Data breaches and Information - Cyber Security Informer

Search:

DAY

WEEK

MONTH

YEAR

Dec 07 - Dec 13

Nov 30 - Dec 06

Nov 23 - Nov 29

Nov 16 - Nov 22

Nov 09 - Nov 15

September, 2024

MORE

MORE

MORE

MORE

Select your country:
Sign up | Log in

Data breaches

Information

article thumbnail

The Unattributable "db8151dd" Data Breach

Troy Hunt

MAY 15, 2020

It's about a data breach with almost 90GB of personal information in it across tens of millions of records - including mine. Here's what I know: Back in Feb, Dehashed reached out to me with a massive trove of data that had been left exposed on a major cloud provider via a publicly accessible Elasticsearch instance.

Data breaches InfoSec

article thumbnail

Data Breaches, Class Actions and Ambulance Chasing

Troy Hunt

APRIL 12, 2021

This post has been brewing for a while, but the catalyst finally came after someone (I'll refer to him as Jimmy) recently emailed me regarding the LOQBOX data breach from 2020. A data breach made you sad and now you want money for being sad? If he's received more spam as a result of a breach, which breach was it?

Data breaches Phishing Scams Advertising

Join 28,000+

Insiders

Sign Up for our Newsletter

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Trending Sources

article thumbnail

The Data Breach Disclosure Conundrum

Troy Hunt

SEPTEMBER 27, 2024

As it relates to the UK GDPR, there are two essential concepts to understand, and they're the first two bulleted items in their personal data breaches guide : The UK GDPR introduces a duty on all organisations to report certain personal data breaches to the relevant supervisory authority.

Data breaches Risk Passwords Government

article thumbnail

The Unattributable "Lead Hunter" Data Breach

Troy Hunt

JUNE 3, 2020

Less than 3 weeks ago I wrote about The Unattributable "db8151dd" Data Breach which, after posting that blog post and a sample of my own data, the community quickly attributed to Covve. Many of the other records also contain WHOIS information, but then many others don't.

Data breaches B2B Marketing Accountability

article thumbnail

The Importance of User Roles and Permissions in Cybersecurity Software

Advertisement

The same principle should apply to your most precious data assets. You should restrict access to sensitive information and systems the same way you restrict access to your house. By only giving users access to what they need for their job, you reduce the risk of data breaches and unauthorized modifications.

article thumbnail

T-Mobile Data Breach

Schneier on Security

AUGUST 19, 2021

The trove includes not only names, phone numbers, and physical addresses but also more sensitive data like social security numbers , driver’s license information, and IMEI numbers , unique identifiers tied to each mobile device.

Mobile

Mobile Data breaches Phishing Cybercrime

article thumbnail

The Data Breach "Personal Stash" Ecosystem

Troy Hunt

JANUARY 29, 2024

That's the analogy I often use to describe the data breach "personal stash" ecosystem, but with one key difference: if you trade a baseball card then you no longer have the original card, but if you trade a data breach which is merely a digital file, it replicates.

Data breaches Passwords Advertising Personal Security

article thumbnail

The State of Data Breaches

Troy Hunt

JUNE 24, 2024

I've been harbouring some thoughts about the state of data breaches over recent months, and I feel they've finally manifested themselves into a cohesive enough story to write down. Data Breach Victims are Making it Worse I'm talking about class actions.

Data breaches Identity Theft InfoSec Accountability

article thumbnail

Fintech Giant Finastra Investigating Data Breach

Krebs on Security

NOVEMBER 19, 2024

The financial technology firm Finastra is investigating the alleged large-scale theft of information from its internal file transfer platform, KrebsOnSecurity has learned. If you have any additional information about this incident, please reach out to krebsonsecurity @ gmail.com or at protonmail.com. This is a developing story.

Data breaches Banking Cybercrime Advertising

article thumbnail

Inside the Massive Alleged AT&T Data Breach

Troy Hunt

MARCH 18, 2024

" Usually I'd tell them to get in touch with the impacted organisation and request a copy of their data from the breach, but if AT&T's position is that it didn't come from them then they may not be much help.

Data breaches Encryption Identity Theft InfoSec

article thumbnail

When Efforts to Contain a Data Breach Backfire

Krebs on Security

AUGUST 16, 2022

This identity has been highly active on Breached and its predecessor RaidForums for more than two years, mostly selling databases from hacked Mexican entities. That same month, they also sold data on 1.4 “We ask you to remove this post containing Banorte data. million customers of Mexican lending platform Yotepresto.

