The following press release relates to an incident that Conti claimed in February, 2021. Conti dumped data from the entity on March 1, 2021 consisting of of more than 136 GB of data in 97,000 files. ANAHEIM, Calif., Aug. 18, 2021 /PRNewswire/ — Willdan Group, Inc. (“Willdan”) is providing notice of a recent incident that may affect the…
Category: U.S.
A bug in a medical startup’s website put thousands of COVID-19 test results at risk
Zack Whittaker reports: A California-based medical startup that provides COVID-19 testing across Los Angeles has pulled down a website it used to allow customers to access their test results after a customer found a vulnerability that allowed access to other people’s personal information. Total Testing Solutions has 10 COVID-19 testing sites across Los Angeles, and processes…
Data breach from contact tracing survey ‘low risk’ to Hoosier privacy, 750,000 affected
WANE reports: The Indiana Department of Health announced Tuesday it is notifying nearly 750,000 Hoosiers that data from the state’s COVID-19 online contact tracing survey was improperly accessed back in July. The data included name, address, email, gender, ethnicity and race, and date of birth. “We believe the risk to Hoosiers whose information was accessed…
T-Mobile says at least 47M current and former customers affected by hack
Zack Whittaker reports: T-Mobile has confirmed that millions of current and former customers had their information stolen in a data breach, following reports of a hack over the weekend. In a statement, T-Mobile, which has more than 100 million customers, said its preliminary analysis shows 7.8 million current postpaid T-Mobile customers had information taken in the…
New details — and data — emerge from Eskenazi Health ransomware incident
On August 4, this site noted that Eskenazi Health in Indiana had reportedly gone on diversion protocols following an attempted ransomware attack. On August 9, the hospital reported that it was still on diversion but that no patient or employee data was affected by the attack – or at least as far as they could…
Secret terrorist watchlist with 2 million records exposed online
Ax Sharma reports: A secret terrorist watchlist with 1.9 million records, including classified “no-fly” records was exposed on the internet. The list was left accessible on an Elasticsearch cluster that had no password on it. Read more on BleepingComputer. The government wouldn’t respond to inquiries by BleepingComputer as to whether this was the government’s Terrorist Screening Center list, and whether…