Antonella Artuso reports: The privacy of 4,500 Ontario Cannabis Store customers was breached through what the online retailer says was a weakness in Canada Post’s tracking website, the Toronto Sun has learned. The information obtained was the buyer’s name or initials, postal code, date of cannabis delivery, the Canada Post tracking number and OCS’ corporate…
Category: Exposure
Data of nearly 700,000 Amex India customers exposed via unsecured MongoDB server
Catalin Cimpanu reports: The personal details of nearly 700,000 American Express (Amex) India customers have been accidentally left exposed online via an unsecured MongoDB server. The leaky server, which was left exposed online without a password, was discovered three weeks ago by Bob Diachenko, Director of Cyber Risk Research at cyber-security firm Hacken. Most of…
No need for Russia to hack the House of Representatives if the House keeps leaving its doors open.
In early August, “Flash Gordon” (@s7nsins on Twitter) contacted me to say that he discovered a leak involving the House of Representatives. In light of all the talk about Russia trying to hack our elections, I decided that we probably should notify the House right away in case there was any kind of sensitive files…
Data leak affects thousands of wealthy Moscow residents
Maria Kolomychenko reports: Thousands of wealthy Moscow residents who subscribed to a regional internet provider have had personal data including names, home addresses and mobile numbers posted online. People affected by the high-profile data leak are all clients of Moscow-based internet provider Akado Telecom, a large telecommunications network owned by billionaire businessman Viktor Vekselberg, which…
NJ Settles Charges Against Business Associate Responsible for Virtua Medical Patient Data Breach: Vendor Owner Pays $200,000 and is Barred From Owning or Managing Any Business in NJ Again
One question that occasionally pops up is how often businesses go out of business after or due to a data breach. My answer to that is “not often,” but we do it occasionally. In some cases, the breach may just have been a final straw for an already shaky business. Yesterday, during a webinar with…
Massive data leak affecting Arik Air customers; company slow to respond: Paine
Oladeinde Olawoyin reports: Millions of customers flying Nigeria’s foremost airline, Arik Air, may have had their data leaked as details emerged on Wednesday that the airline’s data were found in exposed and vulnerable Amazon S3 buckets. According to Justin Paine, Head of Trust & Safety at Cloudflare, there is a bucket containing a large number…