Jai Vijayan reports: Hot on the heels of attacks against US state government websites, pro-Russian threat group Killnet on Monday disrupted the websites of multiple US airports in a series of distributed denial-of-service (DDoS) attacks. It also called on similarly aligned groups and individuals to carry out DDoS attacks on other US infrastructure targets, in…
PG&E was publicly exposing partial SSN information of US consumers through its use of Experian Identity Verification questions.
Somehow I missed this one but it’s so significant that even though I am late with linking to it, I hope to make more people aware of it. @Lucky225 writes: I recently discovered PG&E will let you sign up for electricity online without providing your SSN. Their website offered an option for “Alternate Identification”, so…
Hackers target SingTel’s Dialog after huge Optus data breach
Angus Whitley reports: A second Australian business owned by Singapore Telecommunications suffered a cyberattack, compounding the data-security crisis at the company following the huge data breach at mobile phone operator Optus. A hack on technology consulting company Dialog, which SingTel bought earlier this year, may have accessed data on fewer than 20 clients and 1000…
State Bar of Georgia Notifies Members and Employees of Cybersecurity Incident
The State Bar of Georgia has notified members and employees of a cyberattack in April that resulted in access to the information of some current and former employees and members. The State Bar determined that the following personal information may have been accessed: name, address, date of birth, Social Security number, driver’s license number, direct deposit…
Johnson Fitness and Wellness hit by DESORDEN Group
In what has become a familiar event, DESORDEN Group announced yet another attack on a multinational corporation. This time, their target was Johnson Fitness and Wellness, a subsidiary of Johnson Health Tech. Co., Ltd. Johnson Health Tech manufactures exercise training equipment and is listed on the Taiwan stock exchange; Johnson Fitness is headquartered in the…
Talbert House settles litigation stemming from 2021 breach
In July and September of 2021, DataBreaches reported on a breach involving Talbert House in Ohio. DataBreaches had discovered data from Talbert House advertised on Marketo. The data from the non-profit agency included clients’ and employees’ files, as well as data from third parties and partners. Of note, DataBreaches reported that the Marketo listing had…