns. Scammers also requested funds in 66 percent of BEC attack in the form of gift cards, which are easier to cash out. During the second quarter of 2020, the average amount of gift cards requested by BEC attackers was $1,213, down from $1,453 in the first quarter of 2020. The number of phishing sites detected in the second quarter of 2020 was 146,994, down from the 165,772 observed in the first quarter. Phishing that targeted webmail and SaaS users continued to be biggest category of phishing.


Ransomware Attacks Continue to Dominate the Threat Landscape

Permalink - Posted on 2020-09-01 16:00

The ubiquitous Shlayer adware has picked up a new trick, slipping past Cupertino's “notarization” defenses for the first time.


PULAU Corporation Notifies Employees of June Hack

Permalink - Posted on 2020-08-31 15:00

An unauthorized party acquired certain employment-related records stored on the affected systems. The affected records contained certain personal information, such as name, contact information, date of birth, government-issued ID (such as Social Security, passport, military ID, tax ID and/or driver’s license numbers), financial account information (such as bank account and/or payment card information), online account usernames and passwords, and/or health-related information (including health insurance information).


Class Action Lawsuit Questions Blackbaud's Hacker Payoff

Permalink - Posted on 2020-08-31 15:00

In its breach notification, Blackbaud notes that it paid a ransom to secure a promise from attackers that they would delete all stolen data. Following the breach notification, Blackbaud was hit on Aug. 12 by a lawsuit seeking class action status, filed by Whitfield Bryson & Mason LLP on behalf of U.S. resident William Allen, whose "private information was compromised as a direct and proximate result of the data breach." The lawsuit seeks, in part, seven years of prepaid identity theft monitoring for victims. It alleges that the company's security defenses were inadequate and that attackers may have compromised massive quantities of PII, including Social Security, credit card and bank account numbers.


Utah Pathology Services Email Breach Potentially Affects 112,000 Patients

Permalink - Posted on 2020-08-31 15:00

Utah Pathology Services has announced an unauthorized individual has gained access to the email account of an employee and attempted to redirect funds from Utah Pathology.


Bypass of PINs for Visa Contactless Payments Proven

Permalink - Posted on 2020-08-28 15:00

A team of academics from Switzerland has discovered a security bug that can be abused to bypass PIN codes for Visa contactless payments. This means that if criminals are ever in possession of a stolen Visa contactless card, they can use it to pay for expensive products, above the contactless transaction limit, and without needing to enter the card's PIN code. The attack is extremely stealthy, academics said, and can be easily mistaken for a customer paying for products using a mobile/digital wallet installed on their smartphone. However, in reality, the attacker is actually paying with data received from a (stolen) Visa contactless card that is hidden on the attacker's body.


New Zealand Stock Exchange Disrupted by Fourth Cyber Attack

Permalink - Posted on 2020-08-28 15:00

The New Zealand government has activated national security systems after the nation’s stock exchange was disrupted by cyber attacks for a fourth day. There was no clarity on who was behind the “offshore” attacks, but the failure to stop them has raised questions about New Zealand’s security systems, experts said.


Over 54,000 Scanned NSW Driver's Licences Found in Open Cloud Storage

Permalink - Posted on 2020-08-28 15:00

Tens of thousands of scanned NSW driver's licenses and completed tolling notice statutory declarations were left exposed on an open Amazon Web Services storage instance, but Transport for NSW doesn't know how the sensitive personal data ended up in the cloud.


Fake Login Page Detections Top 50,000 in 2020

Permalink - Posted on 2020-08-28 15:00

Over 50,000 fake login pages were detected in the first half of 2020, with some able to be polymorphic and represent different brands. According to research from Ironscales, fake login pages are commonly used to support hacks and spear-phishing campaigns, and its researchers found more than 200 of the world’s most prominent brands were spoofed with fake login pages.


NCR Confirms Malware in Lab Environment

Permalink - Posted on 2020-08-28 15:00

NCR Corporation has confirmed to SC Media that it found malware-infected computers in an isolated non-production lab environment outside of the U.S., but claims its clients were never at risk of a secondary infection. The confirmation came after the CEO of cybersecurity firm Prevailion exclusively told SC Media that a trojan had infected the popular point-of-sale and ATM software developer, and expressed concern that this could potentially pose a supply-chain risk to customers. Prevailion had not alerted NCR of the infection, but SC Media reached out to the company to disclose the issue and request comment.


The Global Cost of Cyber Crime per Minute to Reach $11.4 Million by 2021

Permalink - Posted on 2020-08-28 15:00

Cybercrime costs organizations $24.7, YOY increase of more than $2 every minute, a RiskIQ report reveals. It will also have a per-minute global cost of $11.4 million by 2021, a 100% increase over 2015.


Southern Water Customers Could View Others' Personal Data

Permalink - Posted on 2020-08-28 15:00

Southern Water - British supplier of the liquid of life - botched its internal Sharepoint implementation so badly that a customer was able to view other people’s account details.


Local Government Organizations Most Frequently Targeted by Ransomware

Permalink - Posted on 2020-08-27 16:00

Local government bodies are more likely to be targeted by ransomware attacks than any other type of organization, according to a new study by Barracuda Networks, which looked at 71 global ransomware incidents over the last 12 months. It found that 44% of global ransomware attacks that have taken place so far in 2020 have been aimed at municipalities, which is virtually the same proportion as in 2019 (45%). Barracuda highlighted the attack on Redcar and Cleveland council’s computer system in the UK, which is believed to have cost the local authority over £10m. Of the municipalities subjected to ransomware attacks in 2020, 15% have confirmed they have made payments, compared to no ransoms being paid last year.


A Quarter of the Alexa Top 10K Websites Are Using Browser Fingerprinting Scripts

Permalink - Posted on 2020-08-27 16:00

Academics also discover many new previously unreported JavaScript APIs that are currently being used to fingerprint users.


Browsing Histories Can Be Used to Track Users

Permalink - Posted on 2020-08-27 16:00

Browsing histories can be used to compile unique browsing profiles, which can be used to track users, Mozilla researchers have confirmed. There are also many third parties pervasive enough to gather web histories sufficient to leverage browsing history as an identifier.


Medical Data Leaked on GitHub Due to Developer Errors

Permalink - Posted on 2020-08-26 16:00

Up to 200,000 patient records from Office 365 and Google G Suite exposed by hardcoded credentials and other improper access controls.


Dynasplint Systems Data Breach Impacts Almost 103,000 Individuals

Permalink - Posted on 2020-08-26 16:00

Severna Park, MD-based Dynasplint Systems, a manufacturer of proprietary stretching devices to improve joint motion, has experienced a cyberattack in which personal and protected health information may have been accessed or stolen.


Wellington-Dufferin-Guelph Public Health Notification of Privacy Breach

Permalink - Posted on 2020-08-26 15:00

Wellington-Dufferin-Guelph Public Health is informing community members of a recent breach of privacy that affected an information dashboard that was used to display information about influenza cases in our community. This dashboard was posted on our public website between January 2020 and May 2020.


Global Pandemic Opening Up Can of Security Worms

Permalink - Posted on 2020-08-26 15:00

Caught by the sudden onslaught of COVID-19, most businesses lacked or had inadequate security systems in place to support remote work and now have to deal with a new reality that includes a much wider attack surface and less secured user devices.


New Zealand Stock Exchange Hit by Cyber Attack for Second Day

Permalink - Posted on 2020-08-26 15:00

Trading halted again, one day after overseas DDoS bombardment that forced stock market to shut down.


Malware Attack Stifles Philadelphia Area Transit Agency

Permalink - Posted on 2020-08-26 15:00

A malware attack two weeks ago continues to stifle the Southeastern Pennsylvania Transit Authority (SEPTA) and has left some employees exasperated while they search for answers with little communication from the authority.


Cyber Attack on Rialto School District Confirmed

Permalink - Posted on 2020-08-26 15:00

A cyber-attack has shut down virtual classes in a Los Angeles school district two weeks after the FBI issued a cybersecurity warning to schools offering online learning.


U.S. Military Personnel Lost $379 Mn to Fraudulent Schemes in Last 5 Years

Permalink - Posted on 2020-08-26 15:00

An investigation from AtlasVPN revealed that the U.S Military personnel have lost around $379.6 million to a range of fraudulent schemes from 2015 to June 30, 2020. According to the report, military staff have reported more than 680,000 complaints about fraud, identity theft, or other consumer issues to the Federal Trade Commission (FTC).


Nearly Half of U.K. IT Leaders Have Not Upgraded to Cloud Security

Permalink - Posted on 2020-08-25 16:00

Nearly half (47%) of UK IT leaders have not updated their security strategies to account for their move to cloud environments, putting their organizations at higher risk of cyber-attack, according to a new study by Trend Micro commissioned for CLOUDSEC Online. This is despite the fact that traditional on-premises security such as firewalls, network intrusion prevention systems (IPS/IDS) and anti-virus are unsuitable for cloud environments as they tend to create performance bottlenecks and security gaps.


Personal and COVID-19 Status Data Stolen from South Dakota Fusion Center in 'BlueLeaks' Hacking Incident

Permalink - Posted on 2020-08-25 16:00

In June 2020, the Houston, TX-based web developer Netsential had its web servers hacked and almost 270 gigabytes of data were stolen and was published online on June 19, 2020 by the hacking group Distributed Denial of Secrets (DDoSecrets). The hack and data leak incident was termed “BlueLeaks” and included 10 years of law enforcement data from around 200 police departments and fusion centers. Fusion centers gather and analyze threat information and share the data with states, government organizations, and private sector firms. The leaked data contained more than 1 million lines and included scanned documents, video and audio files, and emails.


38 Japan Firms' Authentication Data Stolen amid Surge in Teleworkers

Permalink - Posted on 2020-08-25 16:00

The cyberattacks took place in June and July. Around 900 items of authentication data for access to VPN servers, provided by Pulse Secure LLC of the United States, were found to have been stolen and leaked online, of which 90 were linked to Japan, according to the expert and others familiar with the matter.


Brookfield Residential Confirms Ransomware Attack

Permalink - Posted on 2020-08-25 16:00

DarkSide ransomware operators claimed to have attacked Brookfield Asset Management, they appear to have attacked Brookfield Residential, a North American land developer and residential home builder.


Freepik Discloses Data Breach Impacting 8.3 Million Users

Permalink - Posted on 2020-08-24 16:00

The attackers, Freepik Company explains, exploited an SQL injection vulnerability in Flaticon, which allowed them to access user information.


Average Cost of a Data Breach in 2020: $3.86M

Permalink - Posted on 2020-08-24 16:00

A recent survey of 3,200 people in 524 organizations that suffered data breaches is a bit of a mixed bag. Ponemon's "Cost of a Data Breach Report 2020" (commissioned by IBM) reveals that despite an apparent decline in the average cost of a data breach — from $3.92 million in 2019 to $3.86 million this year — the price tag was much less for mature companies and industries and far higher for firms that had lackluster security automation and incident response processes. In the same vein, Ponemon's examination of the average cost per record varied widely according to the kind of data that was exposed or stolen.


Indian Travel Site Exposed 37 Million Records Before Meow Attack

Permalink - Posted on 2020-08-24 16:00

The company behind one of India’s most popular travel booking sites exposed 43GB of customer and corporate data before it was deleted by the infamous “Meow” attacker, according to researchers.


Canadian Shipping Company Canpar Hit by Ransomware

Permalink - Posted on 2020-08-24 16:00

The Canuck parcel-mover's website fell offline for days as it tackled a ransomware outbreak on its internal systems. We are also told by readers who reside in America's Hat that deliveries have been negatively affected – things like package tracking and scheduling pickups are not possible right now, for instance.


HealthEngine Ordered to Pay $2.9m for Misleading Conduct

Permalink - Posted on 2020-08-21 16:00

The settlement saw HealthEngine admit to providing non-clinical personal information – such as names, dates of birth, phone numbers and email addresses – to nine different third-party private health insurance brokers without properly informing consumers.


Mitsukoshi and MI Card Announce Data Breach Affecting Approximately 19,000 Customers

Permalink - Posted on 2020-08-21 16:00

Isetan Mitsukoshi Co., Ltd and MI Card Co., Ltd announced, on 5 August 2020, that they had suffered a data breach affecting approximately 19,000 customers as a result of unauthorised access. In particular, MI Card noted that the data breach occurred on the Isetan Mitsukoshi Online Store as well as MI Card's homepage. In addition, MI Card highlighted that personal information such as name, address, phone number, email address, and date of birth of customers of the Mitsukoshi online store were accessed, whereas the member name, expected billing amount, and current membership points held on the MI Card homepage were also accessed.


University of Utah Pays $457,000 to Ransomware Gang

Permalink - Posted on 2020-08-21 16:00

The university said its staff restored from backups; however, the ransomware gang threatened to release student-related data online, which, in turn, made university management re-think their approach towards not paying the attackers.


Millions of Devices Affected by Vulnerability in Thales Wireless IoT Modules

Permalink - Posted on 2020-08-21 16:00

A vulnerability in components used in millions of IoT devices could be exploited by hackers and used to steal sensitive information and gain control of vulnerable devices, which could then be used in attacks on internal networks. Thales components are used by more than 30,000 companies, whose products are used across a broad range of industry sectors including energy, telecommunications, and healthcare.


Reports of Cyber Crimes Against Children Double During Pandemic

Permalink - Posted on 2020-08-21 16:00

The Tennessee Bureau of Investigation said yesterday that the number of tips received regarding cybercrimes against children has increased sharply since the outbreak of COVID-19. Speaking to media, TBI Director David Rausch said investigators had received more than twice the usual number of tips concerning this type of cybercrime since the pandemic began.


Student, Financial Info. Published in Suspected RMC data Leak After Cyber Attack

Permalink - Posted on 2020-08-21 16:00

What seems to be data from the Royal Military College (RMC) of Canada was leaked on the dark web this week, after the institution was targeted by a cybersecurity attack in early July. The Department of National Defence (DND) did not confirm the leak contains RMC information, but Global News has viewed many of the files from the leak, including student progress reports, acceptance letters, as well as a myriad of financial documents like tax receipts and budgets for various departments that all appear to be from the college.


