Ax Sharma reports: Today, researchers have responsibly disclosed a security vulnerability by exploiting which they could access over 100,000 private employee records of United Nations Environmental Programme (UNEP). The data breach stemmed from exposed Git directories and credentials, which allowed the researchers to clone Git repositories and gather a large amount of personally identifiable information (PII) associated…
Category: Miscellaneous
Bill & Melinda Gates Foundation’s Charity GetSchooled Breaches 900k Children’s Details
WELP reports: The Financial Times was the first to break this story earlier today (29th December 2020. This breach occurred when GetSchooled (getschooled.com), a charity founded by the Bill & Melinda Gates Foundation in collaboration with Viacom left a database open and accessible to anyone with a browser and internet connection. According to TurgenSec: The breach impacts 930k individuals,…
Ethical Hacker Who Claimed To Access Trump’s Twitter Account Won’t Be Criminally Charged by Dutch Prosecutor
Robert Hart reports: A hacker who claimed to have logged into President Donald Trump’s Twitter account in October will not be punished because he tried to contact American authorities and report the security breach, a Dutch prosecutor announced Wednesday following a police investigation into the incident by the country’s High Tech Crime Team. Read more on Forbes. My…
Major leak ‘exposes’ members and ‘lifts the lid’ on the Chinese Communist Party
Sky News reports: A major leak containing a register with the details of nearly two million CCP members has occurred – exposing members who are now working all over the world, while also lifting the lid on how the party operates under Xi Jinping, says Sharri Markson. Ms Markson said the leak is a register…
Brooklyn Defender Services Identifies and Addresses Data Security Incident
December 10 – Today, Brooklyn Defender Services, a public defender organization representing clients in criminal, immigration, and family proceedings, announced that it has identified and addressed a data security incident. Brooklyn Defender Services recently discovered that an unauthorized person gained access to some of Brooklyn Defender Services’ employees’ email accounts. On September 13, 2020, Brooklyn Defender…
Attacked by ransomware, Golden Gate Regional Center continues providing services to developmentally disabled clients
On September 29, DataBreaches.net sent an email to Golden Gate Regional Center (GGRC) asking about claims by Conti threat actors that they had encrypted GGRC’s system(s). As proof, the attackers had uploaded more than a dozen files. GGRC, a state- and federally-funded nonprofit organization serving individuals with developmental disabilities in Marin, San Francisco and San…