A 6GB database, which allegedly contained personal information on 16 million users has been leaked.
An insider case in cryptocurrency sphere and "The great data exfiltration"
Detail of two more data leaks revealed
An American resident managed to earn $25 million by a phone unlocking and unblocking service.
Recently, plenty of news on fines imposed due to information security incidents have been published. Let’s have a look at a few significant cases, which took place lately.
Central Florida construction firm has recently experienced a data breach. An employee stole a massive of confidential data just before resignation.
Details of one of the biggest data leak ever.
Colorado Springs Utilities notified their customers via email that sensitive data was obtained by an “unauthorized party”. The problem appeared to be on a subcontractor side. The name of the company remains unrevealed due to “security reasons”.
Due to a security misconfiguration by third-party IT-solution provider, Razer's client's data was at a stake of being exposed.
Recently the National Cyber Security Centre (NCSC) and the Information Commissioners Office (ICO) published a joint letter, addressed to the Law Society. The document contains a request for solicitors to stop advising clients to pay ransoms.
This time, one of the largest nonfungible token (NFT) marketplace experienced an insider related data leak. OpenSea company’s email list, which includes email addresses of users and subscribers to newsletter, was illegally accessed and downloaded by an employee of Customer.io, one of OpenSea’s email vendors.
Avaya system administrator was accused of fraud. It was stated that together with accomplices he sold software with additional options for IP-ATC. The overall sum of their financial operations exceeds $88 million.
CafePress got its consumers’ sensitive personal data, including Social Security numbers, exposed. The claim against Residual Pumpkin Entity, former owner of CafePress and PlanetArt, current owner of CafePress was filled by the Federal Trade Commission. The main issue of the claim is that the organization had failed to ensure safety of client’s personal data (including Social Security numbers), and covered up the data breach.
General Motors, one of the leading car manufacturer accepted the fact, that last month cybercriminals managed to conduct the credential stuffing attack.
Internal risks are still underestimated.
Dangerous zero-day vulnerabilities are eliminated by Apple.
New era in post-quantum cryptography standards.
According to Bloomberg, in the middle of 2021 Apple, Meta and Discord staff sent hackers their clients’ data
Users' personal data was sent hackers by mistake.
RATP data has been exposed via an unprotected server.
Otario immunisation system has launched investigation and found an insider.
The recent news might be another case to add to the list of ransomware notches
Organisation still lack basic information security solutions.
The company's staff is aware of what information security is, and disregard to data safety decreases the loyalty of workers.
Malware attacks are on the rise
The incident is gaining resonance
Australian public sector is concerned with the growing number of information leakage episodes due to employee mistakes.
Several information security incidents which have happened recently are all based on utter carefreeness
Ransomware-related data breaches rose by 24%, the cost of a breach - by 15%.
Ministry of Digital Development prepares a regulatory framework for transferring state employees to state-owned platforms by December 2021.
Over 1,000 UK Special Forces soldiers got their data exposed. The document containing their personal data was distributed via WhatsApp.
The APAC countries are concerned about growing information security risks
According to the recent report it seems that roughly half of companies don't know how to deal with third-party security
Telegram bot and the growing number of scammers
The investigation into the Ledger compromised security case was launched after the data breach which dates back to June 25, 2020.
One of the world’s biggest plane makers got its data leaked.
The spreadsheet was found on GitHub
Another misconfigured Amazon Web Services (AWS) S3 bucket
New Haven, Connecticut, didn’t deny access and left confidential health information available to a former employee.
The HIPAA (the Health Insurance Portability and Accountability Act) has exacted a $1 million penalty from Aetna, U.S. health care insurance company.
A former employee has compromised more than 1600 patient records.
4000 patients records appeared to be exposed over the past few years.
BYOD might face some critics, as usage of personal devices led to a data breach.
538 senior specialists mitigating security risks took part in the survey.
Each third employee considers information security within a company an average or a massive issue.
500 organisations which experienced data breaches were studied during the survey.
A Nevada-based company's employee was bribed by a Russian fraudster to install a malware within the corporate network.
The federal prosecutors of the US charged Uber’s former chief security officer, Joe Sullivan for his attempt to cover-up this massive breach.
Patient details, telecom user data, low security level at a university - data breaches have already become frequent in the healthcare, telecom and education sectors.
Bleeping computer detected and reported the breach
Ransomware scammers have enough time and dark web - enough space till launched investigations get carried out.
The pandemic makes violators reactivate and invade the systems of companies helping healthcare during the lockdown
Unauthorise access is a pressing problem for the healthcare industry which might only escalate amid the current situation.
T-Mobile and Verizon are among the telecommunications companies on the verge of a huge penalty
97% of IT specialists are sure that incidents due to an insider can have a big impact
Phishing and unprotected databases have become reasons for serious leakage this week
Mitsubishi Electric reported the data breach which triggerred the company's attention in summer.
6 out of 10 businesses dealt with a data breach during the past three years
1000 New Year Honour recipients’ data exposed online, thousands of Skype calls listened to without security protection, a dismissed co-founder stole €1,1 million to revenge.
A former employee of a hospital in New York City pled guilty to fraudulent activity.
