Carly Page reports: Pearson, a London-based publishing and education giant that provides software to schools and universities has agreed to pay $1 million to settle charges that it misled investors about a 2018 data breach resulting in the theft of millions of student records. The U.S. Securities and Exchange Commission announced the settlement on Monday after the…
Category: Business Sector
Colonial Pipeline notifying 5,810 people whose PII and PHI were caught up in DarkSide breach
On August 13, external counsel for Colonial Pipeline notified the Maine Attorney General’s Office that on July 1, the firm’s investigation into the May DarkSide ransomware attack revealed that personally identifiable and protected health information for some people had been accessed: Based on our investigation, we recently learned that the incident affected certain of your…
Destination Maternity notifying 93,776 employees of hacking incident
New Jersey-headquartered Destination Maternity is notifying 93,776 employees about an incident that occurred between March 16 and April 13 of this year. The breach was discovered on June 11. According to their letter of August 13, a copy of which was provided to the Maine Attorney General’s Office, an unauthorized party gained access to certain…
Ford bug exposed customer and employee records from internal systems
Ax Sharma reports: A bug on Ford Motor Company’s website allowed for accessing sensitive systems and obtaining proprietary data, such as customer databases, employee records, internal tickets, etc. The data exposure stemmed from a misconfigured instance of Pega Infinity customer engagement system running on Ford’s servers. Read more on BleepingComputer.
T-Mobile Investigating Claims of Massive Customer Data Breach
Joseph Cox reports: T-Mobile says it is investigating a forum post claiming to be selling a mountain of personal data. The forum post itself doesn’t mention T-Mobile, but the seller told Motherboard they have obtained data related to over 100 million people, and that the data came from T-Mobile servers. The data includes social security…
Hackers stole client info, work materials in Accenture ransomware attack
Tim Starks reports: Ransomware hackers began leaking Accenture data after the consulting giant suffered a security incident where the perpetrators made off with client-related documents and work materials. The gang, known as LockBit 2.0, has threatened to leak further after providing purported proof of the breach. Accenture acknowledged the attack on Wednesday, but has downplayed…