Friday, August 27, 2021 On February 5, 2021, Goodwin Procter LLP (“Goodwin”) notified Beaumont Health (“Beaumont”) of a security incident at Accellion, a third-party vendor whose File Transfer software was used by Goodwin for large file transfers on behalf of clients, including Beaumont. Goodwin received some personal and protected health information from Beaumont in connection…
Author: Dissent
Indonesia probes suspected data breach on COVID-19 app
Reuters reports: Indonesia is investigating a suspected security flaw in a COVID-19 test-and-trace app that left exposed personal information and the health status of 1.3 million people, a health ministry official said on Tuesday. Researchers from encryption provider (sic) vpnMentor said personal information in the Indonesia Health Alert Card (eHAC) app, often required to be used…
Bangkok Air confirms passenger PII leak after ransomware attack
Catalin Cimpanu reports: Bangkok Airways, the second oldest and the third biggest airline company in Thailand, has admitted last week that hackers stole passenger information during a security breach following a ransomware attack. The airline confirmed the breach in a press release last Thursday, a day after a ransomware gang known as LockBit posted a message…
Hackers Steal Data from Neuchâtel Cantonal Bank
FInews reports: There was a cyber attack on the Neuchâtel Cantonal Bank (BCN) at the beginning of August, spokeswoman Marie-Laure Chapatte, told the «AWP» news agency (in German), resulting in the potential theft of around 1,500 email addresses. Neither the banking infrastructure – such as the online banking platform – nor other sensitive systems were affected by the…
DuPage Medical Group notifying 600,000 patients that their personal information may have been compromised in cyberattack
Lisa Schencker reports: DuPage Medical Group is notifying 600,000 patients that their personal information may have been compromised during a July cyberattack. DuPage Medical Group, which is the state’s largest independent physicians group, experienced a computer and phone outage that lasted nearly a week in mid-July. The group worked with cyber-forensic specialists to investigate the incident and…
Cream Finance loses $25 million in another security breach
Ibiam Wayas reports: For the second time in six months, popular decentralized lending protocol Cream Finance has suffered another attack due to a “reentrancy bug,” according to blockchain security and data analytics company, PeckShield. The protocol’s development team confirmed the incident on Twitter, noting that AMP tokens and Ether (ETH) were lost. Read more on Cryptopolitan.