A recent listing on a popular forum claimed to be offering the entire Mexican voter database for 2021 — 91 million records. The data was formatted with the following fields: “CVE”,,”NOMBRE”,”PATERNO”,”MATERNO”,”FECNAC”,”SEXO”, “CALLE”,”INT”,”EXT”,”COLONIA”,”CP”,”E”,”D”,”M”,”S”,”L”, “MZA”,”CONSEC”,”CRED”,”FOLIO”,”NAC”,”CURP” In response to the listing, Alon Gal (@UndertheBreach) commented on Twitter that this was the second breach involving Mexico’s Instituto Nacional Electoral (INE)….
US indicts four members of Chinese hacking group APT40
Catalin Cimpanu reports: The US Department of Justice has indicted four Chinese nationals today for hacking companies, government agencies, and universities across the world on behalf of the Chinese government. The US said the four suspects, believed to be part of a much larger group, set up a company named Hainan Xiandun Technology Development Co.,…
Lake County Health Department announces two data breaches impacting nearly 25,000 patients
Sam Borcia reports: The Lake County Health Department announced two data breaches, one of which occurred in 2019, that compromised the data of almost 25,000 people. Jefferson McMillan-Wilhoit, the Chief Health Informatics and Technology Officer for the Lake County Health Department, said the first breach was discovered on July 22, 2019. McMillan-Wilhoit told the Chicago Tribune that…
Hackers Penetrated Iran’s Railroad Computers Long Before July Attack
Iran International reports: One week after cyber attack on Iran’s ministry of roads and the railroad system, an information security office at the presidential administration reported on Sunday that hackers had penetrated the computer systems at least a month earlier. A system-wide disruption in the computer network of Iran’s railroads due to a cyberattack on July 9 disrupted…
Jm: Staff, patients concerned about data breach at university hospital
Jovan Johnson reports: Loose network and cybersecurity with the problem-plagued Hospital Information Management System (HIMS) that’s gobbling up millions in cost overruns has exposed to hackers thousands of patient data at the University Hospital of the West Indies (UHWI), a Sunday Gleaner investigation has found. Although Advanced Integrated Systems (AIS), which is implementing the project that’s four…
China’s New Law Requires Researchers to Report All Zero-Day Bugs to Government
Ravie Lakshmanan reports: The Cyberspace Administration of China (CAC) has issued new stricter vulnerability disclosures regulations that mandate security researchers uncovering critical flaws in computer systems to mandatorily disclose them first-hand to the government authorities within two days of filing a report. The “Regulations on the Management of Network Product Security Vulnerability” are expected to…