The Philadelphia Federal Credit Union released this statement to ABC News: “On July 8, PFCU officials discovered potentially fraudulent activity involving a small percentage of members’ debit cards. While this incident is not the result of an internal PFCU breach, PFCU’s security and loss prevention specialists are working diligently to determine the cause of the…
Unsecured databases leak 90 million records of people and businesses in China
Dev Kundaliya reports: Two databases lying unprotected on the internet leaked records of more than 90 million people and businesses in China last week, a security researcher has claimed. The databases belonged to the Jiangsu Provincial Public Security Department in China and contained more than 26GB of data. In total, they contained 58,364,777 citizen records…
Malware attack disables government computer systems in LaPorte, Indiana
Nick Pappas reports: According to LaPorte County Commission President Dr. Vidya Kora, county employees will not have access to any government email or website for at least a couple days. Authorities say that the county experienced a malware attack that occurred on Saturday morning, disabling computer and email systems. Read more on ABC.
UK: Security Medway Council reforms eforms to stop blurting out residents’ details
Jude Karabus reports: Medway council in Kent has corked a hole in its website that spat out residents’ names, mailing addresses, phone numbers and email addresses after a Reg reader got in touch to complain. The breach appeared courtesy of some of Medway Council’s electronic forms. The council’s eforms were conceived during a collaboration of…
ICO statement: Intention to fine British Airways £183.39m under GDPR for data breach
In September, 2018, the International Airlines Group (IAG) announced that British Airways was investigating a possible data breach involving its website and mobile application. Soon after, we learned that 380,000 payments had been compromised in a few weeks between August 21, when Magecart malware was injected, and early September. Today, the U.K.’s Information Commissioner’s Office…
Sometimes, paying the ransom doesn’t solve the problems
Paying ransom doesn’t always guarantee that a ransomware victim will be able to recover all of the encrypted data. Some more food for thought in a news story today about ransomware in the New York Times that highlights how small government entities are being targeted recently: The F.B.I. said it had received nearly 1,500 ransomware…