Kartikay Mehrotra and Aoife White report: Facebook Inc. failed to fend off a lawsuit over a data breach that affected nearly 30 million users, one of several privacy snafus that have put the company under siege. The company’s disclosure in September that hackers exploited several software bugs to obtain login access to accounts was tagged…
Category: Business Sector
Dominion National investigates and notifies after discovering unauthorized access to servers that began as early as 2010
ARLINGTON, Va., June 21, 2019 /PRNewswire/ — Today, Dominion National, an insurer and administrator of dental and vision benefits, announced that it is addressing a data security incident involving some personal information that Dominion National maintains in connection with the services it provides. On April 24, 2019, through Dominion National’s investigation of an internal alert and…
WeTransfer Security Incident Sent Files to the Wrong People
Lawrence Abrams reports: In an embarrassing security incident, the WeTransfer file sharing service announced that for two days it was sending it’s users shared files to the wrong people. As this service is used to transfer what are considered private, and potentially sensitive files, this could be a big privacy issue for affected users. Starting…
Insurance company AIA fined $10,000 by PDPC for personal data breach
Lester Wong reports from Singapore: Insurance company AIA was fined $10,000 by the Personal Data Protection Commission (PDPC) for mistakenly sending 245 letters meant for various customers to just two people due to a programming error in its software system that auto-generates the letters. The bulk of the letters (237) were premium notice letters for…
Ransomware gang hacks MSPs to deploy ransomware on customer systems
Catalin Cimpanu reports: A ransomware gang has breached the infrastructure of at least three managed service providers (MSPs) and has used the remote management tools at their dispossal, namely the Webroot SecureAnywhere console, to deploy ransomware on the MSPs’ customers systems. The ransomware infections were first reported today in a Reddit section dedicated to MSPs…
EatStreet food ordering service discloses security breach
Catalin Cimpanu reports: Eatstreet, an online and mobile food ordering service, disclosed today a security breach that took place last month and during which a hacker stole the company’s database, complete with customer and partner details. ZDNet has learned that responsible for this breach is Gnosticplayers, a hacker who previously breached many other online services,…