Bernie Cahiles-Magkilat has an update on the Cashalo breach, noted previously. The National Privacy Commission (NPC) said its initial findings showed data breach on cash-loaning application Cashalo where a certain user was found selling personal information of 3.3 million users. NPC said this following its preliminary probe on the data security issue of Cashalo, which…
Transport for NSW confirms data taken in Accellion breach
Aras Barbaschow reports: Transport for New South Wales (TfNSW) has confirmed being impacted by a cyber attack on a file transfer system owned by Accellion. Read more on ZDNet.
Cybercriminal sells credentials of French hospital workers
François Manens reports (translation): 50,000 user accounts of French hospital agents are for sale on a cybercriminal forum. This data could allow buyers to access the computer networks of certain health establishments. Once introduced to the system, criminals can deploy their ransomware and cripple the hospital. New alert for French hospitals, this time launched by the monitoring site…
Fr: The city of Chalon-sur-Saône victim of a cyberattack
Le Dauphine reports (translation): After the Villefranche-sur-Saône hospital or even the Dax hospital , it is the turn of the city and the agglomeration of Chalon-sur-Saône to be victims of a cyberattack. In the night from Saturday to Sunday, the computer systems were affected by “a crypto-virus”, told Frédéric Iacovella, director general of the services of the City and…
Follow-up: Data from the Toledo Public Schools attack by Maze reportedly being misused
In September, DataBreaches.net reported that Maze threat actors claimed to have attacked an Ohio public school district, but the district was not responding to inquiries from this site about the claims. One month later, this site named the district as Toledo Public Schools and reported that while Maze had dumped files with student and employee…
Experian challenged over massive data leak in Brazil
Angelica Mari reports: After receiving feedback from Experian over a massive data leak in Brazil, São Paulo state consumer rights foundation Procon described the company’s explanations as “insufficient” and said it is likely that the incident was initiated in a corporate environment. Procon notified the credit information multinational following the emergence of a leak that…