Data Breach News, Articles and Updates

Sweden transport agency slips up, leaks top secret data

The leak exposed classified databases, including those on fighter pilots, police suspects and witness relocation subjects, but the Swedish government kept it mostly under wraps.

CIA Director Pompeo says WikiLeaks will 'take down America'

CIA Director Mike Pompeo continued to expressed disdain for WikiLeaks a day after the organization published more Vault7 documents.

Chipotle data breach leads to illegal ATM withdrawal

Gainsville police said they are searching for a man whose image was captured on June 30 at the Campus USA Credit Union in Gainsville where he allegedly used the login credentials from more than 40 people whose data was taken during the Chipotle Data breach in May.

Millions of SSN across 10 states leaked in Kansas Commerce Dept. breach

The personal information of millions of job seekers across ten states was compromised when an attacker managed to exploit a vulnerability in the application code of the America's Job Link Alliance division of the Kansas Department of Commerce.

Millions of Dow Jones customer records exposed due an internal error

A misconfigured database on an Amazon S3 server may have exposed the data of between two and four million Dow Jones & Co. customers, a report on the incident stated.

Ashley Madison agrees to $11.2M settlement for 2015 data breach

Ruby Corp. and Ruby Life, the parent organizations behind the adult dating website Ashley Madison, have agreed to an $11.2 million settlement with its customers who had their private information released during a 2015 data breach.

Staffing agency employee allegedly distributes patient information illegally

The Detroit Medical Center (DMC) has alerted more than 1,500 of a data breach caused by an employee who shared personal information with unauthorized individuals.

5,300 University of Iowa Health Care records exposed for two years

Thousands of University of Iowa Health Care (UIHC) patients had some of their private information inadvertently posted for more than two years on a web application development site.

Breached companies underperform on NASDAQ, study

A recent study found breaches also temporarily hurt a company's stock market status as well.

Report: Adversary hacks dark web hosting provider, accesses its customers' data

At least 91 dark web sites suffered a breach after a malicious actor accessed their hosting provider's server and apparently managed to export files and possibly linked databases as well, BleepingComputer reported on Monday.

Attackers used template injection technique to steal credentials of power plant operators

The hackers responsible for breaching the systems of multiple U.S. energy operators since May 2017 employed a phishing scheme that used malicious attachments to download a template file via an SMB connection, in order to silently harvest credentials, according to a blog post from Cisco Talos.

Data Breach hits California Association of Realtors

A subsidiary of the California Association of Realtors suffered a data breach that exposed user information for a two-month period earlier this year.

Unencrypted PII records leaked from WWE database hosted on AWS server

Bob Dyachenko, the Kromtech security researcher who discovered the data leak of 3 million WWE fans, says it was most likely accessible thanks to a misconfiguration by either WWE or a contractor.

What Breach? AA fails to alert customers after server leaks card data

Though the AA's shop was reportedly leaking payment card data, the motoring association did not alert customers.

Data.gov.uk leak prompts password changes

A GDS spokeswoman claimed that other government websites had not been affected in the breach, which exposed usernames, email addresses and hashed passwords.

600 Southern Illinois Healthcare patients exposed in data breach

About 600 patients belonging to Southern Illinois Healthcare had their data exposed after third-party vendor Experian Health compromised the data.

ID theft every 2 seconds - half hitting kids under 6

Keeper Security has released research on the dark web which shows how much hackers make from different credentials.

2,200 Aetna customers in Ohio and Texas suffer data breach

More than 2,000 Ohio and Texas Aetna customers had some of their personal information compromised when the information was accidentally exposed to unauthorized individuals

Hacktivist hits Minnesota gov databases to protest Philando Castile verdict

The stolen credentials reportedly give access to internal databases from the server admin.state.mn.us, which connects to other databases of the sites mn.state.us and mn.gov

ECB to force all Eurozone banks to report cyber-security breaches

The European Central Bank has announced it is looking to encourage information sharing between financial institutions, and the mandatory reporting of incidents appears to be a big part of its cyber-resilience strategy.

Bad habits put UK SMEs at risk of data breaches and unauthorised use

Ten percent of small business owners and employees in the UK admit to having poor security habits. The surveyed individuals admitted to regularly sharing confidential files on personal devices or sending documents to their personal emails rather than work emails.

POS data breach hits Buckle Inc. stores

Buckle Inc. was hit with point-of-sale malware on the payment data systems at an undisclosed number of locations.

2,000 Texas HHSC clients health data compromised

The Texas Health and Human Services Commission (HHSC) reported a data breach possibly affecting almost 2,000 people in the Houston area.

Brute Force Breach? WSU 85-pound safe theft compromises 1M records

The stolen information was part of research the university had conducted for outside agencies.