Yesterday I was contacted by hackers who claimed that GoldCorp, a gold-mining firm with headquarters in Vancouver, British Columbia (TSX:G NYSE: GG), had been “badly hacked” and its data dumped. I’ve written up the details we’ve found so far, and you can read all about it on The Daily Dot, where I’ll be contributing occasionally. And if you’re the hacker(s) who…
Category: Of Note
SWIFT warns customers of multiple cyber fraud cases, issues software security update
Jim Finkle reports: SWIFT, the global financial network that banks use to transfer billions of dollars every day, warned its customers on Monday that it was aware of “a number of recent cyber incidents” where attackers had sent fraudulent messages over its system. The disclosure came as law enforcement authorities in Bangladesh and elsewhere investigated the…
Lawsuit claims workers comp insurers hacked into injured workers’ files
Donna Mahoney reports: A California worker claims in a federal lawsuit that three of the largest workers compensation insurance companies in California illegally hacked over 32,000 confidential workers comp files. A lawsuit, which seeks class action status, was filed Tuesday in the U.S. District Court in Los Angeles against Omaha, Nebraska-based Berkshire Hathaway Homestate, San…
Mexico launches criminal probe into exposure of voter information (updated)
Dell Cameron reports: Mexican authorities have begun criminal proceedings into a data theft incident said to affect more than 87 million registered voters. Mexico’s National Electoral Institute (INE) filed a criminal complaint on Friday with the country’s election crimes office concerning millions of voter records discovered on a U.S.-based Amazon cloud server. The theft of…
Mexican government responds to data leak of voter information
Overnight, I received a response from the INE with answers to some questions I had posed to them about a massive database leak of Mexican voter data. The leak had been discovered by MacKeeper researcher Chris Vickery. Let’s begin with the government’s press release: INTERPONE INE DENUNCIA POR USO INDEBIDO DE LA LISTA NOMINAL DE…
Meanwhile, back at the phishing for W-2 department…
After 24 days of updating my scratch list of incidents involving phishing for W-2 information (business email compromise), I decided to take stock and try to organize what we have so far. I was surprised to see that there were already 90 incidents (make that 126 as of May 18th). Most of these entries were found…