It’s been a frustrating matter, but it may finally be resolved, thanks to the individual known as @fs0ciety on Twitter. In May 2019, DataBreaches.net was alerted to an online bloodbank in India that had a misconfigured Amazon s3 bucket. Despite repeated emails by this site and even a phone call from Banbreach infosec in India,…
Court approves extradition of young hacker to US
Jonathan Shkurko reports: Joshua Epiphaniou will be the first Cypriot to be extradited to the United States after a Nicosia court ruled he should stand trial there, his lawyer Michael Chambers said. He faces 20 years in prison in two US states – Georgia and Arizona – where he faces several charges including wire and…
Startup vulnerability leaves Queer Chart student data exposed
Paxton Scott reports: A security flaw allowed users of Queer Chart, a startup founded by Stanford students to link members of the campus queer community, to access all users’ names, profile pictures, email addresses, dates of birth, pronouns, schools and anonymous IDs, its founders have acknowledged. An anonymous ID is meant to allow a user…
Macy’s Customer Payment Info Stolen in Magecart Data Breach
Lawrence Abrams reports: Macy’s has announced that they have suffered a data breach due to their web site being hacked with malicious scripts that steal customer’s payment information. This type of compromise is called MageCart attack and consists of hackers compromising a web site so that they can inject malicious JavaScript scripts into various sections…
Ransomware hits Louisiana state government systems
Catalin Cimpanu reports: A ransomware infection today took down IT systems and websites managed by the Louisiana state government, Governor John Bel Edwards revealed in a series of tweets. “Today, we activated the state’s cybersecurity team in response to an attempted ransomware attack that is affecting some state servers. The Office of Technology Services identified…
College Station stops online utility payments while investigating Click2Gov data breach
KBTX reports that College Station, Texas is warning utility customers about a potential Click2Gov breach. Read more on KBTX.