Jim Silver and Hailey Waller report: EmCare Inc. recently learned an unauthorized party obtained access to a number of employees’ email accounts that contained the personal information of as many as 60,000 individuals, 31,000 of which are patients, the company said in an email. On Feb. 19, the physician-services provider determined the accounts contained some…
Category: Breach Incidents
Iranian Ride-Hailing App Database Exposure
Bob Diachenko reports: On April 18th, during our regular security audit of nonSql databases with BinaryEdge search engine, I have discovered an open and publicly available MongoDB instance which contained astonishingly sensitive information on Iranian drivers. Information was structured to include the following data fields: Driver first name and last name SSN (10-digits Iranian ID…
Millstone man sentenced for hacking women’s accounts and then uploading their nude images
Vin Ebenau reports: A Monmouth County man will spend five years in prison for hacking into the private cloud based accounts of two women and then stealing lewd videos and images of them which he preceded to post on publicly accessible websites, announced New Jersey Attorney General Gurbir Grewal. Patrick S. Farrell, 37, of Clarksburg…
Hacktivists attack UK police sites to protest arrest of Julian Assange
Hacktivism is seeing a resurgence recently, in no small part fueled by the arrest of Julian Assange. #Op hashtags for the UK, Sweden, and Ecuador signal the intent of the attackers. #Anonymous #FreeAssange #OpEcuador #OpAssange #OpSweden #OpUK #OpUS @your_anon_net @LorianSynaro and @Pryzraky took #Offline UK Police website. Sweden its also our target! You will be…
Did ransomware claim a victim or did two doctors just make a poor decision?
An article by William Maruca of FoxRothschild is headlined, “Ransomware Claims A Victim.” It discusses the case of Brookside ENT, whose doctors decided to shutter their practice and retire a year early after a ransomware attack that encrypted their patient data, billing information, scheduling information, and even their backups. In other words, the attacker successfully…
Over 100 Million JustDial Users’ Personal Data Found Exposed On the Internet
Remember what I said earlier today about India being a data protection mess? Here’s another example. Mohit Kumar reports: An unprotected database belonging to JustDial, India’s largest local search service, is leaking personally identifiable information of its every customer in real-time who accessed the service via its website, mobile app, or even by calling on…