Lucas Ropek reports: Watch out, firearm lovers. The subtly-named guns.com, a place where Americans can go to pick out whatever stylish boomstick they like and have it shipped straight to their neck of the woods, seems to have a pretty awful data breach on its hands. Back in January, a hacker temporarily disabled the company’s website,…
Category: Breach Incidents
Engineer reports data leak to Apperta, hears from the police
Ax Sharma reports another troubling instance of “Shoot the Messenger:” threatening or blaming those who responsibly disclose leaks that they discover. This episode appears to be brought to us via Apperta Foundation. Earlier this month, Dyke had discovered an exposed GitHub repository exposing passwords, API keys, and sensitive financial records which belonged to Apperta Foundation….
NXIVM sex-cult leader Keith Raniere under fire after lawyers accidentally reveal victim names in court docs
Noah Goldberg reports: Convicted sex-cult guru Keith Raniere and his legal team are in hot water for accidentally revealing the names of victims of the NXIVM leader in court documents Tuesday. The feds responded quickly, asking Brooklyn Federal Court Judge Nicholas Garaufis to seal the documents, which he agreed to and which was done early…
Coveware censors post after ransomware actors use it for promotion
Sam Varghese reports: Incident response firm Coveware has deleted a small portion of an article it had posted online in 2019, after the actors behind the REvil ransomware group — also known as Sodinokibi — used it to promote the efficiency of their own decryptor over that of the one used by rival ransomware actor,…
Haven Behavioral Hospital provides Notice of Data Incident
Note: The following notice concerns Haven Behavioral Hospital of Philadelphia and Haven Behavioral Hospital of Eastern Pennsylvania. DataBreaches.net also found that Cottonwood Creek Behavioral Hospital, Phoenix, Frisco (Texas), and Dayton (Ohio) Haven hospitals all published identical notices yesterday. A notice on Haven Behavioral’s web site is not specific to any named hospitals, suggesting that this incident may…
FL: Polk County Schools says student information may have been exposed in data breach
WTSP reports: If you have a student who goes to school in Polk County you might have gotten a letter from a company called PCS Revenue Control Systems, Inc. about a data breach. Don’t throw that letter away. The Polk County School District says it’s legitimate and you might need the instructions that come on it…