Zack Whittaker reports: Streaming media platform Plex has confirmed a data breach and is warning users to change their passwords. Plex said it discovered the compromise on Tuesday and found the intruder had accessed “a limited subset of data that includes emails, usernames, and encrypted passwords.” Plex vice-president of engineering Schuyler Ullman told TechCrunch that…
Category: Hack
Liberty Counsel’s Donor Records and Pro-Trump Election Messaging Exposed in Data Breach
Micah Lee and Michael Sherrard report: Liberty Counsel, an evangelical Christian nonprofit that provided a brief cited by the Supreme Court in its decision to overturn Roe v. Wade, has been hacked, revealing a 25-gigabyte internal database that contains nearly seven years’ worth of donor records. The hacker, who identifies with the Anonymous movement, released…
California Department of Corrections and Rehabilitation notifies staff, visitors, and incarcerated individuals of breach
The California Department of Corrections and Rehabilitation (CDCR) issued a breach notification this week. Because the notification mentions COVID-19 testing, at first, DataBreaches thought it was the incident CDCR had disclosed last month, but no, it turns out that that was a different incident. The newly revealed breach affects staff, visitors, and others tested for…
‘I went to prison for the £77m TalkTalk hacking. I could be sent back for ordering a McDonalds’
Nicholas Fearn reports: As one of Britain’s most notorious cyber criminals, Daniel Kelley played a leading role in the 2015 TalkTalk data breach. The hack was catastrophic for the telecoms firm, resulting in a financial loss of £77 million (€90.7 million) and the stolen data of over 150,000 customers. Kelley would go on to spend…
How many breaches has Overlake Medical Center & Clinics experienced in the past few years?
In February 2020, Overlake Medical Center and Clinics in Washington State reported a phishing incident in December 2019. More than 109,200 patients were reportedly affected. HHS investigated the incident and wrote a closing note in the file: Overlake Medical Center and Clinics, the covered entity (CE), reported that multiple employees were the victims of an…
Hackers are using cookies to sidestep two-factor authentication
Fionna Agomuah reports: “Cookie stealing” is among the latest trends in cybercrimes that hackers are using to bypass credentials and access private databases, according to Sophos. Typical security advice for organizations has been to move their most sensitive information to cloud services or to use multifactor authentication (MFA) as a safety means. However, bad actors…