Catalin Cimpanu reports: The Dutch Data Protection Agency has levied a €400,000 ($455,000) fine today against Transavia, a Dutch airline that operates low-cost routes across Europe, for a security breach that allowed a hacker to steal the personal details of more than 83,000 passengers. The fine pertains to a security breach that Transavia publicly disclosed in February…
Category: Hack
Mom says her 11-year-old son hacked into his school’s virtual system and shut down classes
That feeling when you are told your child is some kind of evil genius/master criminal who has been sabotaging the school district’s network for months…. Jeroslyn Johnson reports: A mom recently went viral on TikTok after finally revealing all the trouble her 11-year-old son has been in due to his amazing tech skills. TikTok user @VictoriaPrettyMuch took to TikTok…
HPE says hackers breached Aruba Central using stolen access key
Lawrence Abrams reports: HPE has disclosed that data repositories for their Aruba Central network monitoring platform were compromised, allowing a threat actor to access collected data about monitored devices and their locations. Aruba Central is a cloud networking solution that allows administrators to manage large networks and components from a single dashboard. Read more on…
Robinhood Security Breach Exposes Data on Millions of Users
Annie Massa reports: Robinhood Markets Inc. said personal information of about 7 million people — or roughly a third of its customers — was compromised in a data breach last week and that the culprit demanded payment. The intruder obtained email addresses of about 5 million people as well as full names for a separate group…
China says a foreign spy agency hacked its airlines, stole passenger records
Catalin Cimpanu reports: Chinese officials said last week that a foreign intelligence agency hacked several of its airlines in 2020 and stole passenger travel records. The hacking campaign was disclosed last week by officials from the Ministry of State Security, China’s civilian intelligence, security, and secret police agency. Read more on The Record.
Technology vendor, mental health services provider, and pain management clinic all report breaches involving protected health information
QRS On August 26, healthcare technology services company QRS, Inc. (“QRS”) discovered that an attacker had compromised a patient portal and exfiltrated some files from that client’s server. The compromise had been detected within three days of the attack. The information the threat actor may have accessed or acquired may have included, depending on the…