Former Uber Security Chief Charged Over Covering Up 2016 Data Breach

Permalink - Posted on 2020-08-21 16:00

The federal prosecutors in the United States have charged Uber's former chief security officer, Joe Sullivan, for covering up a massive data breach that the ride-hailing company suffered in 2016. According to the press release published by the U.S. Department of Justice, Sullivan "took deliberate steps to conceal, deflect, and mislead the Federal Trade Commission about the breach" that also involved paying hackers $100,000 ransom to keep the incident secret.


Texas County Notified Thousands of Residents of Data Breach

Permalink - Posted on 2020-08-21 16:00

More than 2,000 residents in North Texas received letters notifying them that their personal information may have been compromised during a July cyberattack against the Cooke County Sheriff’s Office.


Myerscough College Hit by Cyber Attack on Exam Results Day

Permalink - Posted on 2020-08-21 16:00

A higher education college suffered "a significant malicious cyber attack" meaning students could not access their GCSE and other exam results online.


Remote Working Linked to Data Breach in 66% of Indian Firms

Permalink - Posted on 2020-08-20 17:00

While 64 per cent of organisations expect an incident to occur in the next month, 70 per cent are concerned about unknown threats that will cause business disruption in the next six months. Additionally, 53 per cent of organisations in India do not have an up-to-date cybersecurity strategy and solutions in place that cover all the vulnerabilities posed by full-time remote working.


SnapFulfil Hit by Ransomware

Permalink - Posted on 2020-08-20 17:00

Emails from SnapFulfil, a trading name of Synergy Logistics, sent to its customers late last week and shown to The Register, revealed how a ransomware attack targeted the company's services, disrupting warehouse operations for at least one of its customers.


Utah Gun Exchange Confirms Data Breach after Bad Actors Publishes Stolen Customer Records Online

Permalink - Posted on 2020-08-20 17:00

Earlier this month, datasets containing over 240,000 records of the Utah Gun Exchange website were posted openly on a popular hacking forum. In total, 195,000 user records for the utahgunexchange.com and 45,000 records for their video, site UGETube, were exposed.


Businesses Opt to Outsource Cyber Security Services

Permalink - Posted on 2020-08-20 17:00

According to research by Skurio, there is a lack of in-house expertise in the area of digital risk protection – the ability to monitor risks, threats and breaches outside the network. The research found 80% of respondents stated their teams lack skills and knowledge in this area.


62% of Blue Teams Have Difficulty Stopping Red Teams During Adversary Simulation Exercises

Permalink - Posted on 2020-08-20 17:00

While 37 percent of blue teams always or often catch these ‘bad actors,’ 55 percent say they only succeed sometimes, and 7 percent rarely or never achieve this feat. On a positive note, these numbers indicate a trend in the right direction compared to last year’s study, which showed one-third rarely or never catching red teams.


Banking Cients Swept Up in New Massive Experion Data Breach

Permalink - Posted on 2020-08-19 16:00

Standard Bank, the continent’s largest bank by assets, has said some of its clients are among victims of a data breach at one of the world’s top credit bureaus, while FNB and African Bank also warned their customers to be vigilant. The hack of Experian SA exposed some personal information of as many as 24-million South Africans and almost 800,000 businesses, the SA Banking Risk Centre (Sabric), a non-profit organisation set up by major lenders to combat bank-related organised crime, said in a statement on Wednesday.


Data Firm Exposes 235 Million Social Media Profiles

Permalink - Posted on 2020-08-19 16:00

A social media data broker has exposed the public-facing profiles of 235 million users via a misconfigured online database, according to researchers. Comparitech teamed up with Bob Diachenko to uncover three identical copies of the data on August 1, left online with no password or other authentication required to access it. In total, 192 million profiles were scraped from Instagram, 42 million from TikTok and four million from YouTube. Each record contained some of the following: profile name, real name, profile pic, account description, age, gender and more.


Marriott Faces Another Data Breach Lawsuit

Permalink - Posted on 2020-08-19 16:00

Marriott faces another lawsuit, filed in Britain, over the hotel giant experiencing one of the worst data breaches in history. A class action lawsuit was filed in the High Court of Justice for England and Wales by Martin Bryant, who runs a Manchester, England-based consultancy called Big Revolution.


Nearly 40% of Firms Fired Staff for Security Policy Breaches

Permalink - Posted on 2020-08-18 17:00

Almost two-fifths (39%) of British business decision makers have sacked employees because they breached corporate security policy during the pandemic, according to new data from Centrify.


61% of Airlines Have No Published DMARC Record, Customers Susceptible to Email Fraud

Permalink - Posted on 2020-08-18 17:00

The majority of airline companies are potentially leaving their customers vulnerable to email fraud, such as phishing, according to a new analysis by Proofpoint. It found that 61% of member airlines belonging to the International Air Transport Association (IATA) do not have a published Domain-based Message Authentication, Reporting & Conformance (DMARC) record, increasing the risk of having their identity spoofed and of customers being targeted by email fraud. IATA member airlines make up 82% of total air traffic. In addition, 93% of global airlines included in the study have not implemented the recommended level of DMARC protection, known as Reject. This blocks fraudulent emails from reaching their intended target.


Blackbaud Ransomware Attack Impacts 657,392 Northern Light Health Foundation Donors

Permalink - Posted on 2020-08-18 16:00

The databases affected contained information about donors, potential donors, and individuals who may have attended a fundraising event in the past. Patient medical records were stored separately and were unaffected. The databases contained the records of 657,392 individuals.


World's Largest Cruise Line Operator Discloses Ransomware Attack

Permalink - Posted on 2020-08-18 16:00

In an 8-K filing with the US Securities Exchange Commission (SEC), the company said the incident took place on Saturday, August 15. Carnival said the attackers "accessed and encrypted a portion of one brand's information technology systems," and that the intruders also downloaded files from the company's network.


Medical Data of Auto Accident Victims Exposed Online

Permalink - Posted on 2020-08-18 16:00

Secure Thoughts collaborated with Security Expert Jeremiah Fowler to expose a leak of millions of personal medical records by an Artificial Intelligence company.


Publicly Reported Data Breaches Down 52%, Exposed Records Way Up!

Permalink - Posted on 2020-08-18 16:00

Although the number of publicly reported data breaches stands at its lowest in five years, the number of records exposed is more than four times higher than any previously reported time period, a Risk Based Security report reveals.


Gym App Management Patform Exposed Info. of Thousands of Users

Permalink - Posted on 2020-08-18 16:00

Hackers could hijack user accounts in dozens of fitness and gym mobile applications, even where the two-factor authentication (2FA) mechanism was active. The common ground for all the apps is Fizikal, a management platform from Israel for gyms and sports clubs that allows customers to handle their subscription and class registration.


Ritz Hotel Diners Were Vctims of a Sophisticated Scam

Permalink - Posted on 2020-08-17 16:00

Clients having dinner at the luxury Ritz hotel in London have been targeted by “extremely convincing” scammers who posed as hotel staff to steal payment card details.


India: 'Dharma' Ransomware Attacking SMBs, Average Loss is Rs 6.4 Lakh

Permalink - Posted on 2020-08-17 16:00

Small and medium businesses (SMBs) are witnessing an increased ransomware attack globally, including in India, this year and the ransom demands have reached nearly $8,620 (nearly Rs 6.4 lakh) on average in the pandemic times.


Jack Daniel's-Maker Suffers REvil Ransomware Breach

Permalink - Posted on 2020-08-17 16:00

However, as is often the case, the attackers appear to have taken extra steps to force a ransom payment from the company. They told Bloomberg that 1TB of corporate data is now in their hands and it will most likely be leaked online in batches to turn up the pressure on the Louisville, Kentucky-headquartered firm.


Researcher Discloses 9 Leaky GitHub Repos Affecting 200,000 U.S. Residents

Permalink - Posted on 2020-08-17 16:00

Only three of the of the nine affected entities responded to the researchers’ disclosure and patched their blunders. Some ignored his findings, while others even threatened to pursue legal action against him – despite Ursem disclosing his findings responsibly and giving the affected entities enough time to address the leaks.


Oracle and Salesforce to Face GDPR Lawsuit

Permalink - Posted on 2020-08-17 16:00

A consumer privacy campaign group has filed a lawsuit against American companies Salesforce and Oracle over an alleged breach of the EU's General Data Protection Regulation laws. The Privacy Collective claims that the companies collect users' personal data without proactive user consent and then auction it off to other companies without users' knowledge. The group has claimed that the suit could cost the California-based companies up to $10bn in fines.


Microsoft Put Off Fixing Zero Day for 2 Years

Permalink - Posted on 2020-08-17 16:00

A security flaw in the way Microsoft Windows guards users against malicious files was actively exploited in malware attacks for two years before last week, when Microsoft finally issued a software update to correct the problem.


Thousands of Canadian Government Accounts Hacked

Permalink - Posted on 2020-08-17 16:00

The attacks targeted the GCKey service, used by some 30 federal departments and Canada Revenue Agency accounts, the Treasury Board of Canada Secretariat explained in a press release.


NSW Police Leak Private Information of Complainants

Permalink - Posted on 2020-08-17 16:00

The NSW Police have leaked the emails of over 150 complainants who contacted them in order to raise concerns regarding officer’s use of force following the Sydney Black Lives Matter protest on Saturday, 6 June.


Town of Hollywood Park Attempting to Recover Nearly $200,000 Stolen in 2019 Cyber Theft

Permalink - Posted on 2020-08-17 16:00

On March 5, 2019 someone attempted to steal nearly half a million dollars from the sleepy San Antonio suburb of Hollywood Park. The thieves were likely international cyber-criminals, but 17-months later, no one has been arrested for the crime. With the help of the United States Secret Service, the town managed to recover nearly $300,000 of the missing money, but there’s still a dispute over who should be held responsible for the nearly $200,000 that ended up in a bank in Turkey. Hollywood Park Mayor Chris Murphy recently recalled the moment he learned about two large, unauthorized wire transfers from the town’s bank accounts on March 6, the day after the money had been moved.


Lawsuit Filed After Data Breach at Coastal Prep Academy Exposed Sensitive Personal Data

Permalink - Posted on 2020-08-17 16:00

According to a letter sent to parents by Coastal Preparatory Academy and a lawsuit filed in Superior Court, a former employee obtained extremely sensitive personal information about parents, students, and staff — including social security numbers, health and financial information, and employment records. The charter school has filed several civil actions to recover passwords, personal data, and control of its computer systems. The school has also contacted the Attorney General’s office, as it believes the employee responsible for the data breach has broken state and federal law.


Germany's Military-Run Transport Fleet Hacked

Permalink - Posted on 2020-08-17 16:00

Germany's state-owned vehicle fleet, which provides chauffeurs for parliamentarians and is run by the Bundeswehr military, has been hacked. Federal cyber experts have begun a probe, reports the Bild am Sonntag newspaper.


Medical Debt Collection Firm R1 RCM Hit in Ransomware Attack

Permalink - Posted on 2020-08-14 16:00

Formerly known as Accretive Health Inc., Chicago-based R1 RCM brought in revenues of $1.18 billion in 2019. The company has more than 19,000 employees and contracts with at least 750 healthcare organizations nationwide.


129,000 Patients Data Exposed After Behavioral Health Network Malware Attack

Permalink - Posted on 2020-08-14 16:00

Behavioral Health Network (BHN), the largest behavioral health service provider in Western Massachusetts, has announced that malware was downloaded onto its computer systems that prevented files from being accessed. The security breach was discovered on May 28, 2020 when staff were prevented from accessing files. An investigation was immediately launched to determine the extent of the attack and whether any data had been exfiltrated by the attacker. Around July 17, 2020, BHN determined that an unauthorized individual had gained access to its systems on May 26, two days before the malware was introduced.


Canon USA's Stolen Files Leaked by Maze Ransomware Gang

Permalink - Posted on 2020-08-14 16:00

A ransomware gang has published unencrypted files allegedly stolen from Canon during a ransomware attack earlier this month. On August 5th, 2020, BleepingComputer broke the story that Canon suffered a ransomware attack by a cybercrime group known as Maze. BleepingComputer learned of this attack after a source shared a portion of the ransom note and an internal notification to employees about the attack. Since then, BleepingComputer has obtained previously unpublished internal communications sent by the Canon IT department on August 10th to employees about the restoration of services.


Instagram Retained Deleted User Data Despite GDPR Rules

Permalink - Posted on 2020-08-14 16:00

Instagram kept copies of deleted pictures and private direct messages on its servers even after someone removed them from their account. The Facebook-owned service acknowledged the slipup and awarded a security researcher $6,000 for finding the bug.


Hacker Leaks Data for U.S. Gun Exchange Site on Cyber Crime Forum

Permalink - Posted on 2020-08-13 17:00

A hacker has released the databases of Utah-based gun exchange, hunting, and kratom sites for free on a cybercrime forum. On August 10th, a threat actor posted databases that they claim contain 195,000 user records for the utahgunexchange.com, 45,000 records for their video site, 15,000 records from the hunting site muleyfreak.com, and 24,000 user records from the Kratom site deepjunglekratom.com.


Surge in Cyber Attacks Targeting Open Source Software Projects

Permalink - Posted on 2020-08-13 17:00

There has been a massive 430% surge in next generation cyber attacks aimed at actively infiltrating open source software supply chains, Sonatype has found.


Adit Database Left Exposing 3.1 Million Patient Records

Permalink - Posted on 2020-08-13 17:00

In a blog Tuesday, independent security researcher Volodymyr "Bob" Diachenko writes of his discovery on July 13 of an unprotected database with information on 3.1 million patients that was exposed to the internet. The database appears to be owned by Adit, a Houston-based online medical appointment and patient management software company. In an unusual development, on July 22, the database appears to have been deleted by a so-called "meow bot," the researcher says. "Unlike other malicious bots that find and delete exposed data, a meow bot doesn't ask for a ransom, which has led some to believe the bot is actually benevolent and aims to protect data subjects' information," he writes.


Medical Records for More Than 61,000 Cardiac Patients Left Unsecured Online

Permalink - Posted on 2020-08-13 17:00

n August 2, a researcher contacted DataBreaches.net about a misconfigured Amazon s3 storage bucket they had discovered. The bucket contained more than 60,000 records, recently updated, with protected health information of patients seen by or involved with BioTel Heart cardiac data network.


