2019 Breaches
O365 Non-Security – again
O365 Non-Security - again The US Cybersecurity and Infrastructure Security Agency (CISA) has become the latest government body to plead with admins to implement security best practices on Microsoft's Office 365 platform. The UK's National Cyber Security Centre...
Be Careful What You Browse — Drive By Malware on the Rise
Be Careful What You Browse -- Drive-By Malware on the Rise An ongoing operation that’s installing ransomware and other malware on the computers of unsuspecting website visitors is one of the most potent drive-by attack campaigns researchers have seen in recent...
Are You Ready? Iranian Cyber Counter Attacks
Are You Ready? Iranian Cyber Counter Attacks U.S. businesses should get ready for a barrage of digital retaliation from Iran after the Trump administration launched a cyber attack against the Islamic Republic’s rocket and missile launching systems, current, and...
Is Your App Safe? Maybe Not!
Is That App On Your SmartPhone Safe? Maybe Not! High-risk vulnerabilities are common across both Android and iOS mobile apps, with Android devices slightly more at risk than their iOS counterparts (43% vs. 38%), according to Positive Technologies'...
When Your Vendors Become A Cyber Liability
When Your Vendors Become A Cyber Liability If It's Digital, It's Hackable Customs and Border Protection failed to keep their photographic database of vehicular traffic crossing through US border crossings safe. It involved a single lane at one border crossing...
Phishing Scam resulted in The Release of Personal Health Information
Who: Palmetto Health # of Accounts Breached: 23,811 PatientsWhat was affected: Personal Health Information When it happened: November 2018 How it happened: Palmetto Health is notifying individuals of an email phishing incident that resulted in unauthorized access to...
HawksShop.com Compromised by Card Skimming Malware
Who: Atlanta Hawks’ online shop # of Accounts Breached: undetermined What was affected: Customers names, addresses and payment card numbers. When it happened: Started on June 6, 2017 How it happened: Cybercriminals using Magecart card-skimming code attacked the online...
Hacker Revealed Hacking Tools and Operations Carried Out By Iran’s Elite Cyber-Espionage Units
Who: Iran's elite cyber-espionage units, known as APT34, Oilrig, or HelixKitten. # of Accounts Breached: 66 victims What was affected: Usernames and password combos to internal network servers info and user IPs. When it happened: April 17, 2019 How it happened: In an...
KPMG Mexico responsible unsecured database that resulted in Data Leak
Who: KPMG Mexico # of Accounts Breached: Employees at 41 of KPMG Mexico’s clients. What was affected: Confidential payroll data of employees. When it happened: February 2019 How it happened: According to a seven-page confidential report, dated Feb. 22, KPMG Mexico...
Personal Client Information Stolen from WRHA
Who: Winnipeg Regional Health Authority # of Accounts Breached: 75 What was affected: Names and ward locations of clients When it happened: March 7, 2019 How it happened: The Winnipeg Regional Health Authority says a bag was stolen last month containing the personal...
Dr. Office Patient Information Held For Ransom after Cyber Breach Incident
Who: Ronald Snyder, M.D. # of Accounts Breached: 24,000 What was affected: Medical billing information, which may include: name, address, date of birth, gender, co-pay amount, patient status, employment status, telephone number, email address, and certain patients’...
Compromised Email Account Revealed PII of DHS Personnel and Clients
Who: Department of Human Services - Minnesota # of Accounts Breached: 11,000 What was affected: The compromised e-mail account contained a wide range of personal information about DHS clients, employees and applicants, including first and last names, dates of birth,...
Microfiche Data Lost During Move
Who: BC Pension Corporation # of Accounts Breached: 8,000 What happened: A box of microfiche the size of a Kleenex box disappeared during a recent office move in Victoria When it happened: January 28, 2019 How it happened: The BC Pension Corporation revealed in a...
County Government Crippled by Ransomware Attack
Who: Garfield County # of Accounts Breached: Undetermined What happened: A ransomware attack hit Garfield County’s computer systems, crippling them for weeks When it happened: 11 April 2019 How it happened: A ransomware attack hit Garfield County’s computer systems,...
Phishing Attack Against Baystate Health
Who: Baystate Health of Springfield # of Accounts Breached: About 12,000 patients What happened: A phishing incident resulted in unauthorized access to the email accounts of several employees When it happened: Between Feb. 7 and March 7. How it happened: A phishing...