Action copied and removed web shells that provided backdoor access to servers, but additional steps may be required to patch Exchange Server software and expel hackers from victim networks. HOUSTON – Authorities have executed a court-authorized operation to copy and remove malicious web shells from hundreds of vulnerable computers in the United States. They were…
Category: Hack
ParkMobile Breach Exposes License Plate Data, Mobile Numbers of 21M Users
Brian Krebs reports: Someone is selling account information for 21 million customers of ParkMobile, a mobile parking app that’s popular in North America. The stolen data includes customer email addresses, dates of birth, phone numbers, license plate numbers, hashed passwords and mailing addresses. KrebsOnSecurity first heard about the breach from Gemini Advisory, a New York City based…
Upstox alerts users of data breach; says funds, securities remain safe
PTI reports: Retail broking firm Upstox has alerted customers of a security breach that included contact data and KYC details of customers, but assured users that their funds and securities remain safe. The development comes close on the heels of reports of data breaches at organisations like MobiKwik, Facebook and LinkedIn. “On receipt of e-mails claiming unauthorised…
Administrative Advantage notifies patients of Remedy Medical Group after email hack
Remedy Medical Group is a pain management specialty practice in California. Their web site indicates that they are consultants to some professional sports teams in their area. Did a breach involving some of their patients’ data also impact any prominent athletes who might receive extortion demands? At this point, there is no indication of any…
Class action lawsuit filed against Roper St. Francis Healthcare over multiple data breaches
Regular readers may recall that September, 2020 was not a good month for St. Roper Francis, and DataBreaches.net had to explain that the healthcare system was dealing with notifications from two unrelated breaches. One involved 6,000 patients impacted by a hack of an employee’s email account. The other involved more than 90,000 patients impacted by…
SG: Personal data of 30,000 users of NTUC’s e2i training and job matching services may have been breached
Kenny Chee reports: The personal data of about 30,000 people who have used the services of National Trades Union Congress’ Employment and Employability Institute (e2i) may have been accessed by cyber criminals. The crooks may have had unauthorised access to people’s names, educational qualifications and NRIC, contact and employment details, according to a statement by…