Catalin Cimpanu reports: An unidentified hacker has breached Bycyklen —Copenhagen’s city bikes network— and deleted the organization’s entire database, disabling the public’s access to bicycles over the weekend. The hack took place on the night between Friday, May 4, and Saturday, May 5, the organization said on its website. Bycyklen described the hack as “rather…
Month: May 2018
Android App With 10 Million Downloads Left Users’ Photos and Audio Messages Exposed to Public
Lorenzo Franceschi-Bicchierai reports: An Android app with more than 10 million downloads left users’ selfies, pictures, audio messages, and other sensitive data exposed online for all to see. The app, called Drupe, was once named a “Google Play Editor’s Choice.” […] But its developers made a huge mistake. Until this week, Drupe users were unknowingly…
Superintendent sheds more light on system breach
The Leominster schools superintendent revealed more details about the recent ransomware attack that resulted in them paying a $10,000 ransom to get a decryption key from the attackers. Peter Jasinski reports: …. According to Deacon, the attack, which took place on the night of April 14, had affected 25 computer systems, 13 servers, and 11…
UK: Data stolen in Sheffield Credit Union cyber attack
BBC reports: The personal data of about 15,000 members of a credit union has been stolen in a cyber attack. Sheffield Credit Union (SCU) said information including names, addresses, national insurance numbers and bank details had been accessed. The attack happened in February but only came to light recently after hackers threatened to publish the…
The Oregon Clinic notifies patients after employee email account hacked
From their press release: The Oregon Clinic announced today that a data security incident may have affected protected health information (PHI) within an email account. On March 9, 2018, The Oregon Clinic learned that an unauthorized third party accessed an email account. The Oregon Clinic immediately disabled the unauthorized access to the account and began…
Protection of Patient Health Information at Navy and Air Force Military Treatment Facilities
Audit: DODIG-2018-109 (pdf) From the audit’s findings: Officials from the DHA, Navy, and Air Force did not consistently implement security protocols to protect systems that stored, processed, and transmitted EHRs and PHI at the locations tested. Specifically, we identified issues at the Naval Hospital Camp Pendleton; San Diego Naval Medical Center; USNS Mercy; 436th Medical…