Data breaches Banking Cybercrime Marketing

article thumbnail

Inside the DemandScience by Pure Incubation Data Breach

Troy Hunt

NOVEMBER 13, 2024

Additionally, the threat actor with… pic.twitter.com/tqsyb8plPG — HackManac (@H4ckManac) February 28, 2024 When Jason found his email address and other info in this corpus, he had the same question so many others do when their data turns up in a place they've never heard of before - how?

Data breaches Passwords B2B Technology

article thumbnail

T-Mobile Investigating Claims of Massive Data Breach

Krebs on Security

AUGUST 16, 2021

They claim one of those databases holds the name, date of birth, SSN, drivers license information, plaintext security PIN, address and phone number of 36 million T-Mobile customers in the United States — all going back to the mid-1990s. The hacker(s) claim the purloined data also includes IMSI and IMEI data for 36 million customers.

Mobile

Mobile Data breaches Accountability Wireless

article thumbnail

The State of Data Breaches, Part 2: The Trilogy of Players

Troy Hunt

JUNE 30, 2024

Last week, I wrote about The State of Data Breaches and got loads of feedback. Let me explain: Hackers This is where most data breaches begin, with someone illegally accessing a protected system and snagging the data. It's awkward, talking to the first party responsible for the breach.

Data breaches Government InfoSec Passwords

article thumbnail

Payment provider data breach exposes credit card information of 1.7 million customers

Malwarebytes

SEPTEMBER 10, 2024

Payment provider Slim CD has disclosed a security incident that may have exposed the full credit card information of anyone paying at a merchant that uses Slim CD’s services. However, the company said the criminals only had access to credit card and other information between June 14 and June 15, 2024. Check the vendor’s advice.

Data breaches Identity Theft Passwords Phishing

article thumbnail

Amazon discloses employee data breach after May 2023 MOVEit attacks

Security Affairs

NOVEMBER 11, 2024

Amazon disclosed a data breach exposing employee data, with information allegedly stolen in the May 2023 MOVEit attacks. Amazon disclosed a data breach that exposed employee information after data was allegedly stolen during the May 2023 MOVEit attacks.

Data breaches Hacking Technology Ransomware

article thumbnail

Internet Archive data breach impacted 31M users

Security Affairs

OCTOBER 11, 2024

The Internet Archive disclosed a data breach, the security incident impacted more than 31 million users of its “The Wayback Machine.” Starting from Wednesday, the website archive.org was displaying a message informing visitors that it was hacked. Hunt will add the information of the impacted users to HIBP very soon.

Data breaches Internet Internet DDOS

article thumbnail

Change Healthcare data breach impacted over 100 million people

Security Affairs

OCTOBER 25, 2024

The Change Healthcare data breach in the February 2024 impacted over 100 million, the largest-ever healthcare data breach in the US. UnitedHealth Group announced that the data breach suffered by Change Healthcare in February 2024 impacted more than 100 million individuals.

Data breaches Healthcare Cybercrime Insurance

article thumbnail

Universal Music data breach impacted 680 individuals

Security Affairs

OCTOBER 7, 2024

Universal Music Group notified hundreds of individuals about a data breach compromising their personal information. Universal Music Group is notifying 680 individuals about a data breach that compromised their personal information, including their Social Security number.

Data breaches Identity Theft Hacking Ransomware

article thumbnail

Michigan Medicine data breach impacted 56953 patients

Security Affairs

JULY 24, 2024

A cyber attack against Michigan Medicine resulted in the compromise of the personal and health information of approximately 57,000 patients. The academic medical center of the University of Michigan, Michigan Medicine, suffered a data breach that impacted 56953 patients. Michigan Medicine notified patients of the data breach.

Data breaches Insurance Accountability Banking

article thumbnail

National Public Data confirms a data breach

Security Affairs

AUGUST 17, 2024

Background check service National Public Data confirms a data breach that exploded millions of social security numbers and other sensitive information. “There appears to have been a data security incident that may have involved some of your personal information.

Data breaches Hacking Accountability Cybersecurity

article thumbnail

Welcoming the Bulgarian Government to Have I Been Pwned

Troy Hunt

MARCH 28, 2022

Data breaches impact us all as individuals, companies and as governments. Over the last 4 years, I've been providing additional access to data breach information in Have I Been Pwned for government agencies responsible for protecting their citizens.

