Catalin Cimpanu reports: In 2018, a security researcher discovered a major vulnerability in Bitcoin Core, the software that powers the Bitcoin blockchain, but after reporting the issue and having it patched, the researcher opted to keep details private in order to avoid hackers exploiting the issue. Technical details were published earlier this week after the…
Even cybersecurity companies spill data and passwords
Danny Palmer reports: The business of cybersecurity companies is to keep users safe from hackers and cyber attacks but almost all cybersecurity providers have themselves had data leaked or stolen and published on dark web forums. Research by application security company Immuniweb found that nearly all of the top cybersecurity companies have had corporate data…
Singapore Says Grab’s Fourth Privacy Breach Is Concerning
Ameya Karve and Yoolim Lee report: Singapore’s privacy regulator imposed a S$10,000 ($7,311) penalty on ride-hailing company GrabCar Pte for a personal-data breach incident last year and raised the alarm on repeated violations by the unit of Grab Holdings Inc. In August 2019, an update of Grab’s mobile application exposed the personal data of more than…
CU Collections Notifies Customers of Data Security Incident
The following press release was released on Friday, September 11, after 5 pm. It appears to be the same press release CU Collections issued on July 29, with the exception that this one specifically mentions Wellspring Credit Union: CU Collections, LLC (“CU Collections” or the “Company”) announced today that it had suffered a data security…
Fairfax County Public Schools confirms it was a victim of cyberattack
There was nothing on the homepage of Fairfax County Public Schools in Virginia that would indicate any cyberattack or problem, but the ransomware threat actors known as Maze had listed the FCPS on its leak site this week and provided some files as proof of access/acquisition. DataBreaches.net contacted FCPS to ask them whether they…
Secure Data Technologies Sues Ex-Employee for Breach of Contract
Christina Tabacco reports: On Thursday, Secure Data Technologies, Inc. sued a former employee for hacking the company’s email system and removing confidential and proprietary information. The Eastern District of Missouri lawsuit states seven claims for relief under various Missouri and Illinois business tort and computer fraud statutes. According to the filing, Secure Data is an Illinois corporation,…