Researchers Uncovered Alexa Flaw That exposed Personal Information and Speech Histories

Permalink - Posted on 2020-08-13 17:00

Researchers at Check Point say they identified an exploit in Amazon’s Alexa voice platform that could have given attackers access to users’ personal information, speech histories, and Amazon accounts. In a blog post, they describe the way in which an attack might have been carried out against a user, beginning with a malicious link pointing to a page with code-injection capabilities.


1,400 Data Breaches at HSE Included Patient Photos and Medical Files

Permalink - Posted on 2020-08-13 17:00

The number of breaches showed a sharp rise between 2018, when 556 incidents were recorded, and last year when there were 833. Across the country, there were 1,389 data breaches reported, with over a third of them recorded in the Dublin North East HSE region.


Half of IT Teams Can't Fully Utilize Cloud Security Solutions Due to Understaffing

Permalink - Posted on 2020-08-12 16:00

Nearly 90% of the organizations surveyed are already using or researching the use of a CASB, 50% don’t have the staffing to fully utilize cloud security solutions, which could be remediated by working with top CASB vendors.


30% of Businesses Globally Have Seen an Increase in Attacks as a Result of Pandemic

Permalink - Posted on 2020-08-12 16:00

This is according to C-Level IT and security execs at global businesses, 64% of which believe their organization is more likely to experience a data breach due to COVID-19.


Almost 20,000 Patients Affected by Owens Ear Center Ransomware Attack

Permalink - Posted on 2020-08-12 16:00

Owens Ear Center in Fort Worth, TX, suffered a ransomware attack on May 28, 2020 in which patient information was encrypted. The computer systems that were encrypted contained patients’ medical records, which included information such as names, addresses, dates of birth, health insurance information, health information, and Social Security numbers.


Pace Center for Girls' Donor Data Breached

Permalink - Posted on 2020-08-12 16:00

A non-profit social services agency in Florida has been hit by a data breach after a security incident affected one of its outside vendors. Pace Center for Girls has issued a warning to its supporters after the organization discovered some of its data had been affected by a May security breach at Blackbaud.


Incident Response Exercises Not Taken Seriously by Business Leaders

Permalink - Posted on 2020-08-12 16:00

Only 2% of organizations have run incident response scenarios related to the pandemic response. According to research by Immersive Labs of 402 organizations, nearly 40% are not fully confident in their teams training to handle a data breach if one occurred, and 65% of exercises consist of reviewing PowerPoint slides.


Imperial Valley College Hit with Ransomware Attack

Permalink - Posted on 2020-08-12 16:00

A ransomware attack unleashed on Imperial Valley College’s computer system on Aug. 6 brought down critical systems that remained offline and will likely continue until further notice, a college spokesperson confirmed.


Sensitive Data of Cyber Security Firm and Other Businesses Leaked Online

Permalink - Posted on 2020-08-12 16:00

In addition to the cyber security firm, the 343GB worth of leaked data belongs to universities, an insurance firm, non-profit, and public limited firms.


BEC Scam Costs Trading Firm Virtu Financial $6.9 Million

Permalink - Posted on 2020-08-12 16:00

High-speed trading firm Virtu Financial says it lost $6.9 million in a business email compromise scam in May. The company is now suing its insurer for failure to cover the loss, according to legal documents filed in the case.


Nearly 70% of Fraud Phishing Attacks are Directed at Canada

Permalink - Posted on 2020-08-11 17:00

For the fifth quarter in a row, the Great White North was ravaged by fraud-based phishing attacks, making it the most frequently targeted country by far, absorbing 66 per cent of all attacks, according to RSA’s Quarterly Fraud Report for Q1. The next most commonly targeted country, the U.S., accounted for only seven per cent.


Data Breach at Illinois Healthcare System

Permalink - Posted on 2020-08-11 17:00

An investigation was launched by the Freeport-based healthcare provider after it transpired that the email accounts of a number of employees had been compromised. According to a notice issued by FHN, the alarm was raised when suspicious activity was spotted within the compromised email accounts. FHN responded by securing the accounts and hiring a "leading computer forensic firm" to determine what had occurred.


Avaddon Ransomware Launches Data Leak Site to Extort Victims

Permalink - Posted on 2020-08-10 16:00

Avaddon ransomware is the latest cybercrime operation to launch a data leak site that will be used to publish the stolen data of victims who do not pay a ransom demand.


Nearly Half of Dutch Listed Companies Do Not Provide Information on Cyber Security in Annual Report

Permalink - Posted on 2020-08-10 16:00

The Cyber Security Annual Report (CSAR) by the Erasmus School of Law in Rotterdam shows that nearly half of those companies do not mention any specific measures taken on the cybersecurity front, thereby keeping investors in the dark. Only Ahold (Giant Food Stores, Stop & Shop, Peapod), paint and coatings company AkzoNobel, commercial real estate company Unibail-Rodamco-Westfield and private banking firm Van Lanschot provided six or more cybersecurity measures in place in their annual reports. Amongst those were the appointment of a CISO and providing employees with security awareness training (SAT).


U.N. Reports Sharp Increase in Cybercrime During Pandemic

Permalink - Posted on 2020-08-10 16:00

A 350% increase in phishing websites was reported in the first quarter of the year, many targeting hospitals and health care systems and hindering their work responding to the COVID-19 pandemic.


DDoS Attacks Cresting Amid Pandemic

Permalink - Posted on 2020-08-10 16:00

According to the latest Kaspersky quarterly DDoS attacks report, DDoS events were three times more frequent in comparison to the second quarter last year (up 217 percent), and were up 30 percent from the number of DDoS attacks observed in the first quarter of 2020.


Children's Hospital Colorado Suffers Phishing Attack

Permalink - Posted on 2020-08-10 16:00

Credentials to access the account were obtained when an employee responded to a phishing email. The phishing attack was identified by the hospital on June 22, 2020 and the account was immediately secured. A review of the emails and email attachments in the account revealed they contained patient names, zip codes, dates of service, medical record numbers, and clinical diagnosis information.


Ransomware Threatens Production of 300 Ventilators 0er Day

Permalink - Posted on 2020-08-10 16:00

The FDA-approved Coronavirus ventilator manufacturer Boyce Technologies has been targeted by ransomware launched by the DoppelPaymer gang, who are threatening to leak data from the company. Cointelegraph has viewed the DoppelPaymer blog, where the gang lists example files of the data stolen during the attack, including sales and purchase orders, assignment forms, among others.


Travelex Forced into Administration After Ransomware Attack

Permalink - Posted on 2020-08-10 16:00

PwC announced late last week that it had been appointed join administrators of the currency exchange business. Despite operating over 1000 ATMs and 1000+ stores globally, and providing services for banks, supermarkets and travel agencies in over 60 countries, the firm was forced to cut over 1300 jobs as part of the restructuring.


SPARTOO: Sanction of 250,000 Euros and Injunction Under Penalty to Comply with the GDPR

Permalink - Posted on 2020-08-07 16:00

On the basis of the investigations carried out, the restricted committee – the CNIL body responsible for imposing sanctions – considered that the company had failed to meet several obligations provided for by the GDPR.


Intel Investigating Data Leak of Technical Documents, Tools

Permalink - Posted on 2020-08-07 16:00

Intel is investigating reports that a claimed hacker has leaked 20GB of data coming from the chip giant, which appear to be related to source code and developer documents and tools.


Blackbaud Breach Impacts National Trust Volunteers

Permalink - Posted on 2020-08-07 16:00

Britain's National Trust has warned volunteers of a data breach linked to a cyber-attack on US cloud computing and software provider Blackbaud in May. The charity and membership organization for heritage conservation in England, Wales, and Northern Ireland has been contacting volunteers by email to notify them of the breach. National Trust data exposed as a result of the ransomware attack on Blackbaud belongs to past and present volunteers and applicants for the trust's volunteer program.


Nearly 50% of All Smartphones Affected by Qualcomm Snapdragon Bugs

Permalink - Posted on 2020-08-07 16:00

Several security vulnerabilities found in Qualcomm's Snapdragon chip Digital Signal Processor (DSP) chip could allow attackers to take control of more than 40% of all smartphones without user interaction, spy on their users, and create un-removable malware capable of evading detection. DSPs are system-on-chip units are used for audio signal and digital image processing, and telecommunications, in consumer electronics including TVs and mobile devices.


25% of IT Workers Don't Enforce Security Policies

Permalink - Posted on 2020-08-06 16:00

14% of IT workers are consumed with Identity and Access Management (IAM), spending at least an hour per day on routine IAM tasks, according to 1Password. IAM continues to be a significant productivity bog for IT and employees alike, with 57% of IT workers resetting employee passwords up to five times per week, and 15% doing so at least 21 times per week.


Class Action Proposed for Victims of Central Health Privacy Breach

Permalink - Posted on 2020-08-06 16:00

St. John’s lawyers Bob Buckingham and Eli Baker say they will launch a class-action lawsuit in relation to a recent privacy breach by a former employee of Central Health. Last week, officials with the health authority said an employee had inappropriately accessed the health records of 240 people online over a two-year span. Central Health was informed of a potential privacy breach July 14 and immediately undertook an investigation, they said.


Court Approves Class Action Settlement in RE: YAHOO! Inc.

Permalink - Posted on 2020-08-06 16:00

Yahoo!’s data breach class action is finally being put to rest. Last month, the Northern District of California approved the proposed $117.5M settlement to resolve the claims of approximately 194 million class members in In re Yahoo! Inc. Customer Data Sec. Breach Litig., No. 16-MD-02752-LHK, 2020 U.S. Dist. LEXIS 129939 (N.D. Cal. July 22, 2020). This approval did not come easily. During several rounds before the Court to obtain settlement approval, the Court pointed out that while “other data breach cases focus on one data breach, the instant case involves multiple data breaches over a period of five years, each of which Yahoo failed to timely disclose.”


Insecure Satellite Internet Is Threatening Ship and Plane Safety

Permalink - Posted on 2020-08-06 16:00

While researchers such as Adam Laurie and Leonardo Nve demonstrated the insecurity of satellite Internet in 2009 and 2010, respectively, Pavur has examined the communications at scale, with the interception of more than 4 terabytes of data from the 18 satellites he tapped. He has also analyzed newer protocols, such as Generic Stream Encapsulation and complex modulations including 32-Ary Amplitude and Phase Shift Keying (APSK). At the same time, he has brought down the interception cost of those new protocols from as much as $50,000 to about $300.


Half of Orgs Regularly Push Vulnerable Code in App Security Programs

Permalink - Posted on 2020-08-06 16:00

Nearly half (48%) of organizations regularly push vulnerable code into production in their application security programs due to time pressures, while 31% do so occasionally, according to a new report published by Synopsys entitled Modern Application Development Security. As a result, 60% have reported production applications exploited by OWASP top-10 vulnerabilities in the past 12 months.


Hacked Data Broker Accounts Fueled Phony COVID Loans, Unemployment Claims

Permalink - Posted on 2020-08-06 16:00

A group of thieves thought to be responsible for collecting millions in fraudulent small business loans and unemployment insurance benefits from COVID-19 economic relief efforts gathered personal data on people and businesses they were impersonating by leveraging several compromised accounts at a little-known U.S. consumer data broker, KrebsOnSecurity has learned.


CDP and Two Other Organisations Fned for Data Privacy Breach

Permalink - Posted on 2020-08-06 16:00

The Central Depository (CDP) and two other organisations have been fined a total of $47,000 for breaching data privacy laws. CDP received the biggest fine of $32,000 after it mailed dividend cheques to outdated addresses, putting more than 200 account holders at risk of having their personal data disclosed.


69,777 Patients Impacted by Allergy and Asthma Clinic of Fort Worth Hacking Incident

Permalink - Posted on 2020-08-06 16:00

Allergy and Asthma Clinic of Fort Worth has discovered an unauthorized individual gained access to its computer systems and potentially obtained patients’ billing information. The breach was detected on June 4, 2020 and steps were immediately taken to prevent further unauthorized access. The breach investigation revealed the hacker gained access to the network on May 20, 2020.


2019 Breach Leads to $80 Million Fine for Capital One

Permalink - Posted on 2020-08-06 16:00

In the data breach, more than 100 million credit applications were accessed by malicious actors. The office said that Capital One deserved credit for its victim notification and remediation actions following the breach.


Dutch Hackers Found a Simple Way to Mess with Traffic Lights

Permalink - Posted on 2020-08-06 16:00

By reverse engineering apps intended for cyclists, security researchers found they could cause delays in at least 10 cities from anywhere in the world.


Australian Universities Investigate Online Exam Tool Data Breach

Permalink - Posted on 2020-08-06 16:00

Australian universities using the ProctorU online exam monitoring tool are included in a data breach affecting 444,000 users of the platform.


Canon Hit by Maze Ransomware Attack, 10TB Data Allegedly Stolen

Permalink - Posted on 2020-08-05 16:00

Canon has suffered a ransomware attack that impacts numerous services, including Canon's email, Microsoft Teams, USA website, and other internal applications.


Porn Clip Disrupts Virtual Court Hearing for Alleged Twitter Hacker

Permalink - Posted on 2020-08-05 16:00

Perhaps fittingly, a Web-streamed court hearing for the 17-year-old alleged mastermind of the July 15 mass hack against Twitter was cut short this morning after mischief makers injected a pornographic video clip into the proceeding.


Colorado City Pays $45,000 Ransom After Cyber Attack

Permalink - Posted on 2020-08-05 16:00

Lafayette, Colorado, officials announced Tuesday the city’s computer systems were hacked and they were forced to pay a ransom to regain access.


Hacker Leaks Passwords for 900+ Enterprise VPN Servers

Permalink - Posted on 2020-08-05 16:00

A hacker has published today a list of plaintext usernames and passwords, along with IP addresses for more than 900 Pulse Secure VPN enterprise servers. ZDNet, which obtained a copy of this list with the help of threat intelligence firm KELA, verified its authenticity with multiple sources in the cyber-security community.


