Tim Sullivan reports: The Cameron County Elections Department is acknowledging a security breach in which someone gained access to files containing the personal identifying information of staff members and poll workers. Elections Administrator Remi Garza says the person was able to access files in the online storage system of Easy Vote, a company that provides…
Anonymous Social Media App Yik Yak Exposed Users’ Precise Locations
Lorenzo Franceschi-Bicchierai reports: The anonymous message board app Yik Yak is designed in a way that it is possible to get the precise location of a user’s post, and see users’ unique IDs, potentially allowing someone to dox and stalk users, according to a researcher. […] In April, David Teather, a computer science student, analyzed…
Refuah Health Center “recently discovered” a breach that was listed on the dark web in June, 2021?
On April 29, 2022, Refuah Health Center in New York issued a statement on their website that begins: The privacy and security of the personal and protected health information we maintain is of the utmost importance to Refuah Health Center. We recently discovered unauthorized access to our network occurred between May 31, 2021 and June…
DEA Investigating Breach of Law Enforcement Data Portal
Brian Krebs reports: The U.S. Drug Enforcement Administration (DEA) says it is investigating reports that hackers gained unauthorized access to an agency portal that taps into 16 different federal law enforcement databases. KrebsOnSecurity has learned the alleged compromise is tied to a cybercrime and online harassment community that routinely impersonates police and government officials to harvest personal…
Za: Over 3.6m records exposed in Dis-Chem cyber attack
Admire Moyo reports: Pharmacy retail giant Dis-Chem has become the latest South African organisation to fall victim to a cyber attack. According to the company, the cyber incident emanating from its third-party service provider resulted in data of over 3.6 million South Africans being compromised. The news comes barely two months after TransUnion’s systems were compromised, leaving millions of…
Quantum Imaging & Therapeutic Associates notification following 2021 data security incident
Quantum Imaging & Therapeutic Associates (QITA) is notifying patients of a data breach detected on October 7, 2021. WGAL reported on it after some recipients of the letter wondered if it was a scam. It’s not. QITA’s notice on their website states that they detected and stopped a data security incident on October 7, 2021…..