Data Breaches News, Articles and Updates

U.S. intel ponies up $100K to Russian operative for NSA hacking tools hawked by Shadow Brokers

The U.S. government was very interested in getting back the cyberweapons nicked from the NSA and posted online but eventually nixed the deal because they feared being sucked into a Russian effort to cause chaos in the U.S.

Ransomware attack on Sacramento Bee database exposes voter records of 19.5M Californians

The paper refused to pay the hackers' demand for a bitcoin ransom and is notifying subscribers whose information - including names, dates of births, phone numbers, and political affiliations - was affected.

Mulvaney ditches CFPB's Equifax probe

White House Budget Director and acting CFPB head Mick Mulvaney won't be pursuing an extensive investigation into Equifax's security practices after hackers stole data on 145.5 million American consumers.

Report: Number of cyber incidents doubled in 2017, yet 93 percent could easily have been prevented

Out of nearly 160,000 reported cyber incidents affecting businesses in 2017, 93 percent could have been prevented by following basic security measures such as regularly updating software, blocking fake email messages, using email authentication, and training employees, a new report claims.

Bell Canada breach exposes names, emails of 100K customers

The company urged customers to change their passwords and their security questions, but assured them that Bell Canada had implemented "additional security authentication and identification requirements" on their accounts.

Oh, baby! Infants' Social Security numbers spotted for sale on dark web

The personal identifiable information (PII) of infants, including Social Security numbers, were spotted advertised for sale on the dark web.

OnePlus breach may have compromised 40K users

A malicious script was injected into the company's payment page code to sniff out credit card information.

Cottage Health fined $2M by Calif. AG for two breaches

In the first breach, which occurred in 2013, an unencrypted server without basic security like password protection and firewalls made the records of 50,000 patients accessible online.

Cuomo orders new regs to protect New Yorkers from Equifax breach

Financial Services Superintendent Maria T. Vullo had already issued guidance to help licensed financial institutions act to protect consumers affected by the Equifax breach.

Judge says Yahoo must meet users in court after breaches

Judge Lucy Koh wrote that the Yahoo users risk future identity theft and other attacks after a series of data breaches.

Airway Oxygen hit by ransomware, data of 550K customers at risk

A ransomware attack in mid-April resulted in the compromise of customer and employee data at Airway Oxygen, a Grand Rapids, Mich.-based provider of home medical equipment.

Anthem to pay record $115M to settle data breach suit

Anthem, the nation's largest health insurer, has agreed to a $115 million charge to settle a class action suit.

$130K settlement against CoPilot for breach violation

Following its delay in notifying patients affected by a data breach, CoPilot Provider Support Services will pay $130,000 as a condition of a settlement with New York's attorney general.

Accounts of 6M CashCrate users exposed

User data on six million subscribers to the survey website CashCrate has been compromised.

Data breach at Oklahoma U impacts 30K students

Lax privacy settings in a campus file-sharing network led to an unintentional exposure of the educational records of thousands of students at the University of Oklahoma.

Data incident at Stephenville Medical & Surgical Clinic in Texas

An unnamed employee in the Medical Records Department mistakenly sent a spreadsheet containing data on former patients.

Russian accused of hacks of LinkedIn and Dropbox a step closer to extradition

A Russian accused by the FBI of hacking into a number of U.S. companies is a step closer to extradition from the Czech Republic.

'Very aggressive' election meddling by Russia, says former CIA director

John Brennan, former director of the CIA, told the House Intelligence Committee he suspected that associates in Donald Trump's campaign staff worked with Russian authorities in influencing the presidential election.

Target to pay out $18.5M to states in breach settlement

In a settlement with the attorneys general of 47 states and the District of Columbia, retailer Target will fork over $18.5M as penalty for a breach which exposed the contact information of more than 60 million customers

Breach of Florida agency exposes SSNs and concealed weapons license holders

A data breach at the Florida's Department of Agriculture and Consumer Services (FDACS) has put the personal information of thousands of people at risk.

Data of 1.9M Bell Canada customers compromised

Bell Canada on Monday announced that an unnamed attacker had gained access to customer information.

Brooks Brothers site hit with year-long data breach

The men's fashion retailer Brooks Brothers is alerting customers of a potential year-long breach.

Social Security Administration moves to improve security of its site

Citizens attempting to login to their accounts on the U.S. Social Security Administration website will now be required to offer further proof of their identity, but the enhanced security implementation is receiving mixed reviews.

Dates from hell: Users of U.K. dating site hit with explicit spam

At least 27 subscribers of Guardian Soulmates reported that details from their site profile were incorporated into explicit spam messages they received.

Breach of U.K.'s Debenhams site impacts 26K

The Flowers website of Debenhams, the U.K.'s largest department store chain (in outlet numbers), was hit with a breach.