Jai Vijayan reports: Memory-scraping tools that surreptitiously copy and export data from running processes have pretty much been the only malware that threat actors have used in recent years to steal credit and debit card data from Point-of-Sale (POS) systems. But that doesn’t mean that other options don’t exist. Security vendor SecureWorks this week said…
Month: December 2016
The Medical Reports Of 43,000 People, Including HIV Patients, Were Accidentally Released Online
Pranav Dixit reports: The medical records of over 43,000 people have been accidentally made public after being put online by a pathology lab in Mumbai. The reports contain confidential details like names, addresses, dates of birth, and blood test results. They also include details of patients who have had blood tests done for HIV detection….
Sagewood notifies 863 employees and residents of cyber attack
LCS Westminster Partnership IV, LLP d/b/a Sagewood, is reporting what they describe as a ransomware attack without any ransom demand: Sagewood, a retirement community located at 4555 E Mayo Blvd. in Phoenix, has notified 800 current and former residents and the Department of Health and Human Services of a cyber breach. Sagewood promptly investigated the…
Data breach exposed locations of oil industry explosives, handler credentials
Dell Cameron reports: A misconfigured storage device discovered by a security researcher in October left exposed thousands of internal files belonging to an explosives-handling company. The files, which have since been secured, reportedly included details about facilities in three U.S. states where explosives are stored. The leaky file repository belonged to Allied-Horizontal Wireline Services(AHWS), a leading wireline company…
‘Avalanche’ network dismantled in international cyber operation
From Europol, today: On 30 November 2016, after more than four years of investigation, the Public Prosecutor’s Office Verden and the Lüneburg Police (Germany) in close cooperation with the United States Attorney’s Office for the Western District of Pennsylvania, the Department of Justice and the FBI, Europol, Eurojust and global partners, dismantled an international criminal infrastructure platform known as…
OptumHealth New Mexico notifies 2,006 members of breach
On Nov. 17, OptumHealth New Mexico began notifying members that a flash drive, mailed by an unnamed vendor on September 16, was discovered on September 26 to have been lost in the postal mail. From their FAQ on the incident: The information contained on the flash drive included individuals’ name and a full or partial date of birth,…