Lawrence Abrams reports: Oxfam Australia is a charity focused on alleviating poverty within the indigenous Australian people and people from Africa, Asia, and the middle east. The charity is part of a confederation of twenty charities worldwide operating under the Oxfam umbrella. Last week, BleepingComputer learned of a threat actor claiming to be selling a database…
Category: Hack
Security firm Stormshield discloses data breach, theft of source code
Catalin Cimpanu reports: French cyber-security firm Stormshield, a major provider of security services and network security devices to the French government, said today that a threat actor gained access to one of its customer support portals and stole information on some of its clients. The company is also reporting that attackers managed to steal parts…
Oklahoma Tourism and Recreation Department investigates potential data security incident
Tiffany Bechtel reports: The Oklahoma Tourism and Recreation Department has received notice that an unknown person has been claiming to have stolen data from TravelOK.com and related websites. Officials say once the department was made aware of the claims they immediately contacted the Oklahoma Cyber Command to launch an investigation into the incident. They also took…
Unemployment fraud in one state and a breach while investigating unemployment fraud in another state
Unemployment fraud is a rampant problem these days. Even investigating it can increase the risk of fraud, it seems. Betty Lin-Fisher reports that hundreds of thousands of Ohioans have become victims, and they generally are first finding out because the Ohio Department of Job and Family Services (ODJFS) started sending out 1099 tax statements showing…
Wind River Security Incident Affects SSNs, Passport Numbers
Lindsey O’Donnell reports: Wind River Systems, which develops embedded system software, on Friday warned of a “security incident” that had exposed personnel records. One or more files were downloaded from the company’s network on or around September 29, it said. Affected data included information maintained within the company’s personnel records – including critical data like…
Personal Data of 3 Million+ People Exposed In DriveSure Hack
Once again, breaches are discovered when security firms read forums where data are shared or posted for sale. Risk Based Security discusses what they found involving DriveSure: In a lengthy post to prove the databases’ high quality, the threat actor detailed the leaked files and the user information. Typically, hackers only share valuable segments or…