On September 2, Ragnar_Locker added Do IT Consultants in Canada to their “Wall of Shame.” For its listing, they wrote: Due to high level negligence and careless network security of DO IT employees, has been allowed a huge leak which affected on clients of the DO IT company. No matter that they are an IT…
Category: Non-U.S.
Defence Housing Australia Investigates Third-Party Data Breach
Daniel Croft reports: An investigation by Defence Housing Australia (DHA) is currently underway after it was notified that one of its third-party service providers had been hit by a cyber attack. The organisation, which provides housing and accommodation for military personnel and their families on and off base, has stressed that while there has been…
Ukraine’s CERT Thwarts APT28’s Cyberattack on Critical Energy Infrastructure
Seen on The Hacker News: The Computer Emergency Response Team of Ukraine (CERT-UA) on Tuesday said it thwarted a cyber attack against an unnamed critical energy infrastructure facility in the country. The intrusion, per the agency, started with a phishing email containing a link to a malicious ZIP archive that activates the infection chain. “Visiting…
In: 320,000 Patient Records From Ayush Jharkhand Gov Leaked on Hacking Forum
CloudSek reports: On 14 August, CloudSEK’s contextual AI digital risk platform XVigil discovered a threat actor Tanaka sharing a database marked as bitsphere[.]in on an english speaking hacking forum. Analysis of the database reveals that the following information has been leaked: More than 3 lakh 20 thousand patient records containing their PII information and medical diagnosis. 500 login…
Pizza Hut Australia customer data hacked; ShinyHunters claims to have more than 1 million customers’ information
This has not been a great year for Australian citizens whose personal information has been compromised in a number of cyberattacks. Although DataBreaches regrets being the bearer of more bad news for them, more than one million customers of Pizza Hut Australia appear to have had their data acquired by ShinyHunters. According to “Shiny” (@shinycorp),…
Maker of ‘smart’ chastity cage left users’ emails, passwords, and locations exposed
Lorenzo Franceschi-Bicchierai reports on yet another incident in which responsible disclosure by a researcher and follow-up by media failed to get a company to address vulnerabilities that left the personal information of customers exposed: A company that makes a chastity device for people with a penis that can be controlled by a partner over the…