Zack Whittaker reports: Ladders, one of the most popular job recruitment sites in the U.S. specializing in high-end jobs, has exposed more than 13.7 million user records, following a security lapse. The New York-based company left an Amazon -hosted Elasticsearch database exposed without a password, allowing anyone to access the data. Sanyam Jain, a security…
Category: Business Sector
Hackers Snatch and Try Unsuccessfully to Ransom Data from IT Service Provider; CityComp’s Big Clients Impacted
Joseph Cox reports: Hackers have broken into an internet infrastructure firm that provides services to dozens of the world’s largest and most valuable companies, including Oracle, Volkswagen, Airbus, and many more as part of an extortion attempt, Motherboard has learned. The attackers have also released data from all of those companies, according to a website…
Eddie Bauer Agrees to $10M Data Breach Class Action Settlement
Emily Sortor writes: Eddie Bauer and Veridian Credit Union have reached a $9.8 million settlement, ending claims that Eddie Bauer’s lack of adequate security led to more than 1 million Veridian customer accounts being exposed to a data breach that occurred in January 2016. The proposed settlement deal was filed on Friday in Washington federal…
Employee behind DJI data leak on Github sentenced to prison and fined
Jill Shen reports: A former employee of Chinese drone maker DJI was sentenced to six months in prison and fined RMB 200,000 [almost $30,000.00 USD] for unauthorized disclosure of the company’s data to code-sharing platform Github, according to the prosecutor involved in the case. The office of the People’s Procuratorate of Shenzhen posted on messaging app WeChat…
Magecart hackers force turnover, steal data from Atlanta Hawks’ online shop
Bradley Barth reports: Cybercriminals using Magecart card-skimming code attacked the online store of the NBA’s Atlanta Hawks, stealing customers names, addresses and payment card numbers. Read more on SC Magazine.
Ransomware disables Cleveland airport’s email systems, information screens
Bradley Barth reports: A ransomware attack reportedly has affected email, payroll and record-keeping systems at Cleveland Hopkins International Airport this week and also darkened the transportation facility’s information screens And according to a report from local news outlet WKYC, the attackers may have also accessed airport employee payroll records containing personal information. Read more on…