Team project management platform Trello was noted by the Have I Been Pwned? breach notification service to have data from more than 15 million users exposed and peddled on a dark web hacking forum following a data scraping incident this month, Forbes reports.
Individuals' full names, usernames, emails, and other account information were claimed to be included in the stolen file.
"...[T]he data was obtained by enumerating a publicly accessible resource using email addresses from previous breach corpuses. Trello advised that no unauthorized access had occurred," said Have I Been Pwned? in its email advisory.
Meanwhile, Trello noted that its investigation revealed no evidence suggesting that the exposed information had been exfiltrated through a breach of its systems.
"All evidence points to a threat actor testing a pre-existing list of email addresses against publicly available Trello user profiles," said a Trello spokesperson, who added that platform activity will be continuously monitored to ensure security.
CNN reports that Avast has been imposed a $16.5 million fine by the Federal Trade Commission for misleading customers with claims of protecting their browsing data but proceeding to gather and sell such data without prior consent.
Cybernews reports that several documents leaked on GitHub have revealed the Chinese government's utilization of spyware developed by homegrown information security firm I-Soon in its offensive cyber operations.
Get daily email updates
SC Media's daily must-read of the most current and pressing daily news