Krysyy wrote: Dear EMC Community, It has come to our attention that one of our Staff Team member’s accounts was recently compromised. A banned player with malicious intentions utilized a Staff member’s account and accessed staff confidential information. Some of you may have already been aware of this, due to the player’s not-so-subtle temp and…
Category: Breach Incidents
The Mystery of the Reappearing FTP server, Part 2
Earlier this week, in the context of discussing of how old and forgotten databases can come back to bite us in costly databreaches, I reported on a somewhat bizarre situation involving files belonging to a Pennsylvania dentist. I have since obtained more information on that situation, and thought I would update you all. Let’s start…
NJ: Maplewood tax firm hacked; data held for ransom
Having spent years interviewing hackers who described themselves as hacktivists or as hacking for the lulz, talking to hackers who engage in criminal hacking as a source of income has been…. educating, to say the least. But it’s also been a reminder that too many businesses really have no clue what they’re doing – not only in…
Law Firms Are “One-Stop Shopping” for Hackers, as Hickey Law Firm Found Out
Randy Evans and Shari Klevens write: This year has shown that law firms are not immune from infiltration by international hackers. This spring, a Russian hacker targeted 48 top law firms, seeking to obtain confidential insider information regarding mergers and acquisitions that would be very valuable and could impact global markets. […] These are not…
It’s 10 pm somewhere. Do you know where your old databases are?
An old database that seems to have magically reappeared online more than a decade after it was removed reminds us of an often-overlooked risk. In January, DataBreaches.net reported that a behavior intervention therapist’s database was exposed online due to a misconfigured MongoDB installation. What struck me about the incident was that the therapist likely had no idea that a company she had…
CA: Anesthesiologist notifies patients after PHI wound up in a trash container
Anesthesiologist Pratap S. Kurra, M.D., is notifying some of his patients whose protected health information was found to have been discarded improperly on August 8. In a template of the notification letter uploaded to the California Attorney General’s web site, Dr. Kurra writes: On August 9, 2016, I was informed that papers related to my…