Akshaya Asokan reports: Sen. Maggie Hasan, D-N.H. is demanding that the U.S. Government Accountability Office review how the Department of Homeland Security shares personal data with third parties following several recent security incidents in which such information was exposed. In an Oct. 23 letter to the GAO, Hassan writes that recent “troubling” security incidents connected to…
Ransomware hit TrialWorks, law firms and lawyers were not able to access court documents
Pierluigi Paganini reports: TrialWorks, a company that provides the most established and widely used legal case management software solutions, was a victim of a ransomware attack earlier this month. At result of the attack, law firms and lawyers, were not able to access the legal documents hosted on TrialWorks’ platform. Read more on Security Affairs.
UniCredit reveals data breach exposing 3 million customer records
Charlie Osborne reports: UniCredit has revealed a data breach resulting in the leak of information belonging to three million customers. On Monday, the Italian bank and financial services organization said that a compromised file, generated in 2015, is the source of the security incident. In total, roughly three million records were exposed, revealing the names, telephone…
Open wide and say, “Ugh, My Data!!!!!”
This is the story of how mapping and analysis of an open elastic search led to the discovery of a misconfigured Amazon s3 bucket that exposed data from hundreds of thousands of dental patients. If you live in Brazil, you may already be experiencing breach fatigue from having had so much of your personal and…
Ca: Dozens of patient records stolen from Winnipeg’s Children’s Hospital
CBC reports: The personal health information of 54 minors was stolen this week from a locked cabinet at the Children’s Hospital in Winnipeg, the province’s Shared Health agency said in a Friday news release. The stolen records relate to two days’ worth of scheduled surgical procedures for youths from Manitoba, Ontario and Nunavut. Read more on…
Irish beauty chain probes ‘possible patient data breach’
John Reynolds reports: THÉRAPIE Clinic, a chain of beauty treatment outlets, is investigating a possible data breach involving patient records. It is believed that patient information that may have included medical records had been accessed or taken without permission by a former employee. Read more on Independent.ie. I was initially surprised that the clinics’ records…