Matt Burgess reports: WHEN THE PHONES and computer networks went down at Ridgeview Medical Center’s three hospitals on October 24, 2020, the medical group resorted to a Facebook post to warn its patients about the disruption. One local volunteer-run fire department said ambulances were being diverted to other hospitals; officials reported patients and staff were safe. The downtime at the Minnesota medical…
Securitas misconfiguration exposed airport employee info
From SafetyDetectives: The SafetyDetectives cybersecurity team discovered a critical data leak affecting the prominent multinational security company, Securitas…. One of the company’s Amazon S3 buckets was left open, exposing over 1 million files. The data we observed related to airport employees from different sites across Colombia and Peru, and there could be entities from other nations with…
UK: Statement on an agreement reached between Somerset Bridge Insurance Services Limited and the ICO
An update on a monetary penalty notice issued in 2019, from the Information Commissioner’s Office: In February 2019, the Information Commissioner imposed a monetary penalty notice against Somerset Bridge Insurance Services Limited (formerly, and at the relevant time, Eldon Insurance Services Limited) in the sum of £60,000 for a breach of the Privacy and Electronic Communications…
Hackers Move $3.55B Worth of Bitcoin From 2016 Bitfinex Hack
Omkar Godbole reports: Large amounts of bitcoin stolen from the cryptocurrency exchange Bitfinex six years ago were moved by hackers early on Tuesday. “So far this morning, 94,643.29 bitcoins ($3.55 billion) have been moved in 23 transactions, from a wallet associated with a theft from Bitfinex in 2016, to a new address,” blockchain analytics firm…
Mobile phone operator Cosmote and parent company OTE fined by Hellenic DPA over 2020 data breach slapped with fine over data breach
Ekathimerini reports: Mobile phone operator Cosmote and parent company OTE have been slapped with fines of over 9 million euros by Greece’s Data Protection Authority over a breach of user records in September 2020. Specifically, the watchdog fined Cosmote 6 million euros for failing to protect a file containing the call histories of thousands of…
Messages and user data from secret sharing app Whisper exposed online (again): report
Bob Diachenko reports: Two databases containing user information and messages ostensibly from the secret sharing app Whisper were exposed on the web without a password or any other authentication required to access them, according to Comparitech researchers. One of the databases appears similar to a Whisper database leaked in March 2020, which contained user’s messages…