Lyons Companies issued a breach notification press release on August 23. Let’s skip the PR and cut to the chase, shall we? What Happened? On March 12, 2019, Lyons learned of unusual activity in an employee email account. It turned out two employee email accounts were accessed without authorization. One email account was subject to unauthorized…
Category: Breach Incidents
Hospice of San Joaquin discloses ransomware attack
The Hospice of San Joaquin recently notified the California Attorney General’s Office that it had suffered a ransomware attack on July 2. The notification, signed by Rebecca Burnett, their CEO, states that: The data accessed may have included personal information such as full name, patient ID number, diagnoses, home address and other sensitive information. Though…
An anonymous hentai porn site exposed over a million users’ emails
Zack Whittaker reports: A popular hentai porn site that promises anonymity to its 1.1 million users left a user database exposed without a password, allowing anyone to identify users by their email addresses. You might not have heard of Luscious.net unless you’re into hentai and manga porn but it’s one of the most popular websites…
Ugh. Amazon buckets with 1.8 million pharmacy-related files and 1.2 million telemarketing recordings about diabetic supplies found unsecured
Copies of fax cover letters from three pharmacies found exposed in an unsecured Amazon s3 bucket Faxes reveal patients’ names, addresses, dates of birth and their medications and doctors’ names Audio recordings in the second unsecured bucket reveals marketers claiming to represent firms that do not appear to exist as they try to get consumers…
New malware Xwo can swipe all your credentials at once
What Xwo Does Xwo is not your typical ransomware that holds your data hostage nor cryptocurrency miner that takes command of your processing power for its own devices. Instead it scans systems looking for saved credentials and exposed services. Everything it finds, it sends back to the control server. Xwo is not the thief stealing…
Hacker site’s incriminating database published online by rival group
Dan Goodin reports: Hackers from Raidforums recently breached the site of rival hacking forum Cracked.to and spilled data for more than 321,000 of its members. The hackers did so while some of their victims were discussing cracking Fortnite accounts, selling software exploits, and engaging in other potentially illegal activities. In all, the dump posted on…