Many Companies Have Not Taken Basic Steps to Protect Their Remote Workforce

Permalink - Posted on 2020-08-05 16:00

AT&T’s study of 800 cybersecurity professionals across the UK, France and Germany shows that while 88% initially felt well prepared for the migration, 55% now believe widespread remote working is making their companies more or much more vulnerable to cyberattacks. This figure jumps to 70% for large businesses with over 5,000 employees.


Redcar Cyber Attack Vost Council £10.4m

Permalink - Posted on 2020-08-05 16:00

About 135,000 people were without online public services after Redcar and Cleveland's website and computers were targeted in February.


UberEats Data Leaked on the Dark Web

Permalink - Posted on 2020-08-05 16:00

Security researchers from threat intelligence firm Cyble have discovered user records of American online food ordering and delivery platform UberEats on DarkWeb.


British Dental Association Members Targeted by Hackers

Permalink - Posted on 2020-08-04 16:00

Dentists' bank account numbers and correspondence with a trade body are feared to have been stolen by hackers. The British Dental Association has told its members that it is still not sure exactly what was accessed in a breach on 30 July. A spokeswoman told the BBC it was possible that information about patients was exposed, but was vague about the potential context. The BDA's website has been offline since the attack.


Second Data Breach at Kentucky Unemployment System

Permalink - Posted on 2020-08-04 16:00

The reporter of the alleged breach logged on to the Office of Unemployment Insurance's (OUI) online system on July 27 to work on their unemployment application. While trying to enter their own details, the claimant was able to view information about another claimant's former employer and health.


Michigan's Largest Healthcare Provider Phished Again

Permalink - Posted on 2020-08-04 16:00

Michigan's largest healthcare provider has warned around 6,000 patients that their data may have been exposed following a cyber-attack. The cybersecurity incident is the second phishing-related data breach to befall Beaumont Health in recent months.


Garmin Pays Up to Evil Corp After Ransomware Attack

Permalink - Posted on 2020-08-04 16:00

The ransom for the decryptor key in the WastedLocker attack could have topped $10 million, sources said.


Robocall Legal Advocate Leaks Customer Data

Permalink - Posted on 2020-08-04 16:00

A California company that helps telemarketing firms avoid getting sued for violating a federal law that seeks to curb robocalls has leaked the phone numbers, email addresses and passwords of all its customers, as well as the mobile phone numbers and other data on people who have hired lawyers to go after telemarketers.


AU: Aged Care Operator's Sensitive Data Stolen in Foreign Cyber Attack

Permalink - Posted on 2020-08-03 15:00

ASX-listed aged care operator Regis has been hit by an international cyber attack that has led to the release of sensitive personal data, adding to the woes of the company which is battling a coronavirus outbreak at one of its Melbourne centres. The $400 million operator told investors on Monday an "overseas third party" was responsible for an attack on its operations resulting in data being copied from its servers and publicly released.


LifeLabs Agrees to Comply with Privacy Commissioners' Orders

Permalink - Posted on 2020-08-03 15:00

From the Office of the Information & Privacy Commissioner of British Columbia, this press release below. This is the second time in the past few months where we have seen an entity really fight an order to release a forensics report on a breach.


Zello Resets All User Passwords After Data Breach

Permalink - Posted on 2020-08-03 15:00

The push-to-talk app, Zello, has disclosed a data breach that revealed user's email addresses and hashed passwords after discovering unauthorized activity on their systems.


Hackers Cause Telstra Outages in Australia's Eastern States with Cyber Attack

Permalink - Posted on 2020-08-03 15:00

Hackers have carried out a “malicious” cyber attack on Telstra, creating connectivity issues for some home internet users. Telstra reported the denial of service attack on its servers on Sunday which led to widespread internet outages in Australia’s eastern states.


Havenly Discloses Data Breach After 1.3M Accounts Leaked Online

Permalink - Posted on 2020-08-03 15:00

Havenly, a US-based interior design web site, has disclosed a data breach after a hacker posted a database containing 1.3 million user records for free on a hacker forum.


2gether Hacked: €1.2m in Cryptocurrency Stolen

Permalink - Posted on 2020-08-03 15:00

The unknown threat actors reportedly behind the attack made off with €1.183 million in cryptocurrency in investment accounts, which equates to 26.79% of overall funds.


After Ransomware Attack, Legal Services Company Epiq Faces California Privacy Lawsuit

Permalink - Posted on 2020-07-31 16:00

Lawyers for Epiq Systems Inc have removed a lawsuit to federal court that alleges the legal services provider failed to adequately protect personal information under California’s consumer privacy law.


Travel Giant CWT pays $4.5 Million Ransom to Cyber Criminals

Permalink - Posted on 2020-07-31 16:00

U.S. travel management firm CWT paid $4.5 million this week to hackers who stole reams of sensitive corporate files and said they had knocked 30,000 computers offline, according to a record of the ransom negotiations seen by Reuters.


Canadian MSP Discloses Data Breach, Failed Ransomware Attack

Permalink - Posted on 2020-07-31 16:00

Managed service provider Pivot Technology Solutions has disclosed that it was the victim of a ransomware attack that resulted with sensitive information being accessed by the hackers. The incident occurred last month and hit impacted data held by the parent company and its subsidiaries and/or former and current affiliates.


Infosec Researchers Cause 3D Printers to Catch Fire Due to Vulnerabilty

Permalink - Posted on 2020-07-31 16:00

Some 3D printers can be flashed with firmware updates downloaded directly from the internet – and an infosec research firm says it has discovered a way to spoof those updates and potentially make the printer catch fire. Research from the appropriately named Coalfire biz claimed printers from Chinese company Flashforge could be abused through crafted updates that bypass safety features built into the devices' firmware.


Personal Data of 24k Students Gets Posted on GTU Website

Permalink - Posted on 2020-07-31 16:00

Gujarat Technological University (GTU) may be running a cybersecurity centre and helping police train for the same, but that does not keep it safe from hackers. In a glaring lapse, personal data of as many as 24,000 students who took the pre-test for an online exam on Thursday was allegedly leaked or stolen and put up on the varsity’s website.


IndieFlix Streaming Leaves Thousands of Confidential Files and Personal Info. Exposed on Public Server

Permalink - Posted on 2020-07-31 16:00

The CyberNews research team discovered an unsecured data bucket on a publicly accessible Amazon Simple Storage (S3) server containing confidential data belonging to IndieFlix. IndieFlix is a US-based entertainment company offering a subscription-based online video streaming service that mainly specializes in independent titles, including feature films, shorts, and documentaries.


India Found Cyber Security Lapses at National Payments Corp in 2019

Permalink - Posted on 2020-07-30 17:00

A government audit of India’s flagship payments processor last year found more than 40 security vulnerabilities including several it called “critical” and “high” risk, according to an internal government document seen by Reuters.


Dussmann Group Data Leaked After Ransomware Attack

Permalink - Posted on 2020-07-30 17:00

German giant Dussmann Group has become the latest company to fall victim to a ransomware-data breach attack, after hackers began posting stolen files to the dark web. The facilities management multinational, which employs over 66,000 staff worldwide and makes billions of euros in sales annually, appears to have been struck by the Nefilim variant.


New Zealand: Police Name Firm That Lost Information on Crime Reports to Hackers

Permalink - Posted on 2020-07-30 17:00

Police are axing their contract with Auckland research firm Gravitas after information they sent the firm about police complainants was lost in a Nigerian hack. Assistant commissioner Jevon McSkimming announced earlier this month – without naming the company – that Gravitas had alerted Police to the data breach and had also reported it as “a crime” which Police were investigating. Police had now decided to terminate their contract with Gravitas after they had been “unable to get assurances that our information has been kept properly secure”, Police said in a statement on Thursday.


Athens ISD Pays $50K for Release of Data in Ransomware Attack

Permalink - Posted on 2020-07-30 17:00

Athens ISD Board of Trustees has agreed to pay a $50,000 ransom for school data that was taken in a criminal ransomware attack. The attack targeted data stored on district servers, backup systems, and hundreds of computers. As a result, access to data has been blocked including teacher communications, student schedules, grades, and assignments.


GTU Students Complain of Massive Data Leak After Mock Test

Permalink - Posted on 2020-07-30 17:00

The students of Gujarat Technological University have complained of massive data leaks during online pre-check trial/mock tests. The test was conducted by the university on July 28. Students allege that their personal details including ID proofs were leaked on the university's website.


Vermont Tax Department Exposed 3 Years Worth of Tax Return Info.

Permalink - Posted on 2020-07-30 17:00

The Vermont Department of Taxes today disclosed that taxpayers' private information was exposed because of a security issue affecting its online filing site discovered on July 2, 2020. The data breach affected all Vermonters who electronically filed Property Transfer Tax returns using the tax department's site between February 2017 and July 2020.


Connecticut Insurance Dept. Reminds Licensees to Comply with Data Security Law

Permalink - Posted on 2020-07-30 17:00

On July 20, 2020, the Connecticut Insurance Department issued a bulletin to licensees reminding them that the Connecticut Insurance Data Security Law (“Act”) becomes effective on October 1, 2020 and providing guidance on compliance. The Act requires “all persons who are licensed, authorized to operate or registered, or required to be licensed, authorized or registered pursuant to the insurance laws of Connecticut” to “develop, implement and maintain a comprehensive written information security program (“ISP”) that complies with” the Act “not later than October 1, 2020.” The Act generally applies to domestic insurers and health care centers, with some exemptions.


Researchers Report Mobile Operating Systems Bugs Have Surged 50%

Permalink - Posted on 2020-07-30 17:00

Skybox Security predicts that 2020 will end with 20,000 reported vulnerabilities, as compared to 17,306 in 2019. Till mid-2020, 9000 vulnerabilities have been reported.


Personal Information of 34 Lakh Dunzo Users Leaked

Permalink - Posted on 2020-07-30 17:00

In an online blog post on Wednesday, the Bengaluru-based company said the “servers of a third party we work with were compromised.” This allowed the attacker to get unauthorized access and breach the company's database, which included phone numbers, email addresses, the users' last known location, phone type, and last login dates.


10,000 Patients Affected by Data Breach at University of Utah Health

Permalink - Posted on 2020-07-30 17:00

The health system stated in a press release on June 5 that a breach occurred between April 6 and May 22. A hacker gained unauthorized access to some of the U of U health employees’ email accounts as part of a phishing scheme. In the press release, the U did not specify how many employees were affected.


In Latest Crypto Wallet Breach, Ledger Users Have Data Stolen

Permalink - Posted on 2020-07-29 16:00

Ledger has acknowledged that hackers also gained access to 9500 Phone numbers among other data.


Business Giant Dussmann Group's Data Leaked After Ransomware Attack

Permalink - Posted on 2020-07-29 16:00

The Nefilim ransomware operation has begun to publish unencrypted files stolen from a Dussmann Group subsidiary during a recent attack. The Dussmann Group is the largest multi-service provider in Germany with subsidiaries focusing on facility management, corporate childcare, nursing and care for the elderly, and business systems solutions, including HVAC, electrical work, and elevators. The company has confirmed to BleepingComputer that one of their subsidiaries, Dresdner Kühlanlagenbau GmbH (DKA), recently suffered a ransomware attack where data was stolen.


Michigan Online Bar Exam Temporarily Taken Down by Cyber Attack

Permalink - Posted on 2020-07-29 16:00

ExamSoft, one of the three vendors offering the exam that certifies potential attorneys, said the test had been hit by a distributed denial of service (DDoS) attack, which involves a hacker or group attempting to take down a server by overwhelming it with traffic.


Today's "Mega" Data Breaches Now Cost Companies $392 Million to Recover From

Permalink - Posted on 2020-07-29 16:00

If an organization is acting as a data controller for between 40 and 50 million records, the cost on average is $364 million, and organizations could face a cost of up to $175 per consumer record involved in data theft or leaks.


Alcohol Delivery Service Drizly Confirms Data Breach

Permalink - Posted on 2020-07-29 16:00

As many as 2.5 million Drizly accounts are believed to have been stolen. TechCrunch obtained a portion of the data, including several accounts of Drizly staff members. We verified the data against public records. The portion of data we obtained also contains user phone numbers, IP addresses and geolocation data associated with the user’s billing address.


Global Firms Delayed Key Security Projects as Pandemic Struck

Permalink - Posted on 2020-07-29 16:00

Over 90% of global organizations were forced to delay key security projects as they transitioned to remote working earlier this year and many stopped patching, exposing themselves to cyber-threats, according to Tanium.


IBM Security 2020 Cost of Data Breach Report Shows 10% Annual Increase in Healthcare Data Breach Costs

Permalink - Posted on 2020-07-29 16:00

The 2020 Cost of Data Breach Report from IBM Security has been released and reveals there has been a slight reduction in global data breach costs, falling to $3.86 million per breach from $3.92 million in 2019 – A reduction of 1.5%. There was considerable variation in data breach costs in different regions and industries. Organizations in the United States faced the highest data breach costs, with a typical breach costing $8.64 million, up 5.5% from 2019.


Security Teams Increasingly Stressed Due to Lack of Proper Tools, Executive Support

Permalink - Posted on 2020-07-29 16:00

93% of security professionals lack the tools to detect known security threats, and 92% state they are still in need of the appropriate preventative solutions to close current security gaps, according to LogRhythm.


OCR Imposes $1 Million HIPAA Penalty on Lifespan for Lack of Encryption and Other HIPAA Failures

Permalink - Posted on 2020-07-28 17:00

Lifespan is a not-for-profit health system based in Rhode Island that has many healthcare provider affiliates in the state. On April 21, 2017, a breach report was filed with OCR by Lifespan Corporation, the parent company and business associate of Lifespan ACE, about the theft of an unencrypted laptop computer on February 25, 2017.


National Cardiovascular Partners Email Hack Impacts 78 Thousand Patients

Permalink - Posted on 2020-07-28 17:00

An investigation led with support from an outside cybersecurity forensics firm determined the account contained patient information, including names, contact information, and a host of other sensitive data that varied by patient.


Cosmetics Giant Avon Leaks 19 Million Records

Permalink - Posted on 2020-07-28 17:00

Researchers at SafetyDetectives led by Anurag Sen told Infosecurity that they found the Elasticsearch database on an Azure server publicly exposed with no password protection or encryption.


