CISO Mag reports: Around 250,000 American and British-based job seekers’ personal information has been exposed after two recruiting sites misconfigured their databases. The exposed information included candidates’ names, addresses, contact information, and work experience. The data leak occurred when recruitment sites Authentic Jobs and Sonic Jobs failed to set their cloud storage as private. Read…
Category: Business Sector
Zappos data breach settlement: users get 10% store discount, lawyers get $1.6m
Long-time readers will remember the 2012 Zappos breach that impacted 24 million of their online customers. The breach and its resulting litigation have been covered on this site previously, including Zappos’s failure in March of this year to get the Supreme Court to hear their appeal of a Ninth Circuit decision that had allowed the…
Dutch pharma group Pharming denies involvement in CSL data breach
Carrie LaFrenz reports: Dutch pharma company Pharming Group NV said it “categorically denies“ any involvement in an alleged data breach by a former CSL staffer. Shares in the listed €698 million ($1.14 billion) biotech company recovered in early trade Thursday after tumbling nearly 12 per cent the day before in Europe, after it was revealed…
Two cashback sites leaked data of 3.5 million users
Al Restar writes: Two popular cashback services have leaked nearly two terabytes worth of personally identifiable information (PII) and account data in an unprotected Elastic database. The two cashback websites have been operating mostly in the United Kingdom and India. Cybersecurity experts from the Security Detectives (sic) Research team discovered an unprotected Elasticsearch database containing at…
French TV channel M6 and Pitney Bowes both report ransomware attacks
Catalin Cimpanu reports that M6, one of France’s biggest TV channels, was hit by ransomware: The M6 Group, France’s largest privately-owned multimedia group, was the victim of ransomware over the weekend, but none of the company’s TV and radio channels suffered any downtime. The incident took place on Saturday morning, according to a message the…
Equifax data breach FAQ: What happened, who was affected, what was the impact?
We spent a good amount of time in the cybersecurity forum today talking about the Equifax breach. Here’s a summary of some of their key failures, reported by Josh Fruhlinger and based on A U.S. General Accounting Office’s report, and an in-depth analysis from Bloomberg Businessweek. Here are just two of the findings, as reported by Fruhlinger:…