Lorenzo Franceschi-Bicchierai reports: The anonymous message board app Yik Yak is designed in a way that it is possible to get the precise location of a user’s post, and see users’ unique IDs, potentially allowing someone to dox and stalk users, according to a researcher. […] In April, David Teather, a computer science student, analyzed…
Category: Business Sector
2022 DSIR Deeper Dive: Vendor Incidents
Stefanie Ferrari of BakerHostetler writes: Vendor-caused incidents continued to surge in 2021. Nearly 20 percent of the total incidents we handled last year were caused by vendors, with more than half requiring notification. As in prior years, vendor incidents involved phishing schemes and inadvertent disclosures but primarily resulted from ransomware attacks on the vendors’ systems….
Cyberattack at Opus Interactive knocks Ruby Receptionists offline, disrupting service for thousands
Mike Rogoway reports: Ruby Receptionists, the Portland company that serves as a phone receptionist for thousands of small businesses, has suffered a major outage that knocked it offline all week. One of Ruby’s online vendors was hit by a cyberattack that left the company unable to accept any incoming calls or online messages, CEO Kate…
Boca Raton Attorney Allegedly Leaked Clients’ Confidential Files
Joshua Ceballos reports: All Priscilla Haring wanted from her divorce attorney, Richard Glenn Ozelie, was a divorce. But, according to her complaint filed in Broward civil court in March, what she got instead was scores of confidential files belonging to “a minimum of 96 individuals” — a potentially huge breach of ethics by her erstwhile attorney. Read more…
Ontario Cannabis Store confirms data leak, Ontario Provincial Police opens investigation
David Brown reports: OCS confirms that confidential store sales data from the provincial cannabis distributor was leaked to the public. Following reports online from cannabis retailers in Ontario in April, the OCS [Ontario Cannabis Store] sent out a letter to retailers and licensed producers confirming that the data leak occurred without the OCS’ permission. Although…
Personal details of 21M SuperVPN, GeckoVPN users leaked on Telegram
Waqas reports on a leak spotted by VPNMentor: In total, the database contains 10GB worth of data from companies like SuperVPN, GeckoVPN, and ChatVPN which is now available for free download on several different Telegram groups. On May 7th, 2022, a database containing the personal details and login credentials of 21 million users was leaked…