The Summit Reinsurance Services ransomware breach, noted previously on this site, is beginning to attract more attention. First State Update reports: As a result of multiple consumer complaints, the Delaware Department of Insurance has been made aware of a security breach, involving Summit Reinsurance Services, Inc. (“SummitRe”) and BCS Financial Corporation, both subcontractors of Highmark…
Category: Business Sector
Hacker Steals 900 GB of Cellebrite Data
Joseph Cox reports: The hackers have been hacked. Motherboard has obtained 900 GB of data related to Cellebrite, one of the most popular companies in the mobile phone hacking industry. The cache includes customer information, databases, and a vast amount of technical data regarding Cellebrite’s products. The breach is the latest chapter in a growing…
D-Link fights back against ‘baseless’ data security lawsuit
Corinne Reichert reports: Cause of Action Institute has announced that it will be defending D-Link against the United States Federal Trade Commission (FTC)’s “unwarranted and baseless” lawsuit claiming that the technology company put thousands of customers at risk of unauthorised access by failing to secure its IP cameras and routers. The FTC should not be…
Hello Kitty Database of 3.3 Million Users Surfaces
Tom Spring reports: A cache of data including 3.3 million user credentials belonging to Hello Kitty parent company Sanrio surfaced over the weekend. The breach was originally reported in December 2015, but at the time Sanrio denied any data was stolen as part of the breach. The breach was tied to a misconfigured MongoDB installation that…
TwoPlusTwo Poker Forum Hacked; Personal Data Stolen and Offered for Sale
FlushDraw reports: The world’s largest online poker discussion forum, TwoPlusTwo, has again seen its virtual defenses breached. The site’s operators have confirmed that the forum was hacked at some point late in 2016, with the personal data then being offered for sale elsewhere on the Internet. The hacking and theft of the personal information was discovered…
UK: £150,000 fine for insurance company that failed to keep customers’ information safe
From the Information Commissioner’s Office: The ICO has fined Royal & Sun Alliance Insurance PLC (RSA) £150,000 following the loss of the personal information of nearly 60,000 customers. An ICO investigation looked at the theft of a hard drive device containing 59,592 customers’ names, addresses and bank account details including account numbers and sort codes. The device…