Dark Reading reports: Sequoia Capital last week warned investors that some of their personal and sensitive information may have been exposed in a recent data breach of the firm. According to reports, Sequoia said the data may have been accessed by a third party in the breach, which occurred as a result of a successful phishing attack on an employee via email….
Month: February 2021
PH: NPC finds data breach in cash-loaning app
Bernie Cahiles-Magkilat has an update on the Cashalo breach, noted previously. The National Privacy Commission (NPC) said its initial findings showed data breach on cash-loaning application Cashalo where a certain user was found selling personal information of 3.3 million users. NPC said this following its preliminary probe on the data security issue of Cashalo, which…
Transport for NSW confirms data taken in Accellion breach
Aras Barbaschow reports: Transport for New South Wales (TfNSW) has confirmed being impacted by a cyber attack on a file transfer system owned by Accellion. Read more on ZDNet.
Cybercriminal sells credentials of French hospital workers
François Manens reports (translation): 50,000 user accounts of French hospital agents are for sale on a cybercriminal forum. This data could allow buyers to access the computer networks of certain health establishments. Once introduced to the system, criminals can deploy their ransomware and cripple the hospital. New alert for French hospitals, this time launched by the monitoring site…
Fr: The city of Chalon-sur-Saône victim of a cyberattack
Le Dauphine reports (translation): After the Villefranche-sur-Saône hospital or even the Dax hospital , it is the turn of the city and the agglomeration of Chalon-sur-Saône to be victims of a cyberattack. In the night from Saturday to Sunday, the computer systems were affected by “a crypto-virus”, told Frédéric Iacovella, director general of the services of the City and…
Follow-up: Data from the Toledo Public Schools attack by Maze reportedly being misused
In September, DataBreaches.net reported that Maze threat actors claimed to have attacked an Ohio public school district, but the district was not responding to inquiries from this site about the claims. One month later, this site named the district as Toledo Public Schools and reported that while Maze had dumped files with student and employee…