February 19, 2024 at 12:20PM Wyze addressed a security incident affecting thousands of users, attributing it to a third-party caching client library that struggled to handle a surge in camera activity after an outage. This led to users seeing others’ video feeds. Wyze has taken steps to enhance security and prevent reoccurrence, but hasn’t disclosed … Read more
February 13, 2024 at 10:38AM LockBit ransomware’s attack on a technology partner resulted in the exposure of sensitive information, such as Social Security numbers, belonging to over 57,000 banking customers. Based on the meeting notes, the key takeaway is that a technology partner was attacked by LockBit ransomware, resulting in the exposure of sensitive information, … Read more
January 30, 2024 at 07:30AM Keenan & Associates has notified over 1.5 million individuals of a cyberattack in August 2023 that led to unauthorized access to personal information. Data including names, dates of birth, Social Security numbers, and health information was exfiltrated. The company is providing identity protection services and encouraging vigilance against identity theft … Read more
January 26, 2024 at 09:31AM Multiple journalists in Togo have been targeted by the Pegasus spyware, including Loïc Lawson and Anani Sossou, with evidence of at least 23 intrusions. Other journalists such as Ferdinand Ayité, Luc Abaki, and Carlos Ketohou were also potential targets. The spyware allows access to various data on mobile devices without … Read more
January 25, 2024 at 05:14PM Genetic testing provider 23andMe suffered a major data breach, with hackers stealing health reports and raw genotype data of 6.9 million customers over a 5-month period. The breach went undetected from April to September. The stolen data was posted on hacking forums and included vulnerable information like health reports and … Read more
January 24, 2024 at 02:32AM A password-less database with 1.3 million Dutch COVID-19 testing records was exposed online, including personal data like names, birth dates, and passport numbers. The database belonged to CoronaLab, a recommended commercial COVID-19 test provider in the Netherlands. Despite attempts to notify them, no response was received, and it took three … Read more
January 21, 2024 at 03:15PM A German court fined a programmer €3,000 for unauthorized access to a remote database server while investigating an IT problem for a client. The programmer found a significant data privacy issue, attempted to notify the software vendor, and was subsequently charged with hacking. The programmer plans to appeal the decision. … Read more
January 10, 2024 at 01:03PM HMG Healthcare has announced a data breach affecting 40 facilities. The compromised information includes names, contact details, dates of birth, health info, medical treatment details, Social Security numbers, and employee records. Based on the meeting notes provided, it appears that the compromised information includes names, contact information, dates of birth, … Read more
January 9, 2024 at 04:48PM A Chinese research institute claims to have decrypted Apple’s AirDrop, allowing the government to identify users sharing content. China’s history of censorship prompted people to use AirDrop during protests, leading to Apple limiting its use. Beijing Wangshendongjian Institute reportedly cracked AirDrop, identifying users sending content and leading to the arrest … Read more
December 22, 2023 at 06:45AM The Donald W. Wyatt Detention Facility in Rhode Island experienced a data breach affecting around 2,000 inmates, staff, and vendors. The breach, which occurred in November, involved malware and data theft, compromising personal details like financial info, medical records, and Social Security numbers. The facility is providing affected individuals with … Read more