Bombas is sending out a breach notification to consumers. It says, in part: What Happened? We first started selling Bombas socks online using an outside vendor to develop and manage our website and a third party e-commerce platform for purchases. Malware in the code of the e-commerce platform was identified and initially removed from our…
Category: Breach Incidents
Los Angeles County 211 exposed call logs with details
Another day, another leak involving sensitive information. From the UpGuard team: The UpGuard Cyber Risk Team can now disclose that sensitive data from the Los Angeles County 211 service, a nonprofit assistance organization described on their website as “the central source for providing information and referrals for all health and human services in LA County,” was…
More than 200,000 patients’ records were exposed on MedEvolve’s public FTP server – researcher
Common sense dictates that patients’ protected health information should not be made freely available on FTP servers that have no login required. And yet it still happens, and has happened again. Recently, this site learned of another FTP server exposing patients’ information. This particular FTP server belongs to MedEvolve, an Arkansas company that provides practice management…
Officials: Student Info Breached In Bemus Point
Jordan Patterson reports: Bemus Point Superintendent Michael Mansfield addressed at a school board meeting earlier this week the data breach of a program that may have affected students in the district. In late April, Maia Learning — a comprehensive guidance program that helps students plan for college — was breached by a competing company that…
Member of TheDarkOverlord arrested — reports
There are reports in the news this morning that a member of TheDarkOverlord has been arrested by Serbian police. These are translations via Google, and I do not see any report yet naming the arrestee or a photo, but… Serbian police arrested SS (1980) from Belgrade suspected of being one of the hackers from the…
Eye Care Surgery Center notifies 2,553 patients of laptop theft
The following substitute notice was posted on the center’s site. The incident has also been posted to HHS’s public breach tool, where it is currently listed twice – once under this name and once as Tiger Vision, LLC. In reading their notice, below, note that they do not tell us when the laptop was stolen…