Zack Whittaker and Carly Page report: Software maker Fortra told its corporate customers that their data was safe — even when it wasn’t — following a ransomware attack on its systems, TechCrunch has learned. … TechCrunch has heard from two victim organizations that only learned that data had been exfiltrated from their GoAnywhere systems after…
Category: Business Sector
Rio Tinto data vendor GoAnywhere’s possible breach spotted in Jan-end
CNA reports: U.S. cybersecurity firm Fortra said suspicious activity was identified within its GoAnywhere software nearly two months ago, a day after Rio Tinto in a staff memo said personal data of some of its Australian employees may have been stolen. The internal memo seen by Reuters on Thursday revealed payroll information, like payslips and…
Pension Protection Fund confirms employee data exposed in GoAnywhere breach
Ross Kelly reports: The Pension Protection Fund (PPF) has confirmed that data belonging to current and former employees has been exposed in the wake of the GoAnywhere breach. In a statement to IT Pro, the fund, which manages pension assets for nearly 300,000 clients, said it has informed affected staff and is providing support and…
Kids tech camp iD Tech still silent weeks after data breach
There’s an important update of April 20, 2023 from NJCCIC: iD Tech, an online children’s academy that offers a variety of STEM courses, suffered a data breach in February, and nearly one million records were subsequently posted to a popular dark web hacking forum. Compromised data includes 415,000 unique email addresses, names, dates of birth, and plaintext passwords. While…
More victims possibly identified in GoAnywhere vulnerability incident
Zack Whittaker and Carly Page report: The number of victims affected by a mass-ransomware attack, caused by a bug in a popular data transfer tool used by businesses around the world, continues to grow as another organization tells TechCrunch that it was also hacked. Canadian financing giant Investissement Québec confirmed to TechCrunch that “some employee personal…
McDonald’s Korea fined $532k for breach of customers’ personal data
Yonhap News reports: McDonald’s Korea was given a fine of 696 million won (US$532,110) on Wednesday after the personal data of 4.87 million customers was leaked to hackers due to the firm’s lax data management. The Personal Information Protection Commission handed out the fine to the Korean branch of the American fast food chain, along…