Randy Wimbley and David Komer report: …. It’s what Weldon. a Detroit retiree, stumbled upon Wednesday morning after setting up her account on the City of Detroit retirement system’s new online program. “I saw several links called lists, and I clicked on one – and it was my name and this first list was eight…
ID: St. Luke’s vendor suffers data breach affecting some patients
KMVT reports: St. Luke’s says it was informed by a business vendor of a data breach the vendor says could have affected patients and members of certain customers. The hospital system says one of its vendors informed them of a cybersecurity incident that occurred in late May of this year. The vendor had a contract…
Top secret documents scattered in street after careless disposal by German Chancellor Scholz
Emma Crabtree reports: The Chancellor’s bin bags were placed outside his private apartment and torn open by foxes, leaving the documents open in public. Multiple news sources have since criticised the German leader for using such a careless disposal method. Read more at Express. The documents were unshredded and just bagged and binned, it seems.
Growing risk to Indonesian citizens’ privacy as breaches and leaks appear on marketplaces
On July 22, DataBreaches reported on some recent breaches affecting Thai citizens and residents. In researching that post, DataBreaches was struck by the number of listings or offerings of data from ASEAN countries. In this post, DataBreaches provides a partial listing of some recent leaks or breaches affecting Indonesian citizens and residents. In general, the…
Responsible disclosure: DIVD describes a “long and windy road” notifying a Chinese firm
Some of you will recall that on a few occasions, DataBreaches has collaborated with Dutch researcher Jelle Ursem (aka @SchizoDuckie) to report on entities in the medical sector who were leaking their login credentials in GitHub repositories (see “No Need to Hack When It’s Leaking” and “Good Luck Explaining to HHS Why Your PHI is…
Israeli company Candiru allegedly behind cyberattacks against journalists
Alden Tabac reports: A zero-day vulnerability in Google’s Chrome web browser was discovered on July 1 when it was used to target journalists in the Middle East, according to cybersecurity company Avast. The majority of the attacks took place in Lebanon. “Based on the malware and TTPs used to carry out the attack, we can confidently…