Risk Based Security notes: On March 2nd, 2020, a notorious threat actor posted a leaked Vijay Sales database on a popular dark web hacker forum. Vijay Sales is a large electronics retail store chain in India, with nearly two hundred thousand users affected in the leak. The threat actor claimed the source was from an…
Weibo Confirms 538 Million User Records Leaked, Listed For Sale on Dark Web
Caiwai Chen reports: Rumors have spread after Wei Xingguo (Yun Shu), CTO of Chinese Internet security company Moresec and former chief of Alibaba’s Security Research Lab posted on Weibo that millions of Weibo users’ data had been leaked on March 19. Wei claimed that his own phone number was leaked through Weibo and had received…
Tandem Diabetes Care notifies customers of phishing incident
Update: This incident was reported to HHS on March 17 as impacting 140,781 patients. Their press release: Tandem Diabetes Care, Inc. (“Tandem”) is committed to protecting the confidentiality and security of our customers’ information. Regrettably, this notice is to inform our customers of a recent phishing incident that may have involved some customer information. What…
UK: Nursing home probed after residents’ personal details are found in the street
John Pring reports: A nursing home is facing an investigation into a “very serious” breach of data protection laws, after detailed personal information about its 36 disabled residents was apparently found in the street. The four-page document contains the names of all 36 residents of Manor Hall, in Eastbourne, as well as their health conditions,…
[CORRECTED] A UK-based Security Company Seemed To Have Inadvertently Exposed Its ‘Leaks Database’ with 5B+ Records
UPDATE and CORRECTION: DataBreaches.net received an email from a firm who claimed that a report by Bob Diachenko, whose research report had been quoted on DataBreaches.net, had incorrectly claimed that they had had a data breach. Diachenko has revised his report. In light of the correction, DataBreaches.net is deleting the excerpt from Bob’s report that originally…
Sodinokibi Ransomware Data Leaks Now Sold on Hacker Forums
Lawrence Abrams reports: … Recently, the Sodinokibi Ransomware operators published over 12 GB of stolen data allegedly belonging to a company named Brooks International for not paying the ransom. Read more on BleepingComputer.