Zack Whittaker reports: More than a year after patches were released to thwart powerful NSA exploits that leaked online, hundreds of thousands of computers are unpatched and vulnerable. First they were used to spread ransomware. Then it was cryptocurrency mining attacks. Now, researchers say that hackers are using the leaked tools to create an even…
OPM to Rebid Identity Theft Protection Contract Affecting Millions of Hack Victims
Eric Katz reports: Millions of current and former federal employees could soon have a new company providing them with credit monitoring and identity theft protections, as the Office of Personnel Management plans to rebid a contract worth hundreds of millions of dollars. The current contract, which OPM signed with ID Experts in the wake of…
Urban Massage exposed a huge customer database, including sensitive comments on its creepy clients
Zack Whittaker reports: Urban Massage, a popular massage startup that bills itself as providing “wellness that comes to you,” has leaked its entire customer database. The London, U.K.-based startup — now known as just Urban— left its Google-hosted ElasticSearch database online without a password, allowing anyone to read hundreds of thousands of customer and staff…
NC: Wilmington city employees’ health insurance info exposed by email error by BCBS NC
Emily Featherston reports: Email is no stranger to being linked to cases of identity theft and data breaches. Most of the time, the thief sends a phishing message that coaxes information out of the victim or brings along viruses or malware. However, a single email led to the improper release of the information of 158…
About 2.65M patients at Charlotte’s Atrium Health hit with third-party data breach
Caroline Hudson reports: About 2.65 million patients of Charlotte-based Atrium Health were recently hit with a data breach in which unauthorized parties gained access to their information. Hackers attempted to lift patient information over a weeklong period from Sept. 22-29. The data was stored in a third-party system provided by AccuDoc Solutions Inc., which provides…
Private data of users of PratenOnline.nl stolen and held for ransom?
Damn. This is a breach involving highly sensitive data. I am publishing a Google translation of a report that appeared on Security.nl. If you can read Dutch, please go read the original report. I hope that Security.nl understands that I am using their content because this breach is so serious and I want my readers to…