Another data leak by an Indian firm, it seems. John Leyden reports on this one: Online medical consultation service iCliniq has restricted access to thousands of medical documents it left in a public AWS S3 bucket. iCliniq acted earlier this week only after the slip-up was brought to its attention by German security researcher Matthias…
Credit Card Issuer TCM Bank Leaked Applicant Data for 16 Months
Brian Krebs reports: TCM Bank, a company that helps more than 750 small and community U.S. banks issue credit cards to their account holders, said a Web site misconfiguration exposed the names, addresses, dates of birth and Social Security numbers of thousands of people who applied for cards between early March 2017 and mid-July 2018….
Data leaks at 2 Thai banks spark call for legal safeguards
Cyber-security experts have urged the government to quickly strengthen legal safeguards by adding measures to prevent data leaks after the computer systems of two major Thai banks were hacked recently. According to the Bank of Thailand (BOT) on Wednesday, the computer systems of Kasikornbank (Kbank) and Krungthai Bank (KTB) were compromised in the attacks, affecting…
Leaked chats show alleged Russian spy seeking hacking tools
Just catching up with this great report by Ralph Satterson and Matthew Bodner of AP. It provides a great example of how innocent researchers need to remain vigilant about being played by spies. Six years ago, a Russian-speaking cybersecurity researcher received an unsolicited email from Kate S. Milton. Milton claimed to work for the Moscow-based…
Washington County report traces path of leaked information
CJ Lovelace reports: A document alleging sexual harassment by a Washington County commissioner was leaked to the father of a local TV news reporter, leading to a 2017 news report about it, according to a county investigative report released Thursday. The report, which was completed a year ago, says 10 county employees were interviewed about…
Former Brownsville Fire Chief pleads not guilty to computer security breach
CBS reports: Former Brownsville Fire Chief Carlos Elizondo pleaded not guilty to 11 felony counts of computer security breach on Wednesday. Elizondo is accused of accessing the Brownsville Fire Department’s emergency reporting system without consent on 11 occasions from Oct. 29,2017 to Nov. 23, 2017, according to a superseding grand jury indictment unsealed in June….