Somendranath Sharma reports: Confidential data entrusted to a Bhayandar-based Business Process Outsourcing (BPO) company by a New York-based company was compromised recently. This has led to a police investigation, and the corporate espionage angle is also being probed. The BPO company registered an FIR stating that email addresses of the New York-based debt recovery company,…
Category: Breach Incidents
Report: Job Portal Database Exposed
SafetyDetective reports: SafetyDetective’s research lab discovered a leak online that exposed an elastic server containing 3GB of data with over 1.6 million users affected. We informed the apparent owners of this database as soon as we were able to identify them. Because we did not receive a response from the owner of the database, we…
CO: Hit by ransomware, Estes Park Health decides to pay the ransom to get decryption keys
Zach Clemens reports that Estes Park Health suffered a ransomware attack on June 2. No data was exfiltrated, but it was locked up, and after consulting with their cyberinsurer and IT people, they decided that they had to pay the ransom. “At that point in time we are looking at the patients we have internally,…
A computer virus has thrown Philadelphia’s court system into chaos
Colin Lecher reports: Since May 21st, a virus has shut down Philadelphia’s online court system, bringing network access to a standstill. The problems started unexpectedly: suddenly, no one could seem to access the system to file documents. “It wasn’t working,” says Rachel Gallegos, a senior staff attorney with the civil legal aid organization Community Legal…
Project Svalbard: The Future of Have I Been Pwned
Troy Hunt writes that it’s time for HIBP to grow up.
Kingman Regional Medical Center investigating potential breach of PHI
Agata Popeda reports: Kingman Regional Medical Center reported a “security incident” on its website, which was shut down on April 8 and, after two months, still remains under construction. The hospital established that “the configuration of the website made it possible for unauthorized person(s) to view some information entered into the website by KRMC customers,”…