The new BakerHostetler report on data security incidents says that human error was the largest cause of data security incidents, accounting for 36%. Their finding is consistent with the new Ponemon report that also puts employee error as the number one cause, at 39% But then you read RBS’s report on 2014 breaches where they say that 67%…
Category: Breach Incidents
Pennsylvania-based Summit Health joins ranks of those falling for phishing
On March 18, attorneys for Summit Health, Inc. in Pennsylvania notified the Maryland Attorney General’s Office that on February 19, the hospital had learned that some of its employees had fallen for a phishing attempt. As a result of the successful phishing, employees’ information in the Lawson Employee Self-Service System, used to access payroll and benefits information, may…
Anonymous’ #OpGreenRights Hack Team Knocked Nuclear Corporation Areva Offline, Leaked World Trade Organization Emails
Jeff Stone reports: The hacking collective Anonymous has taken credit for a data breach at the World Trade Organization that resulted in the leak of 53,000 email addresses. Fallout from the infiltration comes amid Anonymous’ Operation Green Rights, an ongoing protect against the construction of a nuclear reactor due to be built by the French…
University of Illinois hacked?
After a period of relative quiet, it appears that the hacker known as “JM511” is back and busy. According to some tweets last night, the University of Illinois has been hacked via SQL injection: What’s happening? #JM511 I got #SqL_injection#blind On: ? http://t.co/qeD2Z3o8HN I’m Ur #nightmare @Illinois_Alma pic.twitter.com/wtIVjSzlt8 — JM511 Hacker☠ (@JM511) May 5, 2015 A screencap from the…
Ca: More data dumped from Detour Gold
I had told Detour Gold to keep an eye out for future data dumps when I spoke with them weeks ago to notify them that they had been hacked, and I wasn’t surprised to receive an email last night from someone pointing me to a new data dump. The data dump includes personal information on employees as well…
UK: Dumfries and Galloway Council data breach actions accepted
An update from the BBC about a breach I hadn’t spotted before: The Information Commissioner’s Office has said it is satisfied with Dumfries and Galloway Council’s actions in the wake of a data protection breach. It followed the inadvertent release of personal information which was later posted on the internet. It is understood that the…