Reuters reports: Indonesia is investigating a suspected security flaw in a COVID-19 test-and-trace app that left exposed personal information and the health status of 1.3 million people, a health ministry official said on Tuesday. Researchers from encryption provider (sic) vpnMentor said personal information in the Indonesia Health Alert Card (eHAC) app, often required to be used…
Bangkok Air confirms passenger PII leak after ransomware attack
Catalin Cimpanu reports: Bangkok Airways, the second oldest and the third biggest airline company in Thailand, has admitted last week that hackers stole passenger information during a security breach following a ransomware attack. The airline confirmed the breach in a press release last Thursday, a day after a ransomware gang known as LockBit posted a message…
Hackers Steal Data from Neuchâtel Cantonal Bank
FInews reports: There was a cyber attack on the Neuchâtel Cantonal Bank (BCN) at the beginning of August, spokeswoman Marie-Laure Chapatte, told the «AWP» news agency (in German), resulting in the potential theft of around 1,500 email addresses. Neither the banking infrastructure – such as the online banking platform – nor other sensitive systems were affected by the…
DuPage Medical Group notifying 600,000 patients that their personal information may have been compromised in cyberattack
Lisa Schencker reports: DuPage Medical Group is notifying 600,000 patients that their personal information may have been compromised during a July cyberattack. DuPage Medical Group, which is the state’s largest independent physicians group, experienced a computer and phone outage that lasted nearly a week in mid-July. The group worked with cyber-forensic specialists to investigate the incident and…
Sault Ste. Marie Police Service victim of ransomware attack
Not much has been revealed at this point, but Sault St. Marie Police Service has posted a statement disclosing that they have been the victim of a ransomware attack: Approved by: 361 – August 30, 2021 On Thursday, August 26, 2021 we became aware of a virtual ransomware attack on our systems. At no time…
Cream Finance loses $25 million in another security breach
Ibiam Wayas reports: For the second time in six months, popular decentralized lending protocol Cream Finance has suffered another attack due to a “reentrancy bug,” according to blockchain security and data analytics company, PeckShield. The protocol’s development team confirmed the incident on Twitter, noting that AMP tokens and Ether (ETH) were lost. Read more on Cryptopolitan.