Laura Dobberstein reports: Singapore-based threat intelligence outfit Group-IB has found ChatGPT credentials in more than 100,000 stealer logs traded on the dark web in the past year. The amount of stolen accounts steadily climbed from 74 in June 2022 to 26,902 in May 2023. April 2023 was an outlier – a moderate decline was seen…
Category: Exposure
Ie: Data breach at Public Appointments Service involving 15,000 people
Emmet Ryan reports: The personal information of 15,471 candidates for public roles has been released in error by the Public Appointments Service (PAS). A message was sent to the affected candidates through the publicjobs.ie portal notifying the candidates affected their names and jobs alert notifications they had subscribed to may have been provided to other…
Ie: Patients’ info accidentally sent to unidentified individual by UL Hospitals Group
Ben Scallan reports: UL Hospitals Group, responsible for managing six hospitals in the midwest region, announced a significant data breach resulting in the inadvertent sharing of personal and medical information belonging to over 1,000 patients with an unknown third party. The breach occurred in January when a staff member mistakenly sent the data to an…
Yet Another Toyota Cloud Data Breach Jeopardizes Thousands of Customers
Dark Reading reports: Toyota Motor Corp. today announced its discovery of yet another data breach — this time, two misconfigured cloud services were found leaking 260,000 car owners’ personal information over a seven-year period. This discovery comes after the car manufacturer conducted an investigation of its cloud features in the wake of announcing earlier in…
NHS data breach: trusts shared patient details with Facebook without consent
It seems that the Meta pixel issue that made headlines in the U.S. last June may first be hitting the NHS in the UK. Shanti Das reports: NHS trusts are sharing intimate details about patients’ medical conditions, appointments and treatments with Facebook without consent and despite promising never to do so. An Observer investigation has uncovered a covert tracking…
Bits ‘n Pieces (Trozos y Piezas)
CO: SECOP II platform affected by “presumed hacking” The SECOP II platform is a transactional platform with accounts for state entities and contractors used for submitting, evaluating, and awarding contracts. On May 3, La Agencia Nacional de Contratación Pública – Colombia Compra Eficiente reported a cyberattack on its SECOP II platform. The attack was announced…