The American Payroll Association (“APA”) is notifying people about breach discovered in mid-July. What Happened? The APA experienced a skimming cyberattack in which personal information was accessed by unauthorized individuals. The source of the cyberattack is thought to have been a vulnerability in APA’s content management system, which allowed a “skimmer” to be installed on…
Category: Hack
PULAU Corporation notifies employees of June hack
Defense supplier PULAU Corporation is notifying their employees about an intrusion and unauthorized access into parts of their network between June 11 and June 29. Based on our investigation, we believe the unauthorized party acquired certain employment-related records stored on the affected systems. The affected records contained certain personal information, such as name, contact information,…
Utah Pathology Services notifying more than 110,000 patients of data breach
From Utah Pathology Services, part of the security incident notice: On June 30, 2020, we learned than an unknown third party attempted to redirect funds from Utah Pathology. This suspicious activity did not involve any patient information, or the completion of any financial transactions. Upon discovery of the attempted fraud, Utah Pathology quickly secured the…
Cisco engineer resigns then nukes 16k WebEx accounts, 456 VMs
Sergiu Gatlan reports: A former Cisco employee pleaded guilty to accessing the company’s cloud infrastructure in 2018, five months after resigning, to deploy code that led to the shut down of more than 16,000 WebEx Teams accounts and the deletion of 456 virtual machines. According to a plea agreement filed on July 30, 2020, 30-year-old…
Former Chief Security Officer For Uber Charged With Obstruction Of Justice
This was a press release from the Department of Justice on August 20: SAN FRANCISCO – A criminal complaint was filed today in federal court charging Joseph Sullivan with obstruction of justice and misprision of a felony in connection with the attempted cover-up of the 2016 hack of Uber Technologies Incorporated, announced United States Attorney…
New Zealand stock exchange disrupted by fourth ‘offshore’ cyber attack
Reuters reports: The New Zealand government has activated national security systems after the nation’s stock exchange was disrupted by cyber attacks for a fourth day. There was no clarity on who was behind the “offshore” attacks, but the failure to stop them has raised questions about New Zealand’s security systems, experts said. Read more on The Guardian.