Ivan Mehta reports: A data leak from India’s BHIM payment app exposed personal data of 7 million Indians including addresses, scans of Aadhar IDs, and caste certificates. A report from cybersecurity company VPN Mentor suggests that this 409GB database was stored in a misconfigured AWS S3 bucket, making all data publicly accessible. The report noted that the…
Category: Business Sector
Joomla team discloses data breach
Catalin Cimpanu reports: The team behind the Joomla open source content management system (CMS) announced a security breach last week. The incident took place after a member of the Joomla Resources Directory (JRD) team left a full backup of the JRD site (resources.joomla.org) on an Amazon Web Services S3 bucket owned by their own company….
AU: Big Footy data breach exposed private details of up to 100,000 users
Fiona Wilan reports: A large data leak from an AFL fan website has exposed about 70 million records online, including private conversations between users, according to cyber security researchers. Aussie Rules forum Bigfooty.com has about 100,000 users – although it’s not known how many were affected. The site has now started to contact users to notify them…
FTC Approves Settlement with Canadian Lockmaker Over Deceptive Security Claims
Hunton Andrews Kurth writes: We previously posted about the Tapplock, Inc. (“Tapplock”) settlement with the Federal Trade Commission (“FTC”) over allegations that the company violated Section 5 of the FTC Act by falsely claiming that its “smart locks” were secure. Earlier this month, the FTC voted 5-0 to approve the settlement. Tapplock sells fingerprint-enabled, internet-connected padlocks that…
Fortune 500 company NTT discloses security breach
Catalin Cimpanu reports: Nippon Telegraph & Telephone (NTT), the 64th biggest company in the world, according to the Fortune 500 list, has disclosed today a security breach. NTT says hackers gained access to its internal network and stole information on 621 customers from its communications subsidiary, NTT Communications, the largest telecommunications company in Japan, and…
TH: National Broadcasting and Telecommunications Commission warns Advanced Wireless Network on data breach
The Bangkok Post reports: The telecom regulator has handed an official warning letter to a subsidiary of Advanced Info Service (AIS), urging it to strictly ensure cybersecurity and data protection after the firm accidentally exposed its database of 8 billion internet records online without a password during a scheduled test earlier this month. The move…