Zack Whittaker reports: After disclosing a breach earlier this week, Stack Overflow has confirmed some user data was accessed. In case you missed it, the developer knowledge sharing site confirmed Thursday a breach of its systems last weekend, resulting in unauthorized access to production systems — the front-facing servers that actively power the site. The…
Month: May 2019
TeamViewer Confirms Undisclosed Breach From 2016
Sergiu Gatlan reports: TeamViewer confirmed today that it has been the victim of a cyber attack which was discovered during the autumn of 2016, but was never disclosed. This attack is thought to be of Chinese origins and utilized the Winnti backdoor. The company behind the highly popular TeamViewer remote desktop software told German publisher Der Spiegel that…
Unsecured Survey Database Exposes Info of 8 Million People
Lawrence Abrams reports: An unsecured database has exposed the personal information of 8 million people from the U.S. who participated in online surveys, sweepstakes, and requests for free product samples. […] Sanyam Jain, an independent security researcher and member of the GDI Foundation, discovered an unsecured Elasticsearch database that exposed the personal information of 8 million people who…
Analysis of ransomware used in Baltimore attack indicates hackers needed ‘unfettered access’ to city computers
Ian Duncan and Christine Zhang report: Officials in the eastern North Carolina city of Greenville arrived to work one morning in early April to find the files on some 800 of their computers locked up. More than five weeks later, they’re still recovering from the debilitating cyberattack. The city of around 92,000 realized April 10…
Salesforce outage hits when firm tries to stop data leak
From the we-tried to fix-the-frying-pan-now-about-that-fire dept., Michael Novinson reports: Salesforce told customers on Saturday Australian time that it is experiencing a “major issue with its service” and is attempting to resolve it as quickly as possible. At the time of writing the firm’s status page said the incident impacts “several Salesforce NA and EU instances”…
Cancer Treatment Centers of America notifies patients after phishing attack on employee email account
Cancer Treatment Centers of America has been sending notification letters to patients whose protected health information was in an employee email account that was compromised by a phishing attack. The employee works at the Southeastern Regional Medical Center. The attack took place on March 10, 2019, and the attacker was potentially able to access the…