WCPO reports: Health insurance giant Aetna announced Friday that a CD containing 850 Ohio customers’ personal information, including names, addresses, phone numbers and some Social Security numbers, was lost in the mail in September. According to a news release from the company, Aetna Signature Administrators had mailed the CD containing member information to another office…
Month: December 2016
Pakistan automotive giant PakWheels Hacked, 700k accounts stolen
The operative word is “outdated.” Uzair Amir reports: PakWheels, a famous automotive classified website in Pakistan has revealed that their server was breached by an unknown third party exposing personal data of registered users. In an email sent to users on 26th December, the site explained that hackers were able to conduct this breach by exploiting a known vulnerability…
The Netherlands: almost 5500 data breaches notified in 2016
Richard van Schaik and Róbin de Wit write: The Dutch Personal Data Protection Authority (Autoriteit Persoonsgegevens, “AP”) revealed that almost 5500 data breaches have been notified since the legislation on mandatory data breach notification duties entered into force on 1 January 2016. Pursuant to this legislation, it is mandatory for all types of data controllers…
CT: Former Shelton High School student arrested for hacking school system’s server
Samantha Schoenfeld reports: A teenager has been arrested after police say the teen hacked his school district’s computers. According to Shelton Police, a former Shelton High School student was arrested on Thursday and charged with computer crimes in the third degree. The teen is being held in juvenile detention and will be in court Friday. Police say that between November and…
Pager system hack resulted in HIPAA breach for Providence Health & Services
A while back, I was shown some live-streaming of a pager system that was being used in what appeared to be a hospital environment, as the pages included room numbers, patient medication information, etc. Unable to figure out what entity or organization was responsible for the system and the exposure as pages flew by rapidly,…
GRIZZLY STEPPE – Russian Malicious Cyber Activity
Joint Analysis Report Reference Number: JAR-16-20296 December 29, 2016 Summary This Joint Analysis Report (JAR) is the result of analytic efforts between the Department of Homeland Security (DHS) and the Federal Bureau of Investigation (FBI). This document provides technical details regarding the tools and infrastructure used by the Russian civilian and military intelligence…