#databreaches.net

[ follow ]
Databreaches
5 months ago
Privacy professionals

Data breach at Idaho National Laboratory claimed by SiegedSec

Idaho National Laboratory's Oracle Human Capital Management servers were compromised by the SiegedSec hacking operation.
SiegedSec leaked a sample of the stolen information, which included sensitive employee and citizen data. [ more ]
Databreaches
5 months ago
Privacy professionals

Has private financial information been exposed in the cyberattack on CCSD?

Private financial information may have been exposed in the cyberattack on the Clark County School District.
CCSD has not answered questions about whether any financial information was accessed by the hackers.
Some individuals have experienced compromised cards and received notification from the district about their exposed information. [ more ]
Databreaches
5 months ago
Privacy professionals

British Library: Employee data leaked in cyber attack

The British Library experienced a cyber attack in October, resulting in a leak of employee data.
The attack was carried out by the Rhysida ransomware group, who plan to auction off the stolen data.
The stolen data includes passport scans and the price for it has been set at 20 Bitcoin. [ more ]
Databreaches
5 months ago
Privacy professionals

FCC adopts new rules to protect consumers from SIM-swapping attacks

FCC introduces new rules to protect consumers from SIM swapping attacks and port-out fraud
The regulations aim to prevent scammers from accessing personal data by hijacking phone numbers [ more ]
Databreaches
5 months ago
Privacy professionals

K-12 schools improve protection against online attacks, but many are vulnerable to ransomware gangs

Some K-12 public schools are vulnerable to ransomware attacks due to lax cybersecurity measures.
Federal officials are urging more schools to take advantage of programs to better secure their networks. [ more ]
Databreaches
5 months ago
Privacy professionals

A Hacker Faked His Own Death-Then Claimed To Have Sold Marriott Customer Data To Russians, FBI Says

A hacker reportedly sold access to the personal data of Marriott hotel customers on a Russian forum.
The hacker also allegedly hacked into U.S. state death certificate registration agencies. [ more ]
Databreaches
5 months ago
Business intelligence

Sg: 665,000 MBS members data leak: Govt to investigate if there was 'significant harm'

Marina Bay Sands announced a breach of personal data affecting 665,000 MBS LifeStyle reward members.
The Singapore government discussed the data breach during a parliamentary sitting. [ more ]
Databreaches
5 months ago
Business intelligence

Logs missing in 42% cyberattacks; small business most vulnerable: Report

42% of analyzed cyberattacks had missing telemetry logs.
82% of the attacks involved cybercriminals deliberately disabling or eradicating telemetry.
83% of the attacks originated from organizations with fewer than 1,000 employees. [ more ]
Databreaches
5 months ago
Education

Illuminate Education Defeats Data Breach Lawsuit for Second Time

The proposed class action against Illuminate Education Inc. alleging a data breach was defeated.
The plaintiffs failed to show concrete harm or immediate risk of future harm. [ more ]
Databreaches
5 months ago
Education

Georgia School District Goes Offline After Suspicious Activity

Henry County Schools is investigating 'suspicious activity' that led to the district restricting Internet access.
The Internet restrictions have been in place since last week but student services and other district operations are still functional.
The Superintendent did not disclose the specifics of the suspicious activity in the video. [ more ]
Databreaches
5 months ago
Privacy professionals

UK: Former NHS secretary found guilty of illegally accessing medical records

A former NHS employee has been fined for illegally accessing medical records of over 150 people.
The employee accessed the records without consent or a business need.
The Information Commissioner's Office took action and the employee pleaded guilty. [ more ]
Databreaches
5 months ago
Privacy professionals

Australian Privacy Regulator Sues in MedLab Pathology Data Breach Case

The Australian Information Commissioner has filed proceedings against Australian Clinical Labs Limited for a data breach response.
This is only the second time the Australian regulator has brought court proceedings of this kind since 2014.
The maximum penalty available in this case will be A$2.2 million. [ more ]
Databreaches
5 months ago
Privacy professionals

Does claiming you were hacked when you had really just screwed up violate the FTC Act?

Data breach notification laws should mandate more transparency and prohibit deceptive statements.
The breach at the Endocrine & Psychiatry Center in Texas raises questions about the accuracy of the disclosure.
The notification letter from the center describes the incident as a "recent" one although it occurred months ago. [ more ]
Databreaches
5 months ago
Privacy professionals

States settle with Morgan Stanley for $6.5 million over data security incidents

Morgan Stanley has reached a $6.5 million agreement with six attorney generals after an investigation found that the company compromised customer personal information.
The investigation discovered that Morgan Stanley failed to properly dispose of devices containing customer information and did not monitor the moving company that sold the equipment.
Attorney General Ashley Moody stated that Morgan Stanley put millions of customers' personal information at risk and must now pay $6.5 million and improve data protection. [ more ]
Databreaches
5 months ago
Privacy professionals

Systems East, Inc. notifies 209,000 consumers after database with some payment card info was hacked

SEI, a payment solutions provider, reported a data breach where an encrypted database containing payment cardholders' information was copied.
SEI was unable to confirm if the perpetrator could decrypt the information, and no additional personal information was compromised. [ more ]
Databreaches
5 months ago
Privacy professionals

NTMC database exposed personal info to open web: report

The National Telecommunication Monitoring Centre (NTMC) in Bangladesh has exposed a database to the open web, leaking extensive data.
The leaked data includes names, professions, blood groups, phone numbers, call lengths, vehicle registrations, passport details, and fingerprint photos.
The director general of NTMC denies the information about the data leak. [ more ]
Databreaches
5 months ago
Privacy professionals

CMS Notifies Additional Individuals Potentially Impacted by MOVEit Data Breach

CMS and Maximus Federal Services are sending letters to 330,000 people with Medicare notifying them of a data breach and offering free credit monitoring services.
The breach occurred due to a security vulnerability in the MOVEit software used by Maximus Federal Services.
Impacted individuals may also receive a new Medicare card with a new number. [ more ]
Databreaches
5 months ago
Privacy professionals

Data security breach at Beaverton School District

Beaverton School District hit by cybersecurity breach compromising student passwords.
District discovered incident and plans to reset system; accounts unavailable after reset.
Students can reset passwords and access accounts at school on Wednesday. [ more ]
[ Load more ]