A trove of breached data, which has now been taken down, includes user logins for platforms including Apple, Google, and Meta. Among the exposed accounts are ones linked to dozens of governments. WIRED reports: The possibility that data could be inadvertently exposed in a misconfigured or otherwise unsecured database is a longtime privacy nightmare that has been difficult to fully address. […]
GovInfoSecurity reports: A slew of Western cybersecurity agencies warned Wednesday that Russian intelligence is targeting logistics and technology companies in a prolonged hacking campaign that includes an emphasis on internet-connected cameras situated along border crossings and military installations. The advisory includes indicators of compromise typical of an attack by Unit 26165 of the Russian Main Intelligence Directorate. […]
Insurance Journal reports an insider data breach that will leave many people wondering exactly what a government contractor did in terms of background checks on its employees. In this case, the two allegedly rogue employees at Opexus (formerly known as AINS) were twin brothers who were previously convicted and served time for hacking crimes: A […]
The U.S. Attorney’s Office for the District of Massachusetts announced yesterday that Matthew D. Lane, 19, a student at Assumption University in Worcester, Mass., was charged and has agreed to plead guilty in connection with hacking into the computer networks of two U.S.-based companies and extorting the companies for ransoms. The two companies were not named in the Information […]
Hundreds of former subpostmasters are to be compensated by the Post Office after it accidentally leaked their names and addresses online last year. Some data leaks are more sensitive or problematic than others. A leak on the Post Office’s site is one of the more problematic ones. The Bolton News reports: The Post Office confirmed […]
The Guardian reports that a significant cyberattack affecting the Legal Aid Agency in the UK affects both legal aid applicants and legal aid providers: The personal data of hundreds of thousands of legal aid applicants in England and Wales dating back to 2010, including criminal records and financial details, has been accessed and downloaded in a “significant” […]
TechCrunch reports: Pharmaceutical maker Regeneron announced Monday it will buy genetic testing company 23andMe for $256 million following a bankruptcy auction. Regeneron said it will acquire 23andMe’s genomics service and its bank of 15 million customers’ personal and genetic data as part of the deal. The pharma giant said it plans to use the 23andMe customer data […]
Newspoint reports on a dangerous new WhatsApp scam that can drain your bank account — through a single photo: Read more at MSN to learn how to protect yourself from this scam.
The Register reports: The call came into the help desk at a large US retailer. An employee had been locked out of their corporate accounts. But the caller wasn’t actually a company employee. He was a Scattered Spider criminal trying to break into the retailer’s systems – and he was really good, according to Jon […]
The Register reports: A ransomware attack at a Middle Eastern business partner of payroll company ADP has led to customer data theft at Broadcom, The Register has learned. It’s understood Broadcom’s HR department has begun the process of informing current and former staff who are affected by the September ransomware attack at Business Systems House (BSH). Broadcom […]
