Duncan Riley reports: Cloud data management company Veeam Software Inc. is the latest of many companies to expose customer data via a misconfigured cloud instance, with 200 gigabytes of data relating to more than 440 million customer records found online. Detailed by security researcher Bob Diachenko, the leak of the data was discovered on a MongoDB database…
Gang crime spree targeted credit card machines, patient records in medical offices, attorney general says
Molly Sullivan reports: Thirty-two suspected gang members were charged on suspicion of committing a “high-tech crime,” which involved hacking into credit card terminals in dental and medical offices, and stealing patient identities, the California Department of Justice announced Monday. Attorney General Xavier Becerra said at a news conference in Sacramento the gangs, known as the…
Bugs in ProtonVPN, NordVPN Left Windows Vulnerable to Hackers
Adam Smith reports: ProtonVPN and NordVPN were exposed to vulnerabilities that could have allowed hackers to execute arbitrary code with administrator privileges on computers running Windows. The bugs, CVE-2018-3952 (affecting NordVPN) and CVE-2018-4010 (affecting ProtonVPN), were discovered by Cisco Talos security researchers and are similar to another security flaw (tracked as CVE-2018-10169) discovered in March…
AZ: Files containing patient info left unsecured at TMC HealthCare property
Gloria Knott reports: More than a thousand paper files containing patient information were left unsecured during a 2-week time frame at a storage suite on TMC HealthCare property in July, a news release from TMC HealthCare says. TMC HealthCare is the umbrella organization that includes Tucson Medical Center and other offices. This particular incident did…
Lifting the lid off cybercrime: Verizon’s 2018 Data Breach Digest
Clare Ward writes: Once again, Verizon has opened the doors on the reality of a data breach with the launch of the Verizon 2018 Data Breach Digest (DBD) series, enabling businesses to read undisclosed stories from the company’s cyber-investigative vault. The Data Breach Digest series puts cybercrime in context, outlining the (anonymized) specifics of data…
Karnataka’s famed land record database Bhoomi faces another security breach
Akshatha M reports: In a serious security breach of Karnataka’s famed land record database, 19 acres of government wasteland in Devanahalli were shifted to a private individual illegally last week. In Gobbaragunte village of Devanahalli taluk, around 40 km from Bengaluru, land value is very high. The incident has caused ripples in the revenue department. Land sharks are…