Jacquie Miller reports: The owner of a medical marijuana dispensary in Gloucester has apologized after emails were accidentally sent to 24 patients that revealed the names and addresses of all the store’s customers. “Some people were obviously upset, for good reason,” said Charlie Cloutier, owner of Greenworks Medicinal on Canotek Road. Staff phoned all the…
Hacker Wants $50K From Hacker Forum or He’ll Share Stolen Database With the Feds
Catalin Cimpanu reports: Extortion can also be funny when it happens to the bad guys, and there’s one extortion attempt going on right now that will put a big smile on your face. The victim is Basetools.ws, an underground hacking forum that allows users to trade stolen credit card information, profile data, and spamming tools….
Equifax Was Warned
Last year, a security researcher alerted Equifax that anyone could have stolen the personal data of all Americans. The company failed to heed the warning. Great reporting by Lorenzo Franceschi-Bicchierai on Motherboard. Go read it all.
Reserve Bank of India Fines Yes Bank $1 Million for Tardy Breach Reporting
Suparna Goswami reports: The Reserve Bank of India has slapped a $1 million (U.S.) penalty on Yes Bank for failing to promptly notify the central bank of a 2016 data breach of its ATM network. This is reportedly the first such penalty imposed on a bank. OK, this was a breach of the Yes Bank…
Thirty Percent of CEO Email Accounts Exposed in Breaches: Study
Kevin Townsend reports: Thirty percent of CEOs from the world’s largest organizations have had their company email address and password stolen from a breached service. Given the continuing tendency for users to employ simple passwords and reuse the same passwords across multiple accounts, the implication is that at least some of these CEOs are at…
Dark web vendors are selling remote access to corporate PCs for as little as $3
Danny Palmer reports: Dark Web marketplaces are selling remote access to desktop PCs for as little as $3, allowing criminals to spy on firms without resorting to malware. […] One of the most popular underground stores selling access is ‘Ultimate Anonymity Services’. Founded in early 2016, UAS offers over 35,000 RDP credentials for sale in…