There is a significant update to a breach at Nebu software that may have impacted millions of Dutch people. As reported previously, Blauw took Nebu to court, seeking an injunction to require Nebu to provide more information on the breach. The hearing was yesterday, and the court issued an order. NU.nl reports (machine translation): ……
Customers of Winnipeg’s Thermea spa alarmed after notification of significant data breach
Ozten Shebakheget reports: The parent company of a popular luxury spa in Winnipeg is in hot water after a data breach potentially opened the door for hackers to access a variety of private information from customers. This week, customers who purchased gift certificates from Thermea spa between early November and late February were told in an…
OCR Labs denies breach report details, patches vulnerability
Chris Burt reports: A vulnerability allegedly exposing sensitive credentials of Australian financial institutions has been closed by OCR Labs, after being discovered and disclosed by Cybernews researchers. The biometric liveness detection API used by OCR Labs is among the exposed data, according to the report. OCR Labs takes issue with details in the report, however, telling Biometric Update that the…
UK criminal records office confirms cyber incident behind portal issues
Sergiu Gatlan reports: The UK’s Criminal Records Office (ACRO) has finally confirmed, after weeks of delaying issuing a statement, that online portal issues experienced since January 17 resulted from what it described as a “cyber security incident.” ACRO is the country’s national law enforcement organization responsible for managing criminal record information, providing criminal records on…
Crossbow firm discloses data breach: crooks compromised credit card data
Jurgita Lapienytė reports: Killer Instinct, a company that trades high-tech modern adaptations of the archaic long-range weapon, has disclosed a data breach affecting over 800 users. The company filed a notification with the Maine Attorney General’s Office, saying threat actors obtained users’ financial account or credit/debit card numbers in combination with security, access code, password…
Reports continue to emerge from Community Health Systems entities affected by Fortra/GoAnywhere breach
The number of entities disclosing that they were affected by the Fortra/GoAnywhere breach continues to mount. Because a number of entities are part of CHSPSC, LLC (“CHSPSC”) DataBreaches wants to make readers aware of two notices: Community Health System’s security incident notice. and A map of CHSPSC locations so you can look at your state…