Eisya A. Eloksari reports: A recent data breach case involving fintech aggregator platform Cermati.com, the fifth known this year, again highlights the vulnerability of user data on digital platforms and the urgency of a personal data protection bill, experts have said. Data on almost 3 million users from fintech aggregator platform Cermati.com was leaked and sold online…
Category: Business Sector
Configuration snafu exposes passwords for two million marijuana growers
Catalin Cimpanu reports: GrowDiaries, an online community where marijuana growers can blog about their plants and interact with other farmers, has suffered a security breach in September this year. The breach occurred after the company left two Kibana apps exposed on the internet without administrative passwords. Read more on ZDNet. h/t, @Chum1ng0
Folksam data breach leaks info of 1M Swedes to Google, Facebook, more
Sergiu Gatlan reports: Folksam, one of the largest insurance companies in Sweden, today disclosed a data breach affecting around 1 million Swedes after sharing customers’ personal info with multiple technology giants. The insurer discovered the data breach after an internal audit according to Jens Wikström, Head of Marketing and Sales at Folksam, and reported the incident to…
Saarbrücken Airport reports cyberattack
The following is a Google translation: There was a cyber attack on Saarbrücken Airport and the state-owned structural holding company Saar GmbH on Tuesday morning. Flight operations are not affected. SHS and airport spokesman Ludwin Vogel confirmed to the SR that the company was being attacked via the Internet. He emphasized that flight operations were not affected. The…
Campari Group victim of a malware attack
A Google translation of a report on Trend-Online: Campari Group informs that, presumably on 1 November 2020, it was the subject of a malware attack (computer virus), which was promptly identified. The Group’s IT department, with the support of IT security experts, immediately took action to limit the spread of malware in data and systems. Read…
Customer payment details stolen in JM Bullion hack
Keumars Afifi-Sabet reports: Hackers scraped the personal information and payment details of customers who made purchases with the precious metals dealer JM Bullion in a cyber attack which lasted six months earlier this year. JM Bullion discovered in July that malicious code had been embedded into its online shopping platform, enabling hackers to capture the information that customers…