Promo.com Discloses Data Breach After 22 Million User Records Leaked Online

Permalink - Posted on 2020-07-28 17:00

In a report shared with BleepingComputer by cybersecurity intelligence firm CloudSEK, a well-known seller of data breaches posted a database containing 22.1 million user records on a hacker forum. This data contains users email addresses, names, genders, geographic location, and for 2.6 million of the users, their hashed passwords.


SEI Investments Customer Data Exposed in Ransomware Attack on Vendor

Permalink - Posted on 2020-07-28 17:00

A May ransomware attack on M.J. Brunner Inc. exposed data pertaining to clients of SEI Investments Co., among them money managers like Pacific Investment Management Co. (Pimco), Fortress Investment Group LLC and Centerbridge Partners.


Over Half of Universities Suffered Data Breach in Past Year

Permalink - Posted on 2020-07-28 17:00

Over half (54%) of UK universities reported a data breach to the regulator in the past 12 months, with an average of two reports each, according to new Freedom of Information (FOI) data collected by Redscan.


Bank of Ireland Fined €1.66 Million After Being Tricked by Fraudster

Permalink - Posted on 2020-07-28 17:00

One of Ireland’s largest banks, Bank of Ireland, has been fined almost €1.7 million after regulators discovered it had failed to inform financial regulators and the police after a fraudster tricked them into transferring funds from a client’s account.


Hedge Funds Client Data Exposed in Massive Ransomware Attack

Permalink - Posted on 2020-07-27 16:00

Investors in hedge fund Angelo Gordon received an unpleasant letter advising them that a "data security incident" had taken place due to a breach of a third-party vendor used by the fund's external fund administrator, SEI Global Fund Services.


Sheffield Hallam University Confirms Blackbaud-Linked Data Breach

Permalink - Posted on 2020-07-27 16:00

University secretary Michaela Boryslawskyj said in an email to members of its community that it was notified by Blackbaud that Sheffield Hallam and a number of other universities had been affected by the incident. As detailed in the Sheffield Star, the email said Blackbaud’s systems were hacked and personal information relating to its alumni and other members of the community were stolen on Thursday July 16 2020.


Garmin's Outage, Ransomware Attack Response Lacking as Earnings Loom

Permalink - Posted on 2020-07-27 16:00

Garmin's response to a cyberattack has been less than stellar, but earnings loom and Wall Street will want answers just as much as customers do.


Source Code from Dozens of Companies Leaked Online

Permalink - Posted on 2020-07-27 16:00

A public repository of leaked code includes big names like Microsoft, Adobe, Lenovo, AMD, Qualcomm, Motorola, Hisilicon (owned by Huawei), Mediatek, GE Appliances, Nintendo, Roblox, Disney, Johnson Controls; and the list keeps growing.


Tech Unicorn Dave Admits to Security Breach Impacting 7.5 Million Users

Permalink - Posted on 2020-07-27 16:00

Digital banking app and tech unicorn Dave.com confirmed today a security breach after a hacker published the details of 7,516,625 users on a public forum. In an email to ZDNet today, Dave said the security breach originated on the network of a former business partner, Waydev, an analytics platform used by engineering teams.


Adif Hit by Cyber Attack

Permalink - Posted on 2020-07-24 16:00

Spanish infrastructure manager Adif has been hit by a cyberattack in which hackers have claimed to have taken 800GB of data including correspondence and contracts.


Keizer Discloses Costs of Recovering from Recent Ransomware Attack

Permalink - Posted on 2020-07-24 16:00

When Keizer, Oregon was attacked in June with ransomware, the attackers demanded $48,000, and the city paid.


North Carolina Healthcare Provider Fined $25,000 for HIPAA Noncompliance

Permalink - Posted on 2020-07-24 16:00

Washington, NC-based Metropolitan Community Health Services is a Federally Qualified Health Center that provides integrated medical, dental, behavioral health & pharmacy services for adults and children. Operating as Agape Health Services, Metro provides discounted medical services to the underserved population in rural North Carolina. Metropolitan Community Health Services has around 43 employees and serves 3,100 patients each year.


U.S. Law Firm Sued Over Fraudulent Wire Transfer from Phising Scam

Permalink - Posted on 2020-07-24 16:00

American international law firm Holland & Knight is facing a lawsuit over a fraudulent wire transfer that saw criminals make off with more than $3m. According to the suit, the law firm was hired by two foundations to sell some stock and carry out a merger plan related to the sale. However, a fraudster was able to steal the proceeds from the sale after intercepting emails from the firm and impersonating the stock seller. Posing as the seller in an email, the fraudster asked Holland & Knight to wire $3.1m from the stock buyer to a fraudulent account identified as Wemakos Furniture Co. Limited.


Blackbaud Breach Hits Nine More Universities

Permalink - Posted on 2020-07-24 16:00

A combined ransomware and data breach attack on a US cloud computing provider in May has affected many more universities and non-profits than at first thought.


Garmin Services and Production Go Down After Ransomware Attack

Permalink - Posted on 2020-07-24 16:00

The company is currently planning a multi-day maintenance window to deal with the attack's aftermath, which includes shutting down its official website, the Garmin Connect user data-syncing service, Garmin's aviation database services, and even some production lines in Asia.


278k Instacart Customer Records Reportedly Hacked, Includes Order History

Permalink - Posted on 2020-07-23 16:00

Some 278,531 Instacart customer records have reportedly been hacked, and are for sale on the dark web. The data includes names, email addresses, the last four digits of credit card numbers, and order histories.


Over 1500 Exposed Online Databases Wiped by 'Meow' Attacker

Permalink - Posted on 2020-07-23 16:00

According to a Shodan search, there was 1269 impacted Elasticsearch servers globally and 276 MongoDB instances hit buy the “meow” bot at the time of writing. It’s unclear whether the attacker has first stolen victims’ data or if this is a purely destructive campaign.


Florida Tax Office Blames Data Breach on Virus

Permalink - Posted on 2020-07-23 16:00

A Florida Tax Collector's Office has blamed malware found on an employee's computer for a data breach that affected around 450,000 residents of Polk County.


More Than Half of European Citizens Worry About Malicious Use of Their Online Data

Permalink - Posted on 2020-07-23 16:00

According to the European Union Agency for Fundamental Rights (FRA), 55% of European citizens are concerned about their online data being accessed by cyber criminals and fraudsters.


GEDmatch Confirms Data Breach After Users' DNA Profile Data Made Available to Police

Permalink - Posted on 2020-07-23 16:00

GEDmatch, the DNA analysis site that police used to catch the so-called Golden State Killer, was pulled briefly offline on Sunday while its parent company investigated how its users’ DNA profile data apparently became available to law enforcement searches. The company confirmed Wednesday that the permissions change was caused by a breach.


New York Charges Big Title Insurer First American Over Security Gap

Permalink - Posted on 2020-07-23 16:00

First American Financial Corp (FAF.N), the second largest U.S. title insurer, was charged on Wednesday by New York’s top financial regulator with exposing millions of documents with sensitive consumer information, in the regulator’s first cybersecurity enforcement case.


COVID-19-Related Attacks Exploded in the First Half of 2020

Permalink - Posted on 2020-07-23 16:00

A midyear report on cyber threats finds that COVID-19-related attacks grew from fewer than 5,000 per week in February to more than 200,000 per week in late April. And those attacks didn't mark the end of threats, as all cyberattacks increased in number by 34% in May and June compared with March and April.


Password Reuse to Blame for Fifth of Account Takeovers

Permalink - Posted on 2020-07-23 16:00

Email account takeover (ATO) attacks often last for over a week and result from employees reusing passwords across multiple sites, according to new research from Barracuda Networks.


Nearly Half of Employees Make Mistakes with Cyber Security Repercussions

Permalink - Posted on 2020-07-22 16:00

Nearly half (47%) of employees cited distraction as a top reason for falling for a phishing scam. This was closely followed by the fact that the email looked legitimate (43%), with 41% saying the phishing email looked like it came from a senior executive or a well-known brand.


20,000+ New Vulnerability Reports Predicted for 2020, Shattering Previous Records

Permalink - Posted on 2020-07-22 16:00

Over 9,000 new vulnerabilities have been reported in the first six months of 2020, and we are on track to see more than 20,000 new vulnerability reports this year — a new record, Skybox Security reveals.


Disabled Delawareans' Personal Data Ends Up in Student Project

Permalink - Posted on 2020-07-22 16:00

The breach occurred when four students from the University of Delaware contacted a Delaware Division of Developmental Disabilities Services (DDDS) provider. The students reached out to request data for a project that aimed to use geo-mapping to detect gaps in the services received by DDDS recipients. A DDDS employee who emailed out information in response to the students' request neglected to anonymize sensitive data. Their slip-up caused the private information of 350 recipients of DDDS support to be exposed. The data breach was only discovered when the unwitting students included the sensitive data in a presentation on their senior project, given via Zoom on May 8.


University of York Investigating Data Theft Incident

Permalink - Posted on 2020-07-22 16:00

As outlined in a statement on the university’s website, the source of the breach was an attack on a third-party service provider, tech firm Blackbaud, which fell victim to ransomware in May 2020. The University of York was first informed of the incident on July 16.


Online Poker Operator Hit by DDoS Attack on Opening Day of WSOP Event

Permalink - Posted on 2020-07-22 16:00

GGPoker, which mainly serves the Asian market but has customers across Europe and America, claims that it migrated servers to a new cloud data center on July 16 to improve performance and account for increased load during the tournament. However, it claims, “the tech team made a mistake of not shielding this server with our DDoS protection service after the migration”.


Public's Info. Compromised in Cyber Attack on Cooke County, TX

Permalink - Posted on 2020-07-21 16:00

A cyberattack on the Cooke County Sheriff’s Office compromised people’s personal information, County Judge Jason Brinkley said. A press release issued Monday, July 20, states a ransomware attack on the county’s information system for the CCSO on July 4 resulted in a data breach of personal identification information.


Companies with Poor Privacy Practices Are 80% More Apt to Suffer Data Breach

Permalink - Posted on 2020-07-21 16:00

In addition to poor privacy policy resulting in an 80% possible data breach, companies with the lowest privacy scores lost 600% more records than companies at the other end of the scale, with the highest scores.


Major Security Flaws Found in South Korea Quarantine App

Permalink - Posted on 2020-07-21 16:00

The defects, which were confirmed by The New York Times and have now been fixed, could have let attackers retrieve the names, real-time locations and other details of people in quarantine. The flaws could also have allowed hackers to tamper with data to make it look as if users of the app were either violating quarantine orders or still in quarantine despite being somewhere else.


Genealogy Software Maker Exposes Data on 60,000 Users

Permalink - Posted on 2020-07-21 16:00

A US tech company that manages popular family tree software has exposed tens of thousands of its users’ personal information online via a misconfigured cloud server, according to researchers.


Lorien Health Services Discloses Ransomware Attack Affecting Nearly 50,000

Permalink - Posted on 2020-07-21 16:00

Lorien Health Services in Maryland announced that it was the victim of a ransomware incident in early June. Data was stolen and then encrypted during the incident. Responsible for the attack are Netwalker ransomware operators, who leaked the information after Lorien refused to pay the ransom demand.


Fast Chargers Can Be Modified to Damage Mobile Devices

Permalink - Posted on 2020-07-20 16:00

Users’ mobile devices can also be implanted with malware with BadPower attack capabilities and be the infection agent for every fast charger that is connected to it.


Two More Cyber Attacks Hit Israel's Water System

Permalink - Posted on 2020-07-20 16:00

The first attack hit agricultural water pumps in upper Galilee, while the second one hit water pumps in the central province of Mateh Yehuda, local media reported last week.


The Privacy Breach That Exposed Sensitive Details of WA's Virus Fight

Permalink - Posted on 2020-07-20 16:00

One of Western Australia's biggest privacy breaches, which involves the interception of thousands of State Government communications, is under investigation. Nine News revealed on Monday evening that the most sensitive information to be hacked and posted to a public website relates to the management of the Covid-19 crisis in WA.


70% of Companies Have Suffered a Public Cloud Data Breach in the Past Year

Permalink - Posted on 2020-07-20 16:00

A recent study conducted by Sophos has revealed 96% of companies are concerned about the state of their public cloud security. There appears to be a valid cause for that concern, as 70% of companies that host data or workloads in the cloud have experienced a breach of their public cloud environment in the past year. The most common attack types were malware (34%), followed by exposed data (29%), ransomware (28%), account compromises (25%), and cryptojacking (17%).


Cyber Crime Jumped 23% Over Past Year

Permalink - Posted on 2020-07-20 16:00

The double-digit increase in reported cybercrime came in spite of improvements to “internal case review processes” and an online reporting tool at Action Fraud in October 2018 which meant some offenses previously categorized as computer misuse are now being properly identified as fraud, ONS said. On that note, when fraud is added to computer misuse, there was an increase of just 12% in cases reported to the NFIB over the period.


Ransomware Gang Demands $7.5 Million from Argentinian ISP

Permalink - Posted on 2020-07-20 16:00

Sources inside the ISP said hackers caused extensive damage to the company's network after they managed to gain control over an internal Domain Admin, from where they spread and installed their ransomware payload to more than 18,000 workstations.


340 GDPR Fines for a Total of €158,135,806 Issued Since May 2018

Permalink - Posted on 2020-07-17 16:00

Since rolling out in May 2018, there have been 340 GDPR fines issued by European data protection authorities. Every one of the 28 EU nations, plus the United Kingdom, has issued at least one GDPR fine, Privacy Affairs finds.


Cloud Provider Pays Ransom Demand

Permalink - Posted on 2020-07-17 16:00

Blackbaud, a provider of software and cloud hosting solutions, said it stopped a ransomware attack from encrypting files earlier this year but still had to pay a ransom demand anyway after hackers stole data from the company's network and threatened to publish it online.


Over Half of Canadians Victims of Cyber Crime

Permalink - Posted on 2020-07-16 15:00

28% of consumers are reporting that their personal information had been exposed through a cybersecurity incident of this nature. While the majority of those surveyed had not experienced a hack of an online account, 22% had fallen victim to this particular cybercrime. A malicious email or spoofed website had managed to deceive 13% of consumers.


