Zack Whittaker reports: A grand jury has indicted a California resident accused of stealing Shopify customer data on over a hundred merchants, TechCrunch has learned. The indictment charges Tassilo Heinrich with aggravated identity theft and conspiracy to commit wire fraud by allegedly working with two Shopify customer support agents to steal merchant and customer data from…
Category: Breach Incidents
They, too, also issued breach notices…
Each week, I post some articles on this site about breaches involving protected health information or medical information, but there are usually other reports that just get entered on my worksheets for analysis for Protenus. To give you a taste of how many more incidents we record but not necessarily post in a week, I…
SG: Vhive attackers escalate, take control of furniture retailer’s email server
On March 29, DataBreaches.net reported a confirmed hack of Singapore retail furniture chain Vhive. Previous coverage of the attack, as reported by ALTDOS threat actors and as reported by the firm on their site can be found here. At the time of that publication, ransom negotiations between the firm and the attackers appeared to have…
“Anonymous” tries to get this site’s post on MobiKwik censored
On March 30, DataBreaches.net posted an update to a controversial data breach that MobiKwik denies (previous coverage can be found here). The controversy subsequently escalated on Twitter when people started complaining that they had found their data in the leaked database and that it corresponded to what they had on file with MobiKwik. In addition…
Good Luck Explaining to HHS Why Your PHI is in GitHub’s Vault for the Next 1,000 Years
You may see a number of hospitals and covered entities issuing statements this week about a data security incident involving Med-Data (Med-Data, Incorporated). So far, Memorial Hermann, U. of Chicago, Aspirus, and OSF Healthcare have posted notices. Others should be or may be posting soon. Here’s DataBreaches.net’s exclusive report on the incident. Another Day, Another…
Update: BioTel Heart notifies patients of vendor leak. Did vendor fail to notify them?
A cardiac monitoring firm is now notifying patients after a Google search on their name in January led them to an August, 2020 report on this site about a vendor’s leak. But why didn’t they know about it already from the vendor last year or from the notifications this site had sent them last year?…