Robert Lemos reports: Companies in every industry continue to leave backup and storage platforms unsecured, with more than a dozen issues, including insecure network settings and unaddressed CVEs, affecting the average device. That leaves these repositories — often the first line of protection in the event of a ransomware attack — as sitting ducks for cybercriminals….
Category: Exposure
Cannabis regulators putting out ‘a series of fires’ involving a Russian oligarch and data breach
Tori Bedford reports: Thousands of employees in the Massachusetts cannabis industry received an official email last week about a major data breach: the name, home and email address, phone number and date of birth of every cannabis worker in the state had been made public in an “inadvertent release of agency documents” by the state’s…
Former GOP Senate Candidate Livid After Air Force Failed To Notify Him About Release Of His Military Records
Zoey Khalid reports: Former Colorado GOP Senate candidate Robert “Eli” Bremer is livid over the Air Force’s failure to notify him about the branch’s improper release of his military records, which he first learned about from a reporter who was covering the latest developments in the problematic story for the Defense Department. Speaking to Fox…
NYC Special Needs Students’ Records Found Exposed on Web
Marianne Kolbasuk McGee reports: Tens of thousands of documents containing personal information of special education students within New York City’s public school system were held in an unsecured database exposed to the internet. Researcher Jeremiah Fowler of security services firm Security Discovery told Information Security Media Group he found the unsecured database in mid-February and…
Bits ‘n Pieces (Trozos y Piezas)
ES: HLA Grupo Hospitalario data listed for sale after web server misconfiguration On March 14, a forum user on BreachForums listed data from the HLA Grupo Hospitalario in Spain for sale. The listing advertised 45,000 patient records and information on 1,600 doctors, with samples provided of each. HLA Grupo Hospitalario is owned by Asisa, which…
Lawsuit: Cop pulled over driver for TikTok livestream—and shared driver’s ID
Ashley Belanger reports: A Dallas County Sheriff’s Department deputy, Francisco Castillo, was briefly suspended after livestreaming a traffic stop, allegedly just to gain TikTok clout, in 2021. Now, the Texas motorist that he pulled over, Torry Osby, is suing, saying that the deputy exposed Osby to risks of identity theft and break-ins at his home by…