Since April, DataBreaches.net has been reporting on the hack of a small Canadian gold-mining firm, Detour Gold. As noted in April, hackers who call themselves Angels_of_Truth claim to have hacked Detour Gold in revenge for Canada’s economic sanctions on Russia. Their statements have been written in both English and Russian. Following the first paste and…
Category: Breach Incidents
Bits ‘n Pieces
Recaps of a few more breach reports I recently read: Diman Regional Vocational Technical High School in New Hampshire joined the ranks of those who have made email attachment errors that exposed employee information to other employees and staff. Information in the spreadsheet included information on current and former employees: names, gender, Social Security numbers, benefit…
BAE Systems first notifying employees of extranet site network attack in 2014
On June 4, BAE Systems Information and Electronic Systems Integration Inc. notified the New Hampshire Attorney General’s Office that they had experienced a network attack on an extranet site in 2014. Due to the nature and scope of the attack, they provided a data set to the Pentagon’s Damage Assessment Management Office (DAMO), who subsequently…
Volcano Corporation notifies employees after e-mail breach
Add San Diego-based Volcano Corporation to your list of firms reporting breaches involving e-mail attachment errors. Volcano Corporation reports that the error was made – and detected – on May 21, when a spreadsheet was inadvertently attached to an e-mail sent to some employees about their retirement account. The spreadsheet included employees’ names, email addresses…
Akorn, Inc. notifies employees after email accounts compromised (UPDATED)
Add Akorn, Inc. to any list you maintain of organizations whose employee email accounts have been compromised. Through their external counsel, the niche generic pharmaceutical firm notified the New Hampshire Attorney General’s Office on June 4 that they had discovered that four employee e-mail accounts had been comprised over the prior two months, exposing personal…
Blue Shield of California notifies some members of exposure breach following software update
Software updates are an all-too-common source of breaches. Here’s another one, this involving Blue Shield of California. From their notification to the California Attorney General’s Office: As the (unintended) result of a computer code update Blue Shield made to the website on May 9, three users who logged into their own website accounts simultaneously with…