Three-Quarters of U.K. Businesses Facing Compliance Problems Following Lockdown

Permalink - Posted on 2020-07-16 15:00

UK data protection officers (DPOs) anticipate the Covid-19 lockdown will cause difficulties in meeting data compliance obligations, potentially leading to large fines. 72% of DSOs expect a backlog of data subject access requests (DSARs) upon returning to the office, while 3% are concerned there will be a “mountain” of DSARs to complete when they go back. 30% of DPOs believe there will be a massive increase in DSARs over the next six months. Furloughed or laid off employees during the pandemic will be a major driver of this growth according to 73% of respondents, while one in five said it will be the biggest single factor.


Walmart Sued Under CCPA After Data Breach

Permalink - Posted on 2020-07-16 15:00

Customer names, addresses, financial and other information were among the haul for attackers, according to the suit filed in the US District Court for the Northern District of California.


Tech Giants Sued Over Biometric Privacy

Permalink - Posted on 2020-07-16 15:00

Online retail giant Amazon and tech leaders Microsoft and Google are reportedly being sued for allegedly violating a biometric privacy law in the state of Illinois.


36,000 Members Affected by Central California Alliance for Health Email Breach

Permalink - Posted on 2020-07-16 15:00

The Central California Alliance for Health has discovered an unauthorized individual gained access to the email accounts of several employees and potentially viewed or copied information in emails and email attachments. The breach was detected on May 7, 2020 and prompt action was taken to secure the affected accounts. In each case, the accounts were accessed for a period of about one hour.


A Hacker Used Twitter's Own Admin Tool to Spread Cryptocurrency Scam

Permalink - Posted on 2020-07-16 15:00

A hacker allegedly behind a spate of Twitter account hacks on Wednesday gained access to a Twitter “admin” tool on the company’s network that allowed them to hijack high-profile Twitter accounts to spread a cryptocurrency scam, according to a person with direct knowledge of the incident.


U.S. Casting Company Leaked Private Data of Over 260,000 Individuals

Permalink - Posted on 2020-07-16 15:00

New Orleans-based MyCastingFile.com is an online casting agency that recruits talent. Users can sign up -- for free or on a subscription basis -- to apply for casting notices. The company claims to have provided actors for productions including True Detective, Pitch Perfect, NCIS: New Orleans, and Terminator Genisys.


SMBs Face Greater Malware Risk This Year

Permalink - Posted on 2020-07-16 15:00

ast year, the average risk globally of a small or medium-sized business (SMB) encountering malware was 11%. Over the last 12 months, that risk has risen to 15%.


New Zealand Property Management Company Leaks 30,000 Users' Passports, Driver's Licenses

Permalink - Posted on 2020-07-16 15:00

CyberNews received information from reader Jake Dixon, a security researcher with Vadix Solutions, who discovered an unsecured Amazon Simple Storage Solution (S3) database containing more than 31,000 images of users’ passports, driver’s licenses, evidence of age documents, and more. These files are publicly accessible to anyone who has the URL and appears to be owned by the Wellington, New Zealand company LPM Property Management.


Indonesia Bhinneka Batabase Dumped 1 Million Accounts

Permalink - Posted on 2020-07-16 15:00

The database was initially hacked on 27 January earlier this year but has now been put out in the open by the attacker. The downloadable folder contains 2 SQL files which contain the records of approximately 1,262,300 accounts in totality.


At Least 41 Healthcare Providers Experienced Ransomware Attacks in the First Half of 2020

Permalink - Posted on 2020-07-15 14:00

There were 128 successful ransomware attacks on federal and state entities, healthcare providers, and educational institutions in the first 6 months of 2020, with the healthcare industry accounting for 32% of those attacks.


Data Breach at Texas Benefits Recovery Firm

Permalink - Posted on 2020-07-15 14:00

The malware may have allowed unauthorized individuals to view and obtain the personal and protected health information (PHI) of 274,837 people.


99% of U.K. Organizations Suffered Security Breaches in the Past One Year

Permalink - Posted on 2020-07-15 14:00

While 98% of those surveyed said that attack volumes have increased in the last 12 months, 99% of them said their business has suffered a security breach in the last 12 months, with the average organisation experiencing 63 breaches in the period. Even though 96% of the respondents also said that cyber attacks have become more sophisticated, only 6% said they plan to increase cyber defence spending in the coming year. Security professionals also admitted their organisations are using more than eight different tools or consoles on average to manage their cyber defence programme, thereby making their environments complex and hard-to-manage.


13 Percent of Q1 Phishing Attacks Related to COVID-19

Permalink - Posted on 2020-07-15 14:00

In the first quarter of 2020 phishing attacks increased by 22.5 percent compared to the end of 2019, and 13 percent of all phishing was related to COVID-19.


South Korean Regulator Fines TikTok Over Mishandling Child Data

Permalink - Posted on 2020-07-15 14:00

The Korea Communications Commission (KCC), the country's telecommunications watchdog, said it has fined the company 186 million won -- around $155,000 -- for failing to protect users' private data. The fine is equivalent to 3% of the company's annual sales in South Korea, an amount designated for such violations under local privacy laws. The investigation began last year in October, the KCC said.


Massive DDoS Attack on Cloudflare Network

Permalink - Posted on 2020-07-15 14:00

Cloudflare researchers reported a DDoS attack that exceeded 400-600 million packets per second (Pps), and that peaked multiple times above 700 million packets per second (Mpps), with a top peak of 754 Mpps.


Media and Video Companies Suffer Huge Increase in Cyber Attacks

Permalink - Posted on 2020-07-15 14:00

According to research by Akamai, between January 2018 and December 2019, 20% of the 88 billion total attacks recorded were against media companies. The company also recorded 630% and 208% year-over-year increases in attacks against broadcast TV and video sites, respectively.


Hacker Releases Database of 270 Million Alleged Wattpad Records

Permalink - Posted on 2020-07-14 15:00

An allegedly stolen Wattpad database containing 270 million records were being sold in private sales for over $100,000. Now it is being offered for free on hacker forums.


Hacker Selling Details of 142 Million MGM Hotel Guests on the Dark Web

Permalink - Posted on 2020-07-14 15:00

The MGM Resorts 2019 data breach is much larger than initially reported, and is now believed to have impacted more than 142 million hotel guests, and not just the 10.6 million that ZDNet initially reported back in February 2020. The new finding came to light over the weekend after a hacker put up for sale the hotel's data in an ad published on a dark web cybercrime marketplace. According to the ad, the hacker is selling the details of 142,479,937 MGM hotel guests for a price just over $2,900.


EFF's New Database Reveals What Tech. Local Police Are Using to Spy on You

Permalink - Posted on 2020-07-14 15:00

Launched on Monday in partnership with the University of Nevada's Reynolds School of Journalism, the "Atlas of Surveillance" is described as the "largest-ever collection of searchable data on police use of surveillance technologies." The civil rights and privacy organization says the database was developed to help the general public learn about the accelerating adoption and use of surveillance technologies by law enforcement agencies.


Ransomware Now Stealing Data as Well as Encrypting It

Permalink - Posted on 2020-07-14 15:00

There's now an increasing chance of getting your data stolen, in addition to your network being encrypted, when you are hit with a ransomware attack - which means falling victim to this kind of malware is now even more dangerous.


Welcome Chat App Spies on Users

Permalink - Posted on 2020-07-14 15:00

While functioning as a communication app, Welcome Chat was found to simultaneously be serving as spyware, harvesting data for a campaign with links to threat group Gaza Hacker, also known as Molerats.


IT Staffing Services Collabera Hit by Ransomware, Employee Personal Data Stolen

Permalink - Posted on 2020-07-14 15:00

Hackers infiltrated Collabera, siphoned off at least some employees' personal information, and infected the US-based IT consultancy giant's systems with ransomware.


Belgium Suffers First Jackpotting Attack

Permalink - Posted on 2020-07-14 15:00

Antwerp-based savings bank Argenta has fallen victim to what is believed to be Belgium’s first jackpotting attacks. Also known as a logical attack, jackpotting is a sophisticated crime in which cyber-criminals install malicious software and/or hardware on an ATM that forces the machine to spew out all of its cash on demand.


Security Alerts More Than Doubled in the Last 5 Years

Permalink - Posted on 2020-07-13 16:00

Enterprises are arguably dealing with more data today than ever before, and the pain security operations teams are feeling is significant. Security alert volumes create problems for security operations. 99% report high volumes of alerts cause problems for IT security teams. 83% say their security staff experiences "alert fatigue."


Benefit Recovery Specialists Hacked and PHI of 274,837 Individuals Exposed

Permalink - Posted on 2020-07-13 16:00

The Houston, TX-based billing and collection company, Benefit Recovery Specialists, Inc., (BRSI) has announced it has discovered malware on its systems that may have allowed unauthorized individuals to view or obtain protected health information.


Dunzo Security Breach Exposes Users' Phone Numbers, Email IDs

Permalink - Posted on 2020-07-13 16:00

Hyperlocal delivery startup Dunzo announced on Saturday a security breach of one of its databases that has exposed phone numbers and email IDs of its users.


Records of 45 million+ Travelers to Thailand and Malaysia Surfaced in the Dark Web

Permalink - Posted on 2020-07-13 16:00

The huge trove of data was discovered by the researchers during their regular Deepweb and Darkweb monitoring activity. The experts came across a post published by a credible threat actor that claimed to be in possession of a database containing the above records.


Personal Details and SSNs of 40,000 U.S. Citizens Available for Sale

Permalink - Posted on 2020-07-13 16:00

The huge trove of data was discovered by the researchers during their regular Deepweb and Darkweb monitoring activity. The experts came across a post published by a credible actor that claimed to be in possession of a database containing data of US citizens.


Tax Filers Face "Enormous" Risk for Identity Theft as July 15th Deadline Looms

Permalink - Posted on 2020-07-10 16:00

As of July, the count is 58,000 fraudulent claims and a total of $158 million in nearly-stolen money, according to an investigation conducted by Ernst & Young.


Smartwatch Vulnerability Hackers Overdose Dementia Patients

Permalink - Posted on 2020-07-10 16:00

The watch in question uses the SETtracker app to have the tracking function which can be found in a multitude of similar devices worldwide. The manufacturer on the other hand is different and unidentified as of now. The issue remains as to how many other similar vulnerable smartwatches are out there and even so in this case if any patients were a victim of such an attack.


More than Half of Canadians Polled Say They Have Experienced a Cyber Crime

Permalink - Posted on 2020-07-10 16:00

A report from the Cybersecure Policy Exchange at Ryerson University in Toronto found 57 per cent of respondents in an online survey in May had encountered at least one cybercrime.


Vancouver Coastal Health Hit by Cyber Attack

Permalink - Posted on 2020-07-10 16:00

The health authority said malicious ransomware was discovered in data related to its Employee and Family Assistance Program on May 21, and that officials responded by bringing in external cybersecurity experts to investigate.


5 Billion Unique Credentials Circulating on Darknet

Permalink - Posted on 2020-07-10 16:00

Researchers found that more than 15 billion user credentials are in circulation, of which 5 billion username and password combinations don't have repeated credential pairs and have been advertised on underground forums only once.


Researchers Find Pre-Installed Malware on More Android Phones in U.S.

Permalink - Posted on 2020-07-10 16:00

Following a January report on malware found pre-installed on smartphones sold in the United States to budget-conscious users, Malwarebytes has discovered another mobile device riddled with malware from the get-go.


Mumbai: BKC Company's Data Stolen, Clients Receive Email to Boycott It

Permalink - Posted on 2020-07-10 16:00

A renowned Bandra Kurla Complex (BKC)-based gemological company has approached police to lodge a complaint of forgery, theft and cheating against an unidentified accused. According to the complainant, the accused allegedly stole the company's client data, forged the logo and sent out emails to the clientele, asking them to boycott the company as it is China-based. While police have registered a First Information Report (FIR), the probe is underway.


Egyptian Bus Operator Swvl Hit by Data Breach

Permalink - Posted on 2020-07-10 16:00

Swvl, a bus-booking app and operator of bus routes in Egypt, Kenya, and Pakistan, has been struck by a data breach. The company, based in Cairo, became aware of “unauthorized access to its IT infrastructure” on the evening of July 3, according to a security alert.


70% of Organizations Experienced a Public Cloud Security Incident in the Last Year

Permalink - Posted on 2020-07-09 16:00

70% of organizations experienced a public cloud security incident in the last year – including ransomware and other malware (50%), exposed data (29%), compromised accounts (25%), and cryptojacking (17%), according to Sophos.


95% of Brits Unable to Consistently Identify Phishing Messages

Permalink - Posted on 2020-07-09 16:00

Just 5% of Brits are able to recognize all scam emails and texts, a study from Computer Disposals Limited has found. Just 44% able to identify the genuine messages and emails.


Alabama County Computers Down After Incident

Permalink - Posted on 2020-07-09 16:00

The Chilton County Commission computer network is temporarily down as specialists research a cyber incident, potentially ransomware, which has disrupted the system. This incident means normal services offered at the Courthouse requiring local records are temporarily unavailable.


Teen Murdered After Confronting Cyber Bullies

Permalink - Posted on 2020-07-09 16:00

A teenager from San Diego has been fatally shot after confronting cyber-bullies who targeted her sister online. The life of 19-year-old Janessa Del Valle was tragically cut short on July 4 as America celebrated its national Independence Day. The young woman from Bonita was killed while attempting to stop bullies from using the internet to body-shame her 13-year-old sibling.


Florida Lawsuit Offers Glimpse into Estimated $1.4B Ransomware Toll on U.S. Businesses

Permalink - Posted on 2020-07-09 16:00

A class-action lawsuit seeking $99 million in damages has been lodged against a Tampa-based healthcare provider for alleged negligence in a ransomware breach of patient and employee records. Morgan & Morgan law firm’s June 30 lawsuit claims Florida Orthopaedic Institute failed to properly secure the records of 100,000 to 150,000 current and former patients exposed in an April ransomware attack. Orlando-based Morgan & Morgan filed the claim days after UnityPoint Health agreed to pay $2.8 million in a preliminary settlement of a similar ransomware-related negligence lawsuit after a data breach in Iowa. The Iowa lawsuit against UnityPoint Health and Morgan & Morgan’s legal challenge could unseal exactly how pervasive ransomware is nationwide.


