In today’s installment of misconfigured databases, include more than 10 million chat messages from more than 44,000 users on TheTreesNetwork. Chris Vickery, security researcher at Kromtech, writes: I have information on two different breaches to share today. Coincidentally they both involve sites that show videos to their user base. The first has to do with TheTreesNetwork.com,…
Category: Miscellaneous
Players’ personal information exposed in U.S. Soccer’s lawsuit
This was reported in February, but I missed it. I know, I know, I’ve let you all down. Cope with it. Better late than never, though, because so much personal information gets exposed in court filings and not enough has been done to address the problem. While the information exposed in this case is not the…
Open wide and say, “Aaaargh.” ADA sends malware to dental offices?
Oh, wonderful. The American Dental Association (ADA) says it may have inadvertently mailed malware-laced USB thumb drives to thousands of dental offices nationwide. The problem first came to light in a post on the DSL Reports Security Forum. DSLR member “Mike” from Pittsburgh got curious about the integrity of a USB drive that the ADA mailed to members to share updated…
QNB, Al Jazeera, and other Qatar entities have their data leaked online
Doha News reports that clients of Qatar National Bank (QNB), employees at Al Jazeera Media Network, and even secret service agents have had what appears to be their details leaked. The names, phone numbers, bank passwords and other sensitive information of what appears to be a large number of Qatar National Bank (QNB) customers has…
Church website hacked by extremist Islamic group
Rebecca Russell reports that the website of the Lamont Christian Reformed Church in Michigan was defaced with a message purportedly from the United Cyber Caliphate. A video from the United Cyber Caliphate automatically played reading, “We will conquer your Rome, break your crosses and enslave your women by the permission of Allah, the Exalted”. The church’s website…
Denver Archdiocese payroll system breached, 18,000 at risk
So which vendor was responsible for this one? The archdiocese wouldn’t answer that question when I put it to them…. Tom McGhee reports: Authorities are investigating a data breach at the Catholic Archdiocese of Denver that put current and terminated employees, their dependents, spouses, and beneficiaries at risk of ID theft. A third-party software provider…