Government Data breaches

article thumbnail

Omni Family Health data breach impacts 468,344 individuals

Security Affairs

OCTOBER 18, 2024

Omni Family Health disclosed a data breach affecting nearly 470,000 current and former patients and employees. Omni Family Health is notifying nearly 470,000 individuals that their personal information was compromised in a data breach resulting from a cyberattack that occurred earlier this year.

Data breaches Healthcare Insurance Engineering

article thumbnail

FBCS data breach impacted 238,000 Comcast customers

Security Affairs

OCTOBER 7, 2024

238,000 Comcast customers were impacted by the FBCS data breach following the February ransomware attack, Comcast reports. Telecommunications giant Comcast is notifying approximately 238,000 customers impacted by the Financial Business and Consumer Solutions (FBCS) data breach. reads the notice of data breach.

Data breaches Telecommunications Accountability Ransomware

article thumbnail

Fidelity Investments suffered a second data breach this year

Security Affairs

OCTOBER 14, 2024

US-based financial services company Fidelity Investments warns 77,000 individuals of a data breach that exposed their personal information. based financial services company Fidelity Investments is notifying 77,099 individuals that their personal information was compromised in an August cyberattack.

Data breaches Financial Services Accountability Hacking

article thumbnail

Car rental company Avis discloses a data breach

Security Affairs

SEPTEMBER 6, 2024

Car rental giant Avis disclosed a data breach that impacted one of its business applications in August compromising customers’ personal information. Car rental company Avis notified customers impacted in an Augus data breach. ” reads the data breach notification letter sent to the impacted individuals.

Data breaches Identity Theft Cybersecurity Hacking

article thumbnail

Rite Aid disclosed data breach following RansomHub ransomware attack

Security Affairs

JULY 13, 2024

The American drugstore chain Rite Aid Corporation disclosed a data breach following the cyber attack that hit the company in June. The American drugstore chain giant Rite Aid suffered a data breach following a cyberattack in June conducted by the RansomHub ransomware group. 148 in the Fortune 500 in 2022.

Data breaches Ransomware Hacking Insurance

article thumbnail

Kootenai Health data breach impacted 464,000 patients

Security Affairs

AUGUST 14, 2024

Kootenai Health suffered a data breach impacting over 464,000 patients following a 3AM ransomware attack. Kootenai Health disclosed a data breach impacting over 464,088 patients following the leak of their personal information by the ThreeAM (3AM) ransomware gang. ” reads the data breach notification letter.

Data breaches Identity Theft Encryption Ransomware

article thumbnail

MoneyGram discloses data breach following September cyberattack

Security Affairs

OCTOBER 8, 2024

MoneyGram disclosed a data breach following a cyberattack in September, during which threat actors stole customer data. On September 22, the company informed its customers that it was experiencing a network outage impacting connectivity to several of its systems.

Data breaches Government Banking Hacking

article thumbnail

New Atrium Health data breach impacts 585,000 individuals

Security Affairs

DECEMBER 6, 2024

Atrium Health disclosed a data breach affecting 585,000 individuals to the HHS, potentially linked to the use of online tracking tools. Healthcare company Atrium Health disclosed a data breach that impacted 585,000 individuals. The company notified the US Department of Health and Human Services (HHS). added Atrium Health.

Data breaches Identity Theft Accountability Healthcare

article thumbnail

Cybersecurity giant Fortinet discloses a data breach

Security Affairs

SEPTEMBER 12, 2024

Fortinet disclosed a data breach after a threat actor claimed the theft of 440GB of files from the company’s Microsoft Sharepoint server. Last month, the Australian Home Affairs department discovered the data breach involving Fortinet, although it occurred earlier. the spokesman added.

Data breaches Cybersecurity Cybercrime Hacking

article thumbnail

MoneyGram confirms customer data breach

Malwarebytes

OCTOBER 8, 2024

Money transfer company MoneyGram has notified its customers of a data breach in which it says certain customers had their personal information taken between September 20 and 22, 2024. The UK’s Information Commissioner’s Office (ICO) confirmed to TechCrunch that the watchdog had received a report from MoneyGram. “We

Data breaches Identity Theft Passwords Phishing

article thumbnail

The Slow-Burn Nightmare of the National Public Data Breach

WIRED Threat Level

AUGUST 16, 2024

After months of confusion, leaked information from a background-check firm underscores the long-term risks of data breaches. Social Security numbers, physical addresses, and more—all available online.