2020 on Track to Hit a New Data Breach Record

Permalink - Posted on 2020-07-09 16:00

Around 16 billion records have been exposed so far this year. According to researchers, 8.4 billion were exposed in the first quarter of 2020 alone, a 273% increase from the first half of 2019 which saw only 4.1 billion exposed.


Over 5 Billion Unique Credentials Offered on Cyber Crime Marketplaces

Permalink - Posted on 2020-07-08 16:00

More than 15 billion username and password pairs have been offered on cybercrime marketplaces, including over 5 billion unique credentials, according to a report published on Wednesday by San Francisco-based risk protection solutions provider Digital Shadows.


Australians Ignoring Cyber Security Policies in Favor of Productivity

Permalink - Posted on 2020-07-08 16:00

61% acknowledge that using non-work applications on a corporate device is a security risk. However, just because most people understand the risks does not mean they stick to the rules, the survey highlights. 51% of employees admit to using a non-work application on a corporate device, and 68% of them have actually uploaded corporate data to that application. 37% often or always access corporate data from a personal device, and 7% of respondents admit to watching or accessing porn on their work laptop, and 7% access the dark web.


Organizations' Security Measures Failing to Keep Pace with BYOD Use

Permalink - Posted on 2020-07-08 16:00

Businesses are increasingly embracing the use of BYOD in the workplace but are not taking corresponding steps to protect corporate data. This is according to the Bitglass 2020 BYOD Report, in which 69% of IT professionals surveyed revealed that employees at their companies are allowed to use personal devices to perform work functions. A significant proportion of organizations also allow BYOD for contractors (26%), partners (21%), consumers (18%) and suppliers (16%).


NZ: Far North Council Scammed Out of $100,000 After Supplier's Email Hacked

Permalink - Posted on 2020-07-08 16:00

The cyber-attack occurred last December, when one of its Auckland-based supplier's emails was hacked and the council received a request to change the supplier's bank account details. The council implemented the change and paid $100,600.30 into the fraudulent bank account over the holiday period.


Casino App Clubillion Leaks PII on Millions of Users

Permalink - Posted on 2020-07-08 16:00

Unlike many similar discoveries, this online database was updated with huge amounts of users’ personal information every single day: in the region of 200 million new records, or 50GB, daily, and sometimes considerably more, according to vpnMentor.


65% of Organizations Saw at Least 3 OT System Intrusions Within the Past Year

Permalink - Posted on 2020-07-07 15:00

The majority of organizations (65%) experienced at least three operational technology (OT) system intrusions within the past year, up from 18% in 2019. Some nine out of 10 organizations said they saw at least one intrusion in the same time frame, a Fortinet report found.


Brazil's Hapvida Discloses Cyber Breach, Potential Client Data Leak

Permalink - Posted on 2020-07-07 15:00

Brazilian health insurer Hapvida said in a securities filing on Monday it has suffered a cyber attack potentially involving access to the personal information of its customers.


Try2Cry Ransomware Spreads via USB Drives

Permalink - Posted on 2020-07-07 15:00

Dubbed Try2Cry, the new piece of ransomware borrows functionality from Spora, which first emerged three years ago. Written in .NET, Try2Cry features a USB worm component similar to that previously observed in the njRAT remote access Trojan.


Manufacturing Sector Paid Out 62% of Total Ransomware Payments in 2019

Permalink - Posted on 2020-07-07 15:00

The manufacturing industry spent more than any other sector last year on ransomware payments, paying out $6.9m, according to a new study by Kivu Consulting. This represents 62% of the total $11m+ of ransoms transferred to cyber-criminals throughout 2019, despite manufacturing only making up 18% of all paid ransom cases.


UnityPoint Health Settles Lawsuit Regarding Data Breaches

Permalink - Posted on 2020-07-07 15:00

UnityPoint Health, which owns Meriter Health Services in Madison, agreed to a deal last month that would put to rest a case related to two separate data breaches that occurred in 2018. Possible information compromised in both events included names of patients, addresses and medical information, as well as for some, driver’s licenses, social security numbers and payment card or bank account numbers.


X-FAB Affected by Cyber Attack

Permalink - Posted on 2020-07-07 15:00

On July 5, 2020, X-FAB Group was the target of a cyber security attack. Following the advice of leading security experts engaged by X-FAB, all IT systems have been immediately halted. As an additional preventive measure, production at all six manufacturing sites has been stopped.


Texas County Sheriff's Office Suffers Ransomware Attack

Permalink - Posted on 2020-07-07 15:00

Hackers claim they stole data from the Cooke County Sheriff’s Office and are threatening to publish it online if their demands are not met. Attacks of this kind are trending across the country.


Texas Bicycle Sharing Company Breached by Malware

Permalink - Posted on 2020-07-07 15:00

A Fort Worth bicycle sharing service, BCycle, found the malware in April and launched an investigation, according to a company letter. The stolen information may have included names, credit card numbers and addresses.


Premier League Club Targeted in £100 Million BEC Scam

Permalink - Posted on 2020-07-07 15:00

Among nearly two million targets in a £380 million BEC scamming operation were a Premier league football team, a US lawyer and an international bank. The alleged scammer was arrested in Dubai.


Volume and Size of Fines for Data Breaches Expected to Rise

Permalink - Posted on 2020-07-06 17:00

The number and value of fines for data breaches is predicted to increase between now and 2025, according to a new study by DSA Connect. Interviews with 1000 workers between 24 and 27 April 2020 revealed that 37% think there will be an increase and 6% believe the rise will be dramatic. Just 3% expect a reduction.


Corporate Cybercrime Victims Double in Five Years

Permalink - Posted on 2020-07-06 17:00

Although large firms with over 250 employees were the most likely to suffer attacks, with over 87% impacted last year, smaller businesses (11-50 employees) experienced the steepest rise, from 28% in 2015 to 68% last year.


Flaw Fixed in Hotels.com Generator as Tesco Clubcard Users Impacted

Permalink - Posted on 2020-07-06 17:00

Tesco Clubcard users have been warned to check their accounts, after a weakness was discovered in the way that Hotels.com codes were generated, which then impacted Clubcard members as they tried to use their points.


U.S. Secret Service Reports an Increase in Hacked Managed Service Providers

Permalink - Posted on 2020-07-06 17:00

US Secret Service says hackers are breaching MSPs to orchestrate ransomware attacks, point-of-sale intrusions, and business email compromise (BEC) scams.


Ransomware Attack on Insurance MSP Xchanging Affects Clients

Permalink - Posted on 2020-07-06 17:00

DXC Technology notified its investors in an 8-K form filed with the U.S. Securities and Exchange Commission that Xchanging has detected a ransomware attack on some of its systems.


EDP Energy Giant Confirms Ragnar Locker Ransomware Attack

Permalink - Posted on 2020-07-06 17:00

EDP Renewables North America (EDPR NA) confirmed a Ragnar Locker ransomware attack that affected its parent corporation's systems, the Portuguese multinational energy giant Energias de Portugal (EDP).


V Shred Data Leak Exposes PII, Sensitive Photos of Fitness Customers and Trainers

Permalink - Posted on 2020-07-03 16:00

Fitness brand V Shred exposed the personally identifiable information (PII) of over 99,000 customers and trainers -- and has yet to fully resolve the leaking database responsible.


BMW Customer Database for Sale on Dark Web

Permalink - Posted on 2020-07-03 16:00

A database of 384,319 BMW car owners in the U.K. is being offered for sale on an underground forum by the KelvinSecurity Team hacking group, according to KELA, a darknet threat intelligence firm, based in Tel Aviv.


One of Florida's Largest Orthopedic Providers Faces Class-Action Lawsuit After Data Breach

Permalink - Posted on 2020-07-03 16:00

Attorney John Yanchunis of Morgan & Morgan filed the lawsuit against the Florida Orthopedic Institute, seeking at least $99 million on behalf of patients and former patients citing a “failure to properly secure and safeguard protected health information,” according to the complaint filed June 30. The case filed in Hillsborough County seeks long-term identity theft protection for patients, payment for victims who suffer losses as a result of the breach and a court order to force the medical group to strengthen its cybersecurity methods going forward.


AU: Thousands of MyGov Accounts for Sale on Dark Web

Permalink - Posted on 2020-07-03 16:00

The MyGov accounts are among a list of more than 150,000 hacked ".com.au" logins available for sale on dark web marketplaces, where logins are sold for as little as a few cents and as much as several hundred dollars.


Up to 58,000 Individuals Impacted by Healthcare Fiscal Management Ransomware Attack

Permalink - Posted on 2020-07-03 16:00

An unauthorized individual gained access to HFMI systems on April 12, 2020 and deployed a ransomware payload the following day which encrypted data on its systems. The systems accessed by the attacker were found to contain the personal and protected health information of patients who received healthcare services at St. Mary’s between November 2019 and April 2020.


Credit Unions Can Serve Up Negligence Claim in Sonic Data Breach Case

Permalink - Posted on 2020-07-03 16:00

An Ohio federal judge ruled on Sonic Corp’s bid to dismiss claims brought by financial institutions over a 2017 data breach in which hackers accessed customers’ payment card data from 325 of its drive-in locations, allowing a negligence claim to proceed while nixing claims of negligence per se and for declaratory and injunctive relief.


Privacy Breach at DU Reveals Students' Personal Details

Permalink - Posted on 2020-07-03 16:00

A serious data privacy breach on the DU admit card 2020 download portal was noted by two Twitter users. Personal details of all Delhi University students are now easily available to the public.


40% of Security Pros say Half of Cyber Attacks Bypass Their WAF

Permalink - Posted on 2020-07-03 16:00

49% of security professionals reported more than a quarter of attempts to sidestep their WAF protocols had been successful in the last 12 months. In addition, as many as four in ten respondents disclosed that 50% or more of attacks had managed to get around their application layer firewall.


Woolies Hit with AU$1 Million Spamming Fine

Permalink - Posted on 2020-07-02 16:00

The Australian Communications and Media Authority (ACMA) has hit Woolworths Group with a fine of AU$1,003,800, the largest it has handed down, due to five million breaches of the Spam Act 2003 made between October 2018 and July 2019.


Ransomware Operators Demand $14 Million from Power Company

Permalink - Posted on 2020-07-02 16:00

The company has confirmed that it was hit with a cyberattack without providing specific information on the type of compromise, but AppGate’s security researchers, who have obtained a sample of the malware believed to have been used in the attack, are confident that the incident involves the Sodinokibi ransomware.


Magellan Health Ransomware Attack Impacts More Than 364,000 Individuals

Permalink - Posted on 2020-07-02 16:00

The incident has now been listed on the HHS’ Office for Civil Rights breach portal as affecting 6 Magellan entities, each of which has reported the incident separately. Several other entities have also submitted breach reports confirming their patients and subscribers have also been affected.


The California Consumer Privacy Act Is Now Being Enforced

Permalink - Posted on 2020-07-02 16:00

On July 1, 2020, enforcement of the California Consumer Privacy Act (CCPA) of 2018 began. The CCPA took effect on January 1, 2020 and all companies covered by the Act were given a 6 month grace period before compliance with the CCPA would be enforced, although compliance with the provisions of the Act have been mandatory since January 1, 2020.


Data Breach at CNY Works Career Center May Have Exposed Personal Information of 56,000 Clients

Permalink - Posted on 2020-07-02 16:00

Clients potentially impacted by the breach began receiving letters from the agency this week warning that files targeted by a suspected ransomware attack on the agency’s servers contained their names and Social Security numbers.


IBM Study says More Than Half of Indian Companies Report Data Breach in Last Two Years

Permalink - Posted on 2020-07-02 16:00

Cyberattacks have been on the rise in the last two years with 56 per cent of Indian organisations confirming that they had experienced a data breach that had lead to the loss or theft of more than 1,000 records containing sensitive or confidential customer or business information. The responses were part of a global survey conducted by Ponemon Institute and sponsored by IBM Security.


Hacker Ransoms 23k MongoDB Databases and Threatens to Contact GDPR Authorities

Permalink - Posted on 2020-07-02 16:00

A hacker has uploaded ransom notes on 22,900 MongoDB databases left exposed online without a password, a number that accounts for roughly 47% of all MongoDB databases accessible online, ZDNet has learned.


Italian Garante Fines Bank 600,000 Euros for Pre-GDPR Data Breach

Permalink - Posted on 2020-07-02 16:00

The sanction was imposed following a data breach that took place between April 2016 and July 2017 that the banking institution notified to the Garante at the end of July 2017. As a result of the breach, the personal data of over 700,000 customers, including contact details, employment data (e.g., salary information), education data, identification details and financial data (e.g., bank account number, information on loans, payment status and customers’ credit ratings), was unlawfully accessed.


Surge in Unique Clients Reporting Brute-Force Attack Attempts

Permalink - Posted on 2020-07-01 16:00

Despite the increasing importance of RDP, as well as other remote access services, organizations often neglect its settings and protection. Employees use easy-to-guess passwords, and without additional layers of authentication or protection, there is little that can stop cybercriminals from compromising an organization’s systems.


One Out of Every 142 Passwords Is '123456'

Permalink - Posted on 2020-07-01 15:00

The '123456' password was spotted 7 million times across a data trove of one billion leaked credentials, in one of the biggest password re-use studies of its kind.


Hackers Obtain Covid-19 Patient Database in Protest at Treatment of Indian Health Workers

Permalink - Posted on 2020-07-01 15:00

Hackers claim they have accessed the personal data of 80,000 Covid-19 patients in New Delhi stored on a local government website, in protest at the treatment of beleaguered healthcare workers.


Grays Harbor County Hospital Settlement

Permalink - Posted on 2020-07-01 15:00

Grays Harbor Community Hospital in Washington suffered a ransomware attack in 2019. Despite their best efforts, not all data was recoverable. And not surprisingly in our litigious society, a lawsuit was filed against it.


e-Learning Platform OneClass Exposed Data on Students, Lecturers

Permalink - Posted on 2020-07-01 15:00

An Elasticsearch database pertaining to e-learning platform OneClass was found to expose data on over one million students and lecturers, vpnMentor reveals.


