Paul Bischoff writes: An online database of more than 5 million records apparently belonging to MedicareSupplement.com was left open and accessible to the public. On May 13, 2019, Comparitech worked alongside security researcher Bob Diachenko to uncover the publicly available MongoDB instance that appears to be part of the website’s marketing leads database. MedicareSupplement.com is…
Breach at Cloud Solution Provider PCM Inc.
Brian Krebs reports: A digital intrusion at PCM Inc., a major U.S.-based cloud solution provider, allowed hackers to access email and file sharing systems for some of the company’s clients, KrebsOnSecurity has learned. El Segundo, Calif. based PCM [NASDAQ:PCMI] is a provider of technology products, services and solutions to businesses as well as state and federal…
MN: Woodbury’s Merrill Arts Center hit with data theft
Bob Shaw reports: A list of donors and patrons of the Merrill Arts Center in Woodbury has been stolen. Board president Jeriann Jevning-Jones reported the theft to the Woodbury Police, saying the theft also involved personal information of customers, sponsors and advertisers. The lists were used to raise funds for “a new area theater company…
FL: Key Biscayne Reports Data Breach
Hank Tester reports that a third city in Florida has disclosed a cyberattack. In the past month, we’ve seen Riviera Beach and Lake City both wind up paying hundreds of thousands of dollars in ransom to attackers who managed to lock up systems with ransomware. In this newest case, we have not yet been told…
Seven weeks after a crippling ransomware attack, Lake City agrees to pay almost $500,000 ransom demand
On June 11, DataBreaches.net noted a report that Lake City, Florida was struggling to recover from “triple threat ransomware.” The attack had occurred on May 10, and one month later, the city’s landline phones were still knocked out and other services were also affected, although emergency services were operating. Now, one week after another Florida…
Borough of Westwood, NJ provides notice of a data breach that began in 2018
WESTWOOD, N.J., June 25, 2019 /PRNewswire/ — On or around December 22, 2018, Westwood became aware of unusual activity on the Westwood network. Westwood immediately launched an investigation into the activity, which included working with a leading third-party forensic investigation firm, to determine the nature of the activity. The investigation confirmed that malware was introduced on…