Adam Bannister reports: Covve, the popular address book app, has been identified as the source of a data breach that exposed the details of nearly 23 million individuals. Troy Hunt, founder of Have I Been Pwned?, tweeted on Saturday (May 16) that the app had been pinpointed as the source of a publicly accessible database that he had been…
Category: Business Sector
RU: Data of 9 million customers of the Russian courier service leaked, but whose leak is it?
E Hacking News reports: Data belonging to nine million customers of the CDEC Express transportation service was put up for sale on the Web for 70 thousand rubles ($950). This is the largest leak of personal data in Russian delivery services […] The CDEC claims that there was no data leak from the company. As…
UK: Over 190 Law Firms Affected by Advanced Data Leak That Exposed Over 10,000 Legal Documents
Alicia Hope: A leading UK software company exposed personal information belonging to over 190 law firms through an unsecured online database. TurgenSec security firm discovered the breach but could not immediately identify the owner of the online database and therefore contacted the National Cyber Security Centre (NCSC). Following the Responsible Disclosure Policy, the firm contacted…
REvil claims to have sold Trump-related material to unnamed buyer
The Sodinokibi/REvil ransomware team that attacked the entertainment law firm of Grubman Shire Meiselas & Sacks have certainly gotten media attention for this attack. In their first notice of the attack, they listed some of the celebrity clients, showed screenshots of some directory of files, and provided snippets from some celebrity-related files. But then negotiations…
Edison Mail rolls back update after iOS users reported they could see strangers’ emails
Kim Lyons reports: Edison Mail has rolled back a software update that apparently let some users of its iOS app see emails from strangers’ accounts. Several Edison users contacted The Verge to report seeing the glitch after they applied the update, which was meant to allow users to sync data across devices. Reader Matthew Grzybowski said after…
REvil responds to Grubman Shire law firm: “We will get the money”
A ransomware team that locked up the files of entertainment law firm Grubman Shire Meiselas & Sacks after stealing copies of the files has responded to reactions to their demand for $42 million to unlock the files and to prevent the attackers from releasing the firm’s files about President Trump. The attackers claim that the…