California's CCPA Gets Teeth Today

Permalink - Posted on 2020-07-01 15:00

As of today, the California state government is enforcing the California Consumer Privacy Act (CCPA). Companies that don't comply with the law can expect stiff penalties from the government, along with potential consumer lawsuits.


Unsecured Chinese Companies Leak Users' Sensitive Personal and Business Data

Permalink - Posted on 2020-07-01 15:00

Research uncovered two unsecured databases, with millions of records, belonging to companies that are based in China and provide different types of services. One database belongs to Xiaoxintong, which offers multiple apps and services aimed at elderly care. The other database we discovered seems to be connected to Shanghai Yanhua Smartech tools, which provides services related to intelligent buildings. The database for Xiaoxintong, which serves more than 200 million elderly people in China, contains sensitive information such as GPS locations, mobile numbers, addresses, hashed passwords and more. The second database that may be from Shanghai Yanhua Smartech has even more sensitive data, such as easily-decoded audio files, names, employee ID numbers, heart rates, oxygen levels, GPS locations and more. Both databases are now closed.


Personal Details of 1.29 Million Limeroad Customers Up for Sale on Dark Web

Permalink - Posted on 2020-07-01 15:00

Even as online shoppers switch from Chinese apps to Indian e-commerce apps, US-based cyber security firm Cyble reported that fashion platform Limeroad’s customer database has suffered a breach with details of 1.29 million shoppers up for sale on the darkweb.


DDoS Attacks Jump 542% from Q4 2019 to Q1 2020

Permalink - Posted on 2020-06-30 16:00

In the first quarter of 2020, distributed denial-of-service (DDoS) attacks jumped more than 542% compared with the last quarter of 2019 and more than 278% year-over-year. NexusGuard researchers suggest the spike may be linked to a parallel increase in malicious cyber activity during the COVID-19 pandemic.


200% Increase in Invoice and Payment Fraud BEC Attacks

Permalink - Posted on 2020-06-30 15:00

Out of all types of BEC attacks, invoice and payment fraud BEC attacks are increasing in popularity. In April, these types of attacks comprised 14% of all BEC attacks, increasing to 17% in May.


Remote Employees Encounter 59 risky URLs per Week

Permalink - Posted on 2020-06-30 15:00

NetMotion recently aggregated a sample of anonymized network traffic data, searching specifically for evidence of users attempting to access flagged (or blocked) URLs, otherwise known as risky content. The analysis, which is derived from data gathered between May 30th – June 24th, 2020, revealed that employees clicked on 76,440 links that took them to potentially dangerous websites.


Businesses Lack a Workable Ransomware Recovery Strategy

Permalink - Posted on 2020-06-30 15:00

According to research from Ontrack of 484 organizations, 39% either did not have or were not unaware of a ransomware strategy, while 26% admitted they couldn’t access any working backups after an attack.


Personal Data of Thousands of Users from Four Continents Exposed in Bitcoin Scam

Permalink - Posted on 2020-06-30 15:00

A joint investigation of Group-IB’s Threat Intelligence and Brand Protection teams revealed 248,926 sets of personally identifiable information exposed in what turned to be a complex three-stage fraud designed to drag people into a shady bitcoin investment scheme.


Eight Cities Using Click2Gov Targeted in Magecart Skimming Attacks

Permalink - Posted on 2020-06-30 15:00

ince April 10, eight cities in three states using the Click2Gov web-based platform to collect payments for services have been hit with Magecart card-skimming attacks that still appear active. Credit card information including card number, expiration date and CVV, as well as personal information such as name and contact address, were being exfiltrated from the municipalities, which were not named.


Half of Internet Users Fall Victim to Cyber Attacks

Permalink - Posted on 2020-06-30 15:00

Brits hold steady at 55%, while 67% of Americans admit to having encountered malicious cyber activities while using their Internet-enabled devices. Computer viruses, phishing scams and stolen passwords were among the most common cyber-related incidents mentioned by user.


UnityPoint Health Reaches $2.8M Settlement Over 2018 Data Breach

Permalink - Posted on 2020-06-29 15:00

After two years of litigation and a partial dismissal, UnityPoint Health has reached a proposed $2.8M settlement with the 1.4 million patients impacted by two phishing-related data breaches.


UCSF Paid $1.4 Million Ransom in NetWalker Attack

Permalink - Posted on 2020-06-29 15:00

The disclosed technical details of the attack are obscure and insufficient to derive definitive conclusions about the origins and nature of this exorbitant incident.


Over 100k Daily Brute-Force Attacks on RDP in Pandemic Lockdown

Permalink - Posted on 2020-06-29 15:00

Telemetry data recorded by cybersecurity company ESET since December 1, 2019, shows a steep increase in the daily number of brute-force attacks against RDP. Between December 2019 and until February 2020, the values were between 70,000 and 40,000 daily attacks. The upward trend started in February when the number shot to 80,000. Since then, the values steadily rose and went past 100,000 in April and May, which corresponds to when most countries with a high number of COVID-19 infections had declared a national emergency and were in pandemic lockdown.


More Than 75% of All Vulnerabilities Reside in Indirect Dependencies

Permalink - Posted on 2020-06-26 16:00

JavaScript, Ruby, and Java are the ecosystems with most bugs in indirect dependencies.


Hackers Threaten to Leak Files Stolen from Australian Beverage Firm Lion

Permalink - Posted on 2020-06-26 16:00

Australian beverage company Lion says it has found no evidence that hackers have stolen information from its systems, but the hackers claim they have and are threatening to leak it unless the company pays up.


LifeLabs Failed to Protect the Personal Health Information of Millions of Canadians

Permalink - Posted on 2020-06-26 16:00

In November, 2019, Canadian testing laboratory provider LifeLabs disclosed a data breach. In February, 2020, it tried to block regulators from accessing a report on the breach prepared for it by Crowdstrike. Today, the B.C. and Ontario privacy commissioners released their report on the incident. It was highly critical of LifeLabs.


Domestic Abuse Victims Exposed in Cloud Misconfiguration

Permalink - Posted on 2020-06-26 16:00

Thousands of domestic violence victims have had their emergency distress messages exposed after a developer misconfigured a back-end AWS bucket. Researchers at vpnMentor led by Noam Rotem and Ran Locar found the voice recordings stored on a publicly accessible AWS S3 bucket.


Cyber Accounts for 26% of All Crimes in Singapore

Permalink - Posted on 2020-06-26 16:00

Accounting for 26.8% of all crimes in the country, cybercrime remains on an upwards trajectory with 9,430 cases reported last year and e-commerce scams leading the way.


Biggest-Ever Packets-per-Second DDoS Attack Hits Large European Bank

Permalink - Posted on 2020-06-26 16:00

Akamai said that the attack on a bank earlier this week was the largest ever packet per second (pps) distributed denial of service (DDoS) attack on its platform. The attack generated 809 million packets per second (Mpps). The targeted bank has not been revealed.


Chinese Bank Forced Western Companies to Install Malware-Laced Tax Software

Permalink - Posted on 2020-06-25 16:00

GoldenSpy installs two identical versions of itself, both as persistent autostart services. If either stops running, it will respawn its counterpart. Furthermore, it utilizes an exeprotector module that monitors for the deletion of either iteration of itself. If deleted, it will download and execute a new version. Effectively, this triple-layer protection makes it exceedingly difficult to remove this file from an infected system.


Personal Data of 350,000+ Social Media Influencers and Users Compromised Following Preen.Me Hack

Permalink - Posted on 2020-06-25 16:00

The personal information of an estimated 100,000+ social media influencers has been compromised and partially leaked, following the breach of social media marketing company, Preen.Me. Furthermore, as a result of this breach, over 250,000 social media users have had their information fully exposed on a deep web hacking forum.


Two-Year Data Breach at Florida Senior Care Provider

Permalink - Posted on 2020-06-25 16:00

Cano Health discovered in April 2020 that some email accounts belonging to its employees had been compromised by threat actors. After investigating the incident, the healthcare company found that the accounts had been accessed multiple times in a prolonged security breach that took place between May 18, 2018, and April 13, 2020.


Billions of Records of Web-Tracking Data Exposed by Oracle's BlueKai

Permalink - Posted on 2020-06-25 16:00

This month, Oracle’s BlueKai left exposed an unsecured database containing billions of records like names, home addresses, email addresses, and sensitive users’ web browsing activity — from purchases to newsletter unsubscribes.


33% Surge in Financial Fraud Attempts During COVID19 Lockdown

Permalink - Posted on 2020-06-25 16:00

Across all financial products, fraud rates increased by a third when compared with previous monthly averages. The largest increase was in fraudulent car and other asset finance applications, which saw a rise of 181%, followed by current accounts (35%) and then saving accounts (28%), according to Experian.


OneClass Unsecured S3 Bucket Exposes PII on More Than One Million Students, Instructors

Permalink - Posted on 2020-06-25 16:00

An unsecured database belonging remote learning platform OneClass has exposed information associated with more than a million students in North America who use the platform to access study guides and educational assistance.


IndiaMART Data Breach: 40,000 Company Records Discovered on Cyber Crime Forums

Permalink - Posted on 2020-06-25 16:00

A breach at online marketplace IndiaMART has leaked the sensitive data of more than 40,000 suppliers. IndiaMART is a business-to-business e-commerce site, connecting suppliers from across India. Last year, the official app had 10 million downloads.


Average Cost of a Data Breach Climbs to $116M

Permalink - Posted on 2020-06-24 15:00

The authors of the "Trends in Cybersecurity Breach Disclosures" report from Audit Analytics reviewed 639 cybersecurity breaches at public companies since 2011 and discovered that, on average, each cyber breach costs $116 million. The report found that in 2019, cybercriminals usually targeted customer names, addresses, and e-mail addresses (48%, 29%, and 28%, respectively). In 2018, names and credit card information were the most-sought types of information. Between 2011 and 2019, malware (34%) was the common commonly used method to obtain data, followed by phishing (25%), unauthorized access (20%), and misconfiguration (12% percent). However, almost half (43%) of companies that suffered a data breach kept the type of attack to themselves.


N.S. Government Reveals May Privacy Breach Involved 10,599 Unredacted Decisions

Permalink - Posted on 2020-06-24 15:00

The Nova Scotia government has now disclosed the number of unredacted decisions posted online in a May privacy breach by the Workers' Compensation Appeals Tribunal totalled 10,599. The decisions contained highly-sensitive information, including employer names, as well as employee names and their medical and psychiatric information. Until now, the government has said little about the error other than it was following the province's privacy breach protocol, which includes conducting a thorough investigation.


Threat Actor Sold Access to Networks of 135 Organizations

Permalink - Posted on 2020-06-24 15:00

Over a period of two years, a threat actor sold access to the compromised networks of 135 organizations in 44 countries and likely made over $1.5 million, Group-IB says.


German Court Orders Facebook to Rein in Data Collection

Permalink - Posted on 2020-06-24 15:00

A top German court on Tuesday ordered Facebook to stop merging data collected through its Whatsapp and Instagram subsidiaries or other websites unless users explicitly agree, in a legal victory for competition authorities.


American Medical Technologies Email Breach Affects 47,767 Patients

Permalink - Posted on 2020-06-24 15:00

American Medical Technologies, a Irvine, CA-based provider of wound care solutions and medical supplies, has discovered an unauthorized individual gained access to the email account of one of its employees and potentially accessed and copied the protected health information of some of its patients.


Over Two-Thirds of Q1 Malware Hidden by HTTPS

Permalink - Posted on 2020-06-24 15:00

Over two-thirds of malware detected in the first three months of the year was hidden in HTTPS encrypted tunnels in a bid to evade traditional AV, according to Watchguard.


Exposed Frost & Sullivan Databases for Sale on Hacking Forum

Permalink - Posted on 2020-06-24 15:00

U.S. business consulting firm Frost & Sullivan was breached after data from an unsecured backup folder exposed on the Internet was sold on a hacker forum.


Citing NY's SHIELD Act, NYSBA Approves Cyber Security CLE Requirement for All Attorneys

Permalink - Posted on 2020-06-23 16:00

Citing a rise in data breaches among New York law firms coupled with the recent enactment of the SHIELD Act that “creates, for the first time, substantive security requirements for persons or businesses that hold the ‘private information’ of New York residents”, the Committee on Technology and the Legal Profession recommended the adoption of a cybersecurity CLE. Because the SHIELD Act applies to “all law firms, even to solo practitioners and small law firms”, the Committee advocated for the requirement as an “important initiative”.


Vermont's Amendments to Data Breach Law and New Student Privacy Law Effective July 1, 2020

Permalink - Posted on 2020-06-23 16:00

The amendments to Vermont’s Security Breach Notice Act include expanding the definition of Personally Identifiable Information (“PII”), expanding the definition of a breach to include login credentials and narrowing the permissible circumstances under which substitute notice may be used.


Only 31% of Americans Concerned with Data Security, Despite 400% Rise in Cyber Attacks

Permalink - Posted on 2020-06-23 16:00

Less than one-third (31%) of Americans said they are concerned about their data security while working from home during the COVID-19 pandemic, a Unisys Security report found. Overall concerns around internet security, including computer viruses and hacking, have dropped since 2019, ranking the lowest among the four primary areas of security in the survey.


Oregon City Pays $48,000 Cyber Ransom

Permalink - Posted on 2020-06-23 16:00

The city of Keizer's computer system was successfully targeted by threat actors using ransomware in the early hours of June 10. The attack left officials unable to access either files or their email accounts for a full seven days.


Indiabulls Group Hit by CLOP Ransomware

Permalink - Posted on 2020-06-23 16:00

Indian conglomerate Indiabulls Group has allegedly been hit with a cyberattack from the CLOP Ransomware operators who have leaked screenshots of stolen data.


Irish Firms Pay Most for Cyber Attacks

Permalink - Posted on 2020-06-22 16:00

Irish firms suffer the highest median cost in Europe from cyber-attacks, at almost €92,000, a major new survey claims. Cyber incidents and breaches cost sampled Irish companies €113m over a six month period, with one unnamed Irish company suffering total cyber losses of €17.8m.