RJ Marquez reports: Frost Bank is investigating a breach after the company discovered unauthorized access to digital images stored in those customers’ commercial image archives. The San Antonio based-bank issued a statement that said Frost detected the unauthorized access to a third-party lockbox software program earlier this week and immediately launched an investigation. The software…
National Lottery hacked: 10.5m players are warned to change their passwords
Sean Poulter reports: The National Lottery is advising all 10.5million people with online accounts to change their passwords following a security breach ahead of tonight’s £14 million Euromillions draw. The move follows an attempt by hackers to access accounts using a technique known as ‘credential stuffing’. Read more on Daily Mail.
H-E Parts Morgan hacked – TheDarkOverlord
In July, 2013, H-E Parts International, a manufacturer of aftermarket parts and components for the mining industry, acquired The Morgan Group. Morgan already had an established reputation for servicing the mining, oil, and gas industries. Together, H-E Parts International Morgan grew as a global corporation with offices in Canada, Chile, Australia, China, Peru, and throughout the United States….
The Dutch Data Protection Authority accidentally leaked its employees’ data
MIX reports: Oh, sweet irony: the Dutch Data Protection Authority – where registered companies are required to report breaches in data – has accidentally leaked the names of some of its employees in over 800 public documents, local outlet NU.nl reports. The discovery comes from Dutch cybersecurity firm NFIR. Pauline Gras from the Dutch Data…
OAIC received 31 notifications in the first three weeks of data breach scheme
Asha McLean reports: The Office of the Australian Information Commissioner (OAIC) has told ZDNet there has been 31 notifications provided to the office led by Timothy Pilgrim since Australia’s Notifiable Data Breaches (NDB) scheme came into effect on February 22, 2018. The NDB scheme requires agencies and organisations in Australia that are covered by the…
DocuTrac medical software is a breach risk, warns Rapid7
Warwick Ashford reports on what seems to me to be yet another case of hard-coded credentials creating a critical vulnerability in protecting patient data, and I, of course, have questions. Ashford reports: The QuicDoc & Office Therapy suite of software produced by DocuTrac contains security vulnerabilities that could allow attackers to gain control of patient…