CAUTION: This post contains some images showing adults with bruises or injuries. The images may be upsetting or disturbing. In October 2023, DataBreaches was contacted by a moderator for BreachForums. He had come across an exposed database and seeing how sensitive it was, contacted this site to see if we could alert those responsible for…
The Straits Times reports: Indonesia said it is beginning to recover data that had been encrypted in a major ransomware attack in June which affected more than 160 government agencies. The attackers, identified as Brain Cipher, asked for US$8 million (S$10.7 million) in ransom to unlock the data, before they later apologised and released the decryption key…
Christopher Palmieri reports: AT&T Inc. suffered a massive hack of customer data — separate from one reported earlier this year — that included records of calls and texts for nearly all of its mobile-phone users for a six-month period in 2022, one of the biggest breaches of private communications data in recent memory. The company said…
Matt Burgess reports: For more than a decade, Vyacheslav Igorevich Penchukov—a Ukrainian who used the online hacker name “Tank”—managed to evade cops. When FBI and Ukrainian officials raided his Donetsk apartment in 2010, the place was deserted and Penchukov had vanished. But the criminal spree came to a juddering halt at the end of 2022,…
by Craig Silverman, ProPublica This story was originally published by ProPublica. ProPublica is a Pulitzer Prize-winning investigative newsroom. Sign up for The Big Story newsletter to receive stories like this one in your inbox. Series: Zero Trust: Inside Microsoft’s Cybersecurity Failures Investigating how the world’s largest software provider handles the security of its own ubiquitous…
NCPA reports: Harrisburg, Pa. — A new state law will help protect consumers impacted by data breaches. Act 33 of 2024 requires an impacted organization to provide a free credit report and one year of credit monitoring to affected consumers. It also strengthens notification requirements and mandates notification of the Pennsylvania Office of Attorney General if a data…