Ericsson company is to pay a $1 billion fine admitting to bribing government authorities during 17 years.
The resources were stolen and put up for sale on the black market.
An employee at Nebraska Medicine was dismissed after the unauthorised access to patients’ data was discovered.
Account details and messages got compromised due to an unencrypted database
The costly programme compromised personal data of New Zealand citizens
Unprotected database is detected and reported to Adobe
Misconfigured databases in the cloud keep being a relevant security issue.
Ping Identity has provided markets with the new research
Cyber Insecurity: Managing Threats From Within study surveyed 300 C-suit specialists
The U.S. Defense Intelligence Agency brings to justice their offender who leaked classified information to journalists.
Standard DLPs which primary concern of is limited by not letting employees send data outside the network aren't efficient
4.9 million customers, employees and the company’s independent contractors had their personal data compromised.
Half of employees admit that staffers retain access rights which they are no longer authorised to keep
52% of employees who were reassigned to other jobs still have access to the data which isn’t related to their new tasks.
Reportedly 30 million Malindo Air passengers got their data compromised in a third-party leak.
The exposed information on telecoms used for surveillance became public by a Nokia employee.
More than 16 million people in Ecuador got their data exposed in an online leak
Former FBI director, James Comey, took confidential data home after he left the bureau.
An employee sabotaged the plant's work
Google and Apple suspend reviewing of audio recorded by voice assistants for recognition enhancement.
NASA, Yahoo, Google, Zendesk, Informatica, 1password, Lenovo, and some government institutions got their data open to public
An equity sales person still had the access to the corporate email after being dismissed
The company has signed a settlement to manage all the lawsuits brought due to the data breach which occurred in 2017.
It took investigation specialists a year to bring the case to trial
10 months ago the company was informed about the leak by a client, and only now the details get exposed.
The incident is said to outdo the case stirred up by Snowden
An investigation of a marijuana case brought to the discovery of highly confidential files at the house of a contractor
Eight people have been arrested for exposing officers’ personal data online.
Attunity, a data management company, has compromised loads of information stored in Amazon S3 buckets
Equifax and UBS former employees are facing a sentence and a fine
The agency is to comply with Personal Information Protection Act and Cyber Security Management Act
“Most client information involved in the breach was in email attachments,
Desjardins, the largest federation of credit unions in North America, has headlined data leak news
The breach has made the company to begin liquidation process
Personal Health Information (PHI) appears to be more profitable than other kinds of personal details
whereas 61% of IT specialists claim they would hide the details of a data breach
The data could have been exposed since 2017
India’s third-biggest IT services company leaks employees' data and project details, Instagram should check the security level of third-parties
Australian report and phishing in Oregon
A former DJI employee fined $29,000 and faces a 6-month sentence
A former system administrator in the office of Senator Hassan exposed the personal details in response to his dismissal
A Newham Council employee sent an email with unedited confidential data to 44 external organisations
Staff members of the accounting oversight body took the jobs at KPMG and brought the inspection information details with them
A data leak identified by a Dutch expert revealed China tracking more than 2.5 million people in Xinjiang.
...an unprotected Elasticsearch server got discovered, Twitter disregards its own privacy settings
While Singapore Health Services pay 1 million Singapore dollars due to a major patient data leak
Media discloses the breach which Wright County has been aware of for 7 months
The company has taken measures to maintain an in-depth probe process and punish more offenders
Records were handed over to the head of UK Parliament Select Committee bypassing the US lawsuit
An unsecured server and a website vulnerability
Yahoo users will be paid for getting their data compromised, Internet Solutions announces a breach after warning their clients
U.S. report two state-level leaks, Henderson ISD transfers more than half a million dollars to a fraudulent account
Facebook and the Coservative Party are to conduct a rigorous investigation into the recent major breaches
Data of 250 000 people compromised in Wisconsin, citizens' social security numbers got attached to arrest warrants
Governments store sensitive information on public boards, healthcare details get misused
On 14 July, 2018, Donald Trump turned 72. The White House has never seen so many leaks.
Law enforcement officers notified the company of the data leak. It is still unknown whether the purpose was to steal personal information
Those who inform authorities and journalists on corporate misrule will be encouraged to talk
A 32-year-old artist from Beijing, Deng Yufeng, wanted to create an installation which would make people think of their personal data and confidentiality.
Only 27% of companies believe that the CISO and security team have to control the compliance of GDPR requirements.
The U.S. Securities and Exchange Commission (SEC) filed charges against seven men who were involved in the trading on confidential information.
He failed to cover up traces of the unauthorized access and admitted his guilt six months past the incident.
The court sentenced the violator to probation and fine.
Breached Adult Friend Finder database includes more than 412 million records about users. This is the most large-scale incident, at least since 2016 beginning.
The attack in 2013 threatened data of more than 500 thousand users. The authorities accused the company of improper protection of information.
The leaked database contains information about 550 thousand users who filled out the questionnaire on the organization web-site from 2010 to 2016.
More US companies are preparing a data breach response plan but management often doubt its efficiency.
According to the Breach Level Index database, in six months 974 leakages occurred worldwide. In 29 of them, over one million data records were leaked.