Stephen White reports: Confidential data of employees at older people’s charity, Independent Age, have been accidentally exposed to a former worker. The blunder occurred as the company responded to the ex-staff member’s submission of a DSAR (data subject access request). Independent Age says that the security breach compromised personal data, including bank information, sort codes, account…
Category: Miscellaneous
Hackers demanded ransom in May attack on Asian Art Museum computers
ABC7 News has learned that the computers of the Asian Art Museum in San Francisco were hacked in a Ransomware attack in May. The museum’s system was restored but there are still some unanswered questions. Read more on ABC, but unfortunately, their report doesn’t answer most question. They do report that the museum didn’t pay…
Massachusetts Nonprofit Shelter Targeted by Ransomware
Marc Larocque reports: The nonprofit that runs the downtown homeless shelter was a target in a ransomware attack, which is a type of computer virus that encrypts user data, demanding ransom payments in return for access. Father Bill’s and MainSpring announced on Tuesday that it was attacked by a ransomware virus on April 11. But…
MN: Woodbury’s Merrill Arts Center hit with data theft
Bob Shaw reports: A list of donors and patrons of the Merrill Arts Center in Woodbury has been stolen. Board president Jeriann Jevning-Jones reported the theft to the Woodbury Police, saying the theft also involved personal information of customers, sponsors and advertisers. The lists were used to raise funds for “a new area theater company…
How Hackers Emptied Church Coffers with a Simple Phishing Scam
Sam Bocetta reports: The approach was simple, a combination email scam and social engineering phone call. All it took was a call to St. Ambrose Catholic Parish, claiming to be Marous Brothers Construction, a company working on a church renovation project for the past two months. But the phone call wasn’t from Marous Brothers Construction….
The University of Chicago Medicine Exposed ‘Perspective Givers’ Database With More Than A Million of Records
Another Elasticsearch misconfiguration found by SecurityDiscovery. You can read about it here.