Patrick McArdle reports: One of two Nigerians who admitted to being part of a conspiracy to steal personal information from Vermont state employees and other U.S. residents was sentenced Tuesday in Rutland federal court to time served, or 14 months in jail. Osariemen Isibor, 32, pleaded guilty in U.S. District Court in March to conspiracy…
Category: Breach Incidents
50,553,664 GOMO app users’ information exposed – researcher (UPDATED)
By Lee Johnstone and Dissent Doe Sungy Mobile Limited (“GOMO”) claims to be the world’s leading mobile application developer and mobile advertising platform, with more than 2 billion downloads. Their GO Series apps include GOMO Reading, GO Launcher, GO SMS, GO Keyboard Pro, Z Camera, S Photo Editor, GO Music, GO Speed, Brightest Flashlight, and Z…
Convicted of health care fraud, de-licensed physician just steals another doctor’s identity….
In June, I posted an item about how BCBS of Illinois was notifying people after a vendor informed them that law enforcement had alerted them that a vendor’s employee was not a licensed physician but an identity thief. That story did not seem to get a lot of press attention, but subsequent revelations named the physician…
TX: MedSpring Urgent Care notifies 13,000 patients after phishing attack
As Protenus’s Q-2 report for health data breaches in the U.S. indicates, phishing continues to account for a significant percentage of reported breaches. Here’s another phishing incident recently disclosed to HHS that will be in Protenus’s Q-3 report as affecting 13,034 patients: July 20, 2018 At MedSpring Urgent Care (MedSpring), we take the privacy and…
Leaked chats show alleged Russian spy seeking hacking tools
Just catching up with this great report by Ralph Satterson and Matthew Bodner of AP. It provides a great example of how innocent researchers need to remain vigilant about being played by spies. Six years ago, a Russian-speaking cybersecurity researcher received an unsolicited email from Kate S. Milton. Milton claimed to work for the Moscow-based…
EXCLUSIVE: Creditmate.in developer’s goof left 19,000 consumers’ credit reports unsecured
By Dissent Doe and Lee Johnstone On July 27, an independent researcher known as “Flash Gordon” (@s7sins on Twitter) contacted DataBreaches.net and Lee Johnstone to report that during a routine keyword search on Google, he had found numerous credit reports from Indian consumers exposed. Identifying the owner of the database was not easy in this…