Data breaches Risk Hacking

article thumbnail

Hackers attempt to sell the personal data of 3 billion people resulting from an April data breach

Security Affairs

AUGUST 4, 2024

operating as National Public Data, exposed the personal information of nearly 3 billion individuals in an April data breach. operating with the National Public Data, exposed the personal information of nearly 3 billion individuals in a data breach that occurred in April. Jerico Pictures Inc.,

Data breaches Hacking Information Security

article thumbnail

Welcoming the North Macedonian Government to Have I Been Pwned

Troy Hunt

APRIL 10, 2022

In my ongoing bid to make more useful information on data breaches available to impacted national governments , today I'm very happy to welcome the 32nd national CERT to Have I Been Pwned, the Republic of North Macedonia!

Government Data breaches

article thumbnail

2024 Exposed: The Alarming State of Australian Data Breaches

Tech Republic Security

SEPTEMBER 24, 2024

Implementing multi-factor authentication, supplier risk-management frameworks, and staff security training could help to reduce data breaches.

Data breaches Authentication Risk Cyber Attacks

article thumbnail

FBI’s Cyberthreat Information Sharing System Breached By Criminals – Entire User Database Believed Stolen

Joseph Steinberg

DECEMBER 14, 2022

The FBI’s InfraGard program, which facilitates the sharing of information about cyberthreats and some physical threats between relevant, vetted parties throughout the public and private sector, has suffered a serious hacker breach. This breach is more than just embarrassing – it is dangerous.

Artificial Intelligence

Artificial Intelligence DNS Cybersecurity Education

article thumbnail

Internet Archive suffers data breach and DDoS

Malwarebytes

OCTOBER 10, 2024

A non-profit that benefits millions of people has fallen victim to a data breach and a DDoS attack. It is often used for academic research and data analysis. Cybercriminals managed to breach the site and steal a user authentication database containing 31 million records. Who stole the database and why is not yet known.

Data breaches DDOS Internet Internet

article thumbnail

Patelco Credit Union data breach impacted over 1 million people

Security Affairs

SEPTEMBER 30, 2024

The ransomware attack on Patelco Credit Union this summer led to a data breach affecting over 1 million individuals, revealed the company. The credit union investigated the security breach and discovered that threat actors first gained access to its systems on May 23, 2024, and exfiltrated a database containing personal information.

Data breaches Ransomware Banking Hacking

article thumbnail

2023 Anna Jaques Hospital data breach impacted over 310,000 people

Security Affairs

DECEMBER 8, 2024

The investigation aimed to determine the extent of the activity, and whether individual personal information, if any, may have been accessed or acquired by an unauthorized third party. As part of the investigation, we engaged leading third-party cybersecurity experts experienced in handling these types of incidents.

Data breaches Insurance Healthcare Ransomware

article thumbnail

TDECU data breach affects half a million people

Malwarebytes

AUGUST 27, 2024

The Texas Dow Employees Credit Union (TDECU) has filed a data breach notification , reporting that the data of 500,474 people has been accessed in an external system breach. Protecting yourself after a data breach There are some actions you can take if you are, or suspect you may have been, the victim of a data breach.

Data breaches Passwords Phishing Password Management

article thumbnail

Alabama State Department of Education suffered a data breach following a blocked attack

Security Affairs

JULY 7, 2024

Alabama’s education superintendent disclosed a data breach following a hacking attempt on the Alabama State Department of Education. The Alabama State Department of Education announced it had thwarted a ransomware attack on June 17, however, threat actors accessed some data and disrupted services before the attack was stopped.

Education Data breaches Banking Hacking

article thumbnail

Finnish Data Theft and Extortion

Schneier on Security

DECEMBER 10, 2020

The Finnish psychotherapy clinic Vastaamo was the victim of a data breach and theft. 22, the cybercriminals began posting batches of about 100 patient records on the dark web and allowing people to pay about 500 euros to have their information taken down. The criminals tried extorting money from the clinic. 21 and Oct.

Data breaches Healthcare Cybercrime Cybersecurity

article thumbnail

Community Clinic of Maui discloses a data breach following May Lockbit ransomware attack

Security Affairs

SEPTEMBER 30, 2024

Community Clinic of Maui experienced a data breach impacting over 120,000 people following a LockBit ransomware attack. LockBit breached the Community Healthcare Clinic of Maui as they are still rebuilding from the devastating fire last year. ” reads the notice of breach published by Malama.

Data breaches Ransomware Healthcare Identity Theft