MacKeeper Security Researcher Chris Vickery has found yet another misconfigured database with U.S. voter information and profiles. This one has 154 million records. See my report about it over on the Daily Dot. One day maybe our government or state attorneys general will start actually enforcing some data security on those who create these massive…
Month: June 2016
Ca: Personal Health Data Breach Triggers Trillium Hospital Class Action
The following is a press release: A proposed class action for a breach of privacy has been commenced against Trillium Health Partners, Mississauga Ophthalmologist Dr. Tony Vettese, and his assistant, Lisa Lyons. Mississauga businesswoman and Trillium patient Katie Mallinson has alleged that Lyons used her access to Trillium’s entire database to secretly review the confidential…
ME: Portland Jetport loses thumb drive with personal info of 950 employees
The Bangor Daily News reports: The Portland Jetport says it’s lost or misplaced a USB thumb drive containing personal information of 950 employees. The personal information includes names, addresses, dates of birth and social security numbers. Read more on BDN. The Portland Press Herald adds that the drive, which also includes the personal information of…
LinkedIn data breach blamed for multiple secondary compromises
Steve Ragan reports: The LinkedIn compromise has been linked to a number of confirmed incidents where data exfiltration has taken place. It’s possible these incidents are only the tip of the iceberg though, as many of the organizations compromised are service providers with access to customer networks. […] Multiple industry sources have shared additional details…
Motherboard publishes full chat logs with “Guccifer 2.0”
Lorenzo Franceschi-Bicchierai reports: We spoke to the hacker who claimed to have broken into the servers of the Democratic National Committee, who goes by the name of “Guccifer 2.0,” in reference to the notorious hacker who leaked the George W. Bush paintings and recentlyclaimed to have hacked Hillary Clinton’s email server. In the interest of…
Carbonite forces password reset after password reuse attack
Should a company force an entire user password reset proactively because some users’ credentials, obtained elsewhere, are being used to attempt to steal their data? Carbonite, a provider of online computer and server backup services, notified its more than 1.5 million individual and small business customers that they were forcing a password reset. The reset, announced…