A user on a deepweb forum has posted a thread that lays claim to a leak of data on The Pirate Bay co-owner Gottfrid Svartholm Aka Anakata. The user has posted a short message and a link to file hosting site mega.co.nz that contains a 3gb zip file. After downloading and doing a quick check…
Category: Breach Incidents
A tale of three leaks, Wednesday edition
On December 6, DataBreaches.net was contacted by researchers who requested help notifying two entities that they were exposing health information due to misconfigured AWS S3 buckets. They would turn out to be a delight to deal with, unlike a third entity that was also leaking information from a misconfigured S3 bucket. So let’s start with…
Notice of Data Incident Regarding Veyna & Forschino
(I should have remembered to anticipate press releases after 3 pm on the Friday of a big holiday weekend. Here’s another one:) On November 27, 2017, Veyna & Forschino (V&F) encountered suspicious activity on one company email account. V&F immediately began investigating the matter and contacted its local IT firm who disabled access. Further, V&F…
In November, I gave thanks for fewer breach reports
Protenus has released its monthly Breach Barometer, and the statistics for November were something to be thankful for – even if they turn out to be just a brief break from the crush of breach reports we’ve seen every month. As Protenus reports, there were 28 incidents first disclosed during November. We were able to…
Encryption protected Golden Optometric patients’ EHR from CrySiS attack
It’s nice to read a notification where an entity had good defenses in place. Consider this notification from Golden Optometric in California: Early on the morning of November 6, 2017, the network server at Golden Optometric was infected with a variant of the “CrySiS” ransomware virus, which encrypted a limited number of files on its…
Banks Find (Some) Success Suing Over Data Breaches
Donna Wilson of Manatt, Phelps & Phillips, LLP writes: Banks continue to file suit against retailers, hoping to shift the costs of data breaches, with some recent success. What happened In January 2016, hackers accessed Eddie Bauer’s point-of-sale register system and installed malicious software that infected every Eddie Bauer store in the United States and…