Seen on haveibeenpwned.com: 1,476,783 accounts dumped: In February 2016, the Russian portal and email service KM.RU was the target of an attack which was consequently detailed on Reddit. Allegedly protesting “the foreign policy of Russia in regards to Ukraine”, KM.RU was one of several Russian sites in the breach and impacted almost 1.5M accounts including sensitive personal information….
Category: Business Sector
Bailey’s notifies 15,000 online customers of payment card breach
It’s not enough I come across a payment card breach notification with a lot of detail, so I was surprised to read a notification of an e-commerce breach from Bailey’s to the Oregon Attorney General’s Office that provided so much information. Look at the first few paragraphs of the timber harvest gear firm’s notification. It includes the date…
Central Concrete Supply notifies employees of breach involving W-2’s
Another business discloses a breach that sounds like it might have been another business email compromise (impersonation) scam: We are writing to tell you about a data security incident that may have exposed some of your personal information as an employee of Central Concrete Supply Co., Inc., Right Away Redy Mix, Inc., or Rock Transport, Inc….
PH: Police arrest 27 sextortionists
Francis Wakefield reports: The Philippine National Police-Anti-Cybercrime Group arrested 27 persons allegedly involved in sextortion activities in an operation in Cabanatuan City Tuesday. Senior Supt Guilermo Lorenzo Eleazar, PNP-ACG director, said that the suspects were arrested inside the office of TLS Synergy Group, an online marketing firm in Cabanatuan City. Read more on Tempo.
SG: No other user data compromised after app glitch, Singtel clarifies
Clifford Lee reports A technical glitch led to the personal details, including the residential address, of a single Singtel customer to be revealed to other customers when they logged-in to their My Singtel mobile application on Monday night (Feb 29), sparking fears that more data had been compromised. Read more on Today.
Hacker Claims to Have Sold 27M Mate1.com Passwords
Joseph Cox reports: A hacker on the dark web forum Hell claims to have sold the email addresses and plaintext passwords of over 27 million users of dating site Mate1.com. “Their server was compromised and the MySQL database was dumped,” the hacker, who asked to remain anonymous, told Motherboard. “I had shell/command access to their server.” Read…