Jeremiah Fowler reports finding a non-secured database with more than 25,000 records, many with sensitive information: The unsecured database contained internal screenshots of source code as well as customer documents that were stored in uploads folders. These documents include: US Federal and State tax filings, passports, driver licenses, birth and marriage records, business documents, denied…
Onix Group Faces 3 Lawsuits in Addiction Center Breach
On May 27, DataBreaches reported on two breaches that had been disclosed on the Friday before a holiday weekend. One of the two was a breach reported by Onix Group in Pennsylvania. As DataBreaches reported at the time: Their notice was provided on their own behalf and on behalf of Addiction Recovery Systems, Cadia Healthcare,…
Gates Corporation (no, not THAT Gates) discloses a ransomware attack
Gates Corporation in Denver describes itself as a leading manufacturer of application-specific fluid power and power transmission solutions. On July 7, its external counsel filed a notice of a breach with the Maine Attorney General’s Office. According to the notification, 11,090 people were affected by a ransomware attack that occurred on February 11. The firm’s…
Intellectual property allegedly from Razer appears for sale on hacking forum
Data that is claimed to be from Razer was posted on a hacking forum today in a sales listing. The listing by a forum member provides numerous screencaps of files and directories, allegedly from razer.com, and is seeking $100k in Monero. Hello. I am selling what the title explains. I have stolen the source code,…
Increased Truebot Activity Infects U.S. and Canada Based Networks
From CISA Release Date: July 06, 2023 Alert Code: AA23-187A SUMMARY The Cybersecurity and Infrastructure Security Agency (CISA), the Federal Bureau of Investigation (FBI), the Multi-State Information Sharing and Analysis Center (MS-ISAC), and the Canadian Centre for Cyber Security (CCCS) are releasing this joint Cybersecurity Advisory (CSA) in response to cyber threat actors leveraging newly…
Top Suspect in 2015 Ashley Madison Hack Committed Suicide in 2014
Brian Krebs reports: When the marital infidelity website AshleyMadison.com learned in July 2015 that hackers were threatening to publish data stolen from 37 million users, the company’s then-CEO Noel Biderman was quick to point the finger at an unnamed former contractor. But as a new documentary series on Hulu reveals [SPOILER ALERT!], there was just one problem with that theory: Their…