Shanthi S reports on another big breach out of India. This one involves an EdTech firm that provides online tutorials. Bengaluru-based edtech startup Vedantu has confirmed that it faced a data breach in the last week of September. Data of 687K Vedantu customers were put at risk as the data breach allegedly exposed customer details…
Category: Business Sector
Marriott notifies associates of breach at unnamed vendor
In a year that has seen a number of reports that suggest how costly a past data breach may be for Marriott in Canada as well as the U.K. and U.S., Marriott is disclosing yet another breach. On October 30, Marriott International notified the California Attorney General’s Office of a breach at an unnamed vendor…
NordVPN users’ passwords exposed in mass credential-stuffing attacks
Dan Goodin reports: As many as 2,000 users of NordVPN, the virtual private network service that recently disclosed a server hack that leaked crypto keys, have fallen victim to credential-stuffing attacks that allow unauthorized access to their accounts. In recent weeks, credentials for NordVPN users have circulated on Pastebin and other online forums. They contain the…
Tech Companies Seek India Govt’s Help For Solving Aadhaar-PF linking Issue of Employees
Aman Rawat reports that a breach I didn’t even know about last year has raised concerns about what tech companies are willing to do in terms of linking their employees’ provident fund (PF) account numbers to their Aadhaar identification number. PF accounts are compulsory, government-managed retirement savings accounts. So if the government requires employees’ Aadhaar…
2 Plead Guilty in 2016 Uber and Lynda.com Hacks
Mike Isaac reports: Two men pleaded guilty in federal court in San Jose, Calif., to charges of computer hacking and an extortion conspiracy on Wednesday, capping a thorny legal saga that ensnared tech companies like Uber and LinkedIn in data breach scandals. The resolution of the case comes as Americans grapple with theft and misuse…
Important Security Information from Register.com
From the FAQ on their site: Frequently Asked Questions What happened?On October 16, 2019, Register.com determined that a third-party gained unauthorized access to a limited number of our computer systems in late August 2019, and as a result, account information may have been accessed. No credit card data was compromised as a result of this…