Yet another security incident linked to failure to change default passwords. CJAD in Canada reports that the Quebec Liberals’ failure to change the default password on their videoconferencing system allowed anyone to gain access to strategy meetings. The user who found the flaw showed off the unlimited access to the Journal de Montreal. Published screenshots show archived videos…
Category: Exposure
BesaMafia hitman site hacked again
Remember when BesaMafia, a dark web site where people can allegedly hire hitmen was hacked and data was dumped in May? What could be worse, right? Well, they could be hacked again and their data dumped again. The hacker known as “bRpsd” has again embarrassed the site, which claims to be linked to the Albanian Mafia, by…
Walmart vendor error exposed limited patient information
Walmart, who reported a breach involving pharmacy records in March, has disclosed another breach to HHS. This one, reported June 8, reportedly affected 27,393 patients. Thankfully, it does not seem to have exposed particularly sensitive information. DataBreaches.net asked Walmart for a statement describing the incident, and received the following statement: Recently, we learned that the company…
DNC hacker slams CrowdStrike, publishes opposition memo on Donald Trump
Steve Ragan reports: A hacker claiming responsibility for the DNC hack that made headlines earlier this week has slammed the security company responsible for the incident response, and leaked several documents compromised during the incident – including a 235-page opposition memo on Donald Trump. On Tuesday, the Washington Post reported that hackers – believed to be Russian…
Mossack Fonseca worker arrested in Switzerland
Juliette Garside reports: An IT worker at the Geneva offices of Mossack Fonseca, the offshore law firm at the centre of the Panama Papers scandal, has been arrested in the hunt for the whistleblower behind the biggest ever leak to journalists. […] “A procedure has been opened by the public ministry of Geneva following a complaint…
Aspen Valley Hospital accused of patient-privacy breach
Another “small breach, big impact” story. Rick Carroll reports: A former Aspen Valley Hospital employee who says a human resources manager outed him as HIV-positive is alleging the hospital repeatedly violated patient-confidentiality laws. […] Doe joined the hospital in 2003 as its conference center coordinator. In August 2013, he was promoted to a technician in…