Damien Bancal reports (translation follows): I revealed to you, last November 3, the announced piracy of the pharmaceutical laboratory Expanscience (Mustela…). A second cyberattack, in four months, posted by a group of ransomware operators. After Maze , Egregor explained that he had invited himself to the company’s IT. On November 9, I discovered that the Bailly Creat lab, a French pharmaceutical laboratory specializing…
GA: JIA sends notices to those potentially affected by ransomware attack
Lauren McDonald reports: Jekyll Island Authority has sent notices to individuals whose data may have been compromised in a recent ransomware attack. The hackers could have had access to data affecting more than 7,000 individuals and companies who do business with the authority, according to a post on JIA’s website offering an update on the…
Privacy Commission probes suspected LTO data leak
Melissa Luz Lopez reports: The National Privacy Commission is investigating a suspected data leak involving car registrations under the Land Transportation Office. In a statement, the privacy body said it is looking into the data available on lisensya.info, which has a “Motor Vehicle Authenticator” that reveals the car make, plate and engine number, registration expiry date,…
PROOF POINTS: What happens when private student information leaks
Drawing upon the incredible work of Doug Levin and his K-12 Cybersecurity Resource Center, Jill Barshay of The Hechinger Report highlights some of Doug’s findings — findings the GAO relied heavily upon in their recent report. How you tabulate breaches can make a huge difference in the public’s — and Congress’s — understanding of the…
Report: Hotel Reservation Platform Leaves Millions of People Exposed in Massive Data Breach
Mark Holden of Website Planet reports on a big Oops! involving Prestige Software in Spain and a misconfigured AWS bucket: Courtesy of our security team at Website Planet, we can reveal that a hotel reservation platform has been exposing highly sensitive data from millions of hotel guests worldwide, dating as far back as 2013 and including…
Cyber Consulting Firms Get Tied Up in Post-Breach Lawsuits
Jake Holland and Andrea Vittorio report: Cybersecurity consultants could be on the hook for data breaches at companies they contract with after two recent court rulings in consumer class actions. Accenture Plc’s U.S. unit in October failed to escape claims made against the consultant in a consumer lawsuit over a hack of Marriott International Inc.’s hotel reservations database….