On or about October 12, Health Plan of San Joaquin (HPSJ) learned of unusual activity affecting its email system. On October 23, 2020, the investigation determined that an unknown person(s) had accessed a number of HPSJ employee email accounts between September 26, 2020 and October 12, 2020. Yesterday, HPSJ sent out notifications and notified the…
Category: Hack
NY: Filters Fast Settles Charges Stemming from Failure to Patch Critical Vulnerability Exploited in 2019 Data Breach
In 2019, Filters Fast experienced a data breach when a threat actor exploited a plugin vulnerability in vBulletin. Using SQL injection, the attacker was able to obtain consumers’ cardholder names, billing addresses, expiration dates, validation codes, and primary account numbers for purchases made between June, 2019 and July, 2020. Filters Fast did not detect any…
Student health insurance carrier Guard.me suffers a data breach
Lawrence Abrams reports: Student health insurance carrier guard.me has taken their website offline after a vulnerability allowed a threat actor to access policyholders’ personal information. guard.me is one of the world’s largest insurance carriers specializing in providing health insurance to students while traveling or studying abroad in another country. Read more on BleepingComputer.
Crypto exchanges BtcTurk and Pi Network linked to security incidents
CoinTelegraph reports: Major Turkish crypto exchange BtcTurk came forward about a data breach from mid-2018 that leaked sensitive information of over 500,000 users. According to the official announcement, the stolen data set contains BtcTurk users’ names, citizen ID numbers, emails, addresses, birthdates and mobile phone numbers. The stolen data set first appeared on an online…
Ca: After daycare site data theft, Quebec National Library shutting briefly for security upgrade
Selena Ross reports: Quebec’s Bibliotheque Nationale is shutting down, and going partly offline, until next Tuesday because it uses the same technology company that served the daycare booking website that had its data stolen earlier this week. “Following the attack on the government site La Place 0-5 earlier this week, the Government Cyber Defense Center…
De: Hackers attack Ehrmann, demand millions in ransom
Ehrmann SE is a dairy headquartered in Germany. It has production facilitites in Russia and Brazil, as well as sales offices in Italy, Spain, the Czech Republic, Poland, Finland and China. The multinational firm has reportedly been hit by hackers. All we really know so far, as reported yesterday by Jens Noll and Sabrina Karrer,…