Matteo Natalucci reports: The portal of the Italian National Institute for Social Assistance (INAS), has been hacked, potentially putting the personal data of its users at risk. INAS is an organisation which is part of the National Confederation of Workers’ trade unions responsible for protecting and advancing the interests of its members in the workplace….
Category: Hack
Guardant Health to Notify HHS & 1,100 individuals of phishing attack that involved PHI
Omar Ford reports: Liquid Biopsy specialist, Guardant Health faced a cybersecurity attack about two months ago, according to an SEC filing for the firm’s initial public offering. The Redwood City, CA-based company said that private information from about 1,100 individuals was compromised. “In July 2018, we experienced a security incident involving a phishing attack, and…
Files With 42 Million Emails and Passwords Found On Free Hosting Service
Ionut Ilascu reports: A huge database with email addresses, passwords in clear text, and partial credit card data has been uploaded to a free, public hosting service. The operator of the sharing service sent the set to Troy Hunt, Australian security researcher and creator of the Have I Been Pwned data breach index site, to…
Hacker exploits EOS smart contract to steal $200K from gambling app
David Canellis reports: A million-dollar EOS gambling dApp suffered a major blow, just days after declaring itself to be the safest of its kind. Hackers have taken 40,000 EOS ($200,000) from the operating wallet of EOSBet by exploiting vulnerabilities in its smart contracts. “[…] A few hours ago, we were attacked, and about 40,000 EOS…
Fetal Diagnostic Institute of the Pacific notifies 40,800 patients after ransomware attack
From their public notice of August 30, below, it appears that the attack was disovered on June 30. The incident was reported to HHS as impacting 40,800 patients. While the notification below meets all the regulatory requirements, I wish entities would routinely just disclose how malware was injected and what kind of malware it was….
Russian hacker pleads guilty for role in Kelihos botnet
Olivia Beavers reports: A renowned Russian hacker on Wednesday pleaded guilty in a U.S. District Court for his involvement in the Kelihos botnet, a global network of hijacked computers that he used to obtain users’ private or financial information. The Kelihos botnet harvested thousands of login credentials, spewed out a bulk of spam e-mails and…