In a recent interview with Yelisey Boguslavskiy, “UNKN” of the threat actors known as REvil (Sodinokibi) indicated that they were planning a major attack on a gaming network. Today, the threat actors added GPI (Gaming Partners International) to their dedicated leak site. GPI describes itself as a leading provider of casino currency and table game…
Month: October 2020
“We take your privacy seriously,” Saturday edition
As part of my research collaboration with Protenus for their Breach Barometer reports, I spend time every week reaching out to entities to ask them for details about incidents if I cannot find any notice on their site or a state attorney general’s site. Most entities respond with the requested information or a copy of…
New Haven Health Department failed to terminate former employee’s access to protected health information
The City of New Haven, Connecticut (New Haven) has agreed to pay $202,400 to the Office for Civil Rights (OCR) at the U.S. Department of Health and Human Services (HHS) and to implement a corrective action plan to settle potential violations of the Health Insurance Portability and Accountability Act (HIPAA) Privacy and Security Rules. The…
Personal data of 1.1 million RedMart user accounts stolen in Lazada breach and put up for sale
Lester Wong reports: The personal information of 1.1 million RedMart user accounts was stolen from a customer database and put up for sale on an online forum. A spokesman from e-commerce giant Lazada, which owns e-grocer Redmart, confirmed the data breach yesterday and said that the personal information stolen included names, phone numbers, e-mail, mailing…
Home Depot Confirms Data Breach in Order Confirmation SNAFU
Tara Seals reports: Home Depot has exposed the private order confirmations of hundreds of Canadian consumers, containing names, physical addresses, email addresses, order details and partial credit-card information. After customers began reporting that they had received hundreds of emails from the home-improvement giant, each containing an order confirmation for a stranger, the company confirmed the…
NH: Info may be stolen in Salem computer attack
Breanna Edelstein reports: Town officials still offline after a cybersecurity breach last week recently learned attackers were able to access internal systems, according to Town Manager Chris Dillon. At about 3:15 a.m. on Oct. 21, the town became the victim of “a sophisticated cybersecurity attack involving ransomware,” Dillon said in a statement. Read more on…