Eustance Huang reports: Fast Retailing, the Japanese company behind the Uniqlo retail chain, announced Monday that the data of more than 460,000 customers on its online shopping sites were accessed by hackers from April 23 to May 10. In a statement released on its website, Fast Retailing said: “It was confirmed on May 10, 2019…
Category: Hack
Paterson Public Schools hacked, but when, and where are the data now? (UPDATE 1)
Jayed Rahman reports that Paterson Public Schools in New Jersey was hacked. The attacker allegedly acquired 23,103 account passwords and other computer access tokens. Information stolen in the breach includes desktop logins, email usernames and passwords, and laptop credentials. For example, the email usernames and passwords of all school district employees — including that of…
Hackers are collecting payment details, user passwords from 4,600 sites
Catalin Cimpanu reports: Hackers have breached analytics service Picreel and open-source project Alpaca Forms and have modified JavaScript files on the infrastructure of these two companies to embed malicious code on over 4,600 websites, security researchers have told ZDNet. The attack is ongoing, and the malicious scripts are still live, at the time of this…
Pacers company discloses data breach
The company associated with the Indiana Pacers – Pacers Sports & Entertainment (“PSE”) – issued a notice yesterday about a data security incident. Curious as to whether it impacted fans or employees, I skimmed it… only to be reminded yet again that our medical or health data can be breached in all kinds of settings….
Top-Tier Russian Hacking Collective Claims Breaches of Three Major Anti-Virus Companies
Executive Summary “Fxmsp” is a high-profile Russian- and English-speaking hacking collective. They specialize in breaching highly secure protected networks to access private corporate and government information. They have a long-standing reputation for selling sensitive information from high-profile global government and corporate entities. In March 2019, Fxmsp stated they could provide exclusive information stolen from three…
25,148 patients served by Southeastern Council on Alcoholism and Drug Dependence notified of ransomware incident
Here’s yet another ransomware incident in which investigators couldn’t really determine whether ePHI were actually accessed, so the entity notified HHS and is notifying patients. In this case, we are dealing with what could be treatment information for more stigmatizing conditions such as alcoholism or addiction. According to their report to HHS, 25,148 patients are…