Stefanie Ferrari of BakerHostetler writes: Vendor-caused incidents continued to surge in 2021. Nearly 20 percent of the total incidents we handled last year were caused by vendors, with more than half requiring notification. As in prior years, vendor incidents involved phishing schemes and inadvertent disclosures but primarily resulted from ransomware attacks on the vendors’ systems….
Category: Business Sector
Cyberattack at Opus Interactive knocks Ruby Receptionists offline, disrupting service for thousands
Mike Rogoway reports: Ruby Receptionists, the Portland company that serves as a phone receptionist for thousands of small businesses, has suffered a major outage that knocked it offline all week. One of Ruby’s online vendors was hit by a cyberattack that left the company unable to accept any incoming calls or online messages, CEO Kate…
Boca Raton Attorney Allegedly Leaked Clients’ Confidential Files
Joshua Ceballos reports: All Priscilla Haring wanted from her divorce attorney, Richard Glenn Ozelie, was a divorce. But, according to her complaint filed in Broward civil court in March, what she got instead was scores of confidential files belonging to “a minimum of 96 individuals” — a potentially huge breach of ethics by her erstwhile attorney. Read more…
Ontario Cannabis Store confirms data leak, Ontario Provincial Police opens investigation
David Brown reports: OCS confirms that confidential store sales data from the provincial cannabis distributor was leaked to the public. Following reports online from cannabis retailers in Ontario in April, the OCS [Ontario Cannabis Store] sent out a letter to retailers and licensed producers confirming that the data leak occurred without the OCS’ permission. Although…
Personal details of 21M SuperVPN, GeckoVPN users leaked on Telegram
Waqas reports on a leak spotted by VPNMentor: In total, the database contains 10GB worth of data from companies like SuperVPN, GeckoVPN, and ChatVPN which is now available for free download on several different Telegram groups. On May 7th, 2022, a database containing the personal details and login credentials of 21 million users was leaked…
NZ: Data breach on AA Traveller website
RNZ reports: AA Traveller said the website was in use between 2003 and 2018 and allowed customers to make travel bookings, enter competitions and take part in surveys. In a statement on its website AA Traveller said it “recently discovered a vulnerability in the application where the AA Traveller information was stored and that an…