If you downloaded phpBB forum software on January 26, read this report by Catalin Cimpanu: An unknown attacker has compromised download links for the phpBB forum software, according to a statement released today by the phpBB development team. The hacker compromised only two downloads links, for the phpBB 3.2.2 full package and the phpBB 3.2.1 ->…
The 2018 W-2 Phishing/BEC Victims List
As this site has done in 2016 and 2017, DataBreaches.net will maintain a list of entities that disclose that they have become victims of a W-2 phishing or business email compromise (BEC) attack. For 2016, we compiled 175 incidents (although some of them didn’t become public knowledge until 2017), and for 2017, we had 204 incidents…
Coincheck hacked in ¥58 billion cryptocurrency heist, four years after Mt. Gox
Kazuaki Nagata reports: Echoing the Mt. Gox fiasco nearly four years ago, Tokyo-based cryptocurrency exchange Coincheck disclosed Friday it had been hacked and lost about ¥58 billion ($532 million) worth of its holdings, sending clients into a panic about the fate of their virtual assets. If confirmed, the heist would surpass the ¥48 billion ($390…
San Diego County Office of Education notifies component school districts of breach of employee retirement contribution data
The San Diego County Office of Education recently notified component districts that some employee retirement contribution data had been incorrectly shared with districts. From their notification: What Happened? On December 5, 2017, a San Diego County Office of Education (“SDCOE”) employee inadvertently sent an employee retirement contribution spreadsheet, containing employee name, Social Security number, and funding…
Allscripts Hit with Class-Action Complaint After Ransomware Attack
Can’t say that I’m surprised, not after reading that practices were having to turn patients away because they couldn’t access their patient records or billing records. Rajiv Leventhal reports that a class action complaint has been filed against Allscripts: It was just last week when electronic health record (EHR) vendor Allscripts suffered a ransomware attack…
Senate IT Tells Staffers They’re On Their Own When It Comes To Personal Devices And State-Sponsored Hackers
Tim Cushing reports: Notification of state-sponsored hacking attempts has revealed another weak spot in the US government’s defenses. The security of the government’s systems is an ongoing concern, but the Senate has revealed it’s not doing much to ensure sensitive documents and communications don’t end up in the hands of foreign hackers. Read more on…