26 Mar 2020

Cincinnati Firm Faces $5m Data Breach Lawsuit

In Cincinnati, freight brokerage company Total Quality Logistics faces a $5 million lawsuit over a data breach that occurred in February. The company suffered from a cyberattack on the 23rd of February that compromised its customer and carrier information after cybercriminals breached the company’s online web portal. The information disclosed

Read More
23 Mar 2020

200M Records of US Citizens Leaked in Unprotected Database

CyberNews, a Lithuanian research group, has discovered an unprotected database that holds 200 million detailed user records. The owner of the database remains unknown, however, the leaked profiles seem to be US users and contain individuals’ full names and titles, email addresses, phone numbers, birthdates, credit ratings, home and mortgage

Read More
20 Mar 2020

Misconfigured Elasticsearch Instance Exposes More Than 5 Billion Records

An open Elasticsearch incident has reportedly exposed more than 5 billion records from 2012 to March 16, when the breach was discovered. The data in two of the collections is information on data breaches collected by a UK research firm over the course of the same time period. The data

Read More
09 Mar 2020

T-Mobile Suffers Another Breach as Staff Emails Targeted

The phone carrier T-Mobile recently suffered a malicious cybersecurity attack that allowed the attacker access to T-Mobile customer account information. This is not the first time that T-Mobile has been the subject of such an attack; in 2018, 2 million customers had their information illegally accessed. T-Mobile is in the

Read More
06 Mar 2020

54% of healthcare vendors have experienced a data breach of protected health information

According to data released by Ponemon Institute and Censinet, over half of all healthcare vendors have experienced a data breach in which protected health information was exposed. This is a costly problem that points to a flawed third party risk assessment processes. The report shows that 54% of healthcare vendors

Read More
06 Mar 2020

3 Data Breaches Disclosed This Week: J.Crew, T-Mobile, and Carnival

This week, a series of enterprise data breached were disclosed, effecting the companies T-Mobile, J.Crew, and Carnival Corp. The high toll this week underscored how cybercriminals have been targeting companies recently. J.Crew stated that its customers’ information was compromised, and email addresses and passwords were obtained by an unauthorized third

Read More
02 Mar 2020

US Railroad Contractor Reports Data Breach After Ransomware Attack

RailWorks Corporation disclosed a ransomware attack that resulted in employees’ personally identifiable information being exposed. RailWorks Corporation is one of North America’s leading railroad track and transit system providers. The breach affected current and former employees, their beneficiaries and dependents, as well as those of independent contractors. The company currently

Read More
02 Mar 2020

Walgreens says mobile app leaked users’ personal data

Walgreen, a US pharmacy chain stated on Friday that it had been the victim of a data breach that exposed the personal detail of some of its mobile app users. The mobile app contained a bug that allowed users to view other users’ personal data and drug prescription details. This

Read More
28 Feb 2020

Desjardins Group Breach Cost $38m Higher Than Expected

Last year, the Quebec based financial institution Desjardins Group suffered from a data breach carried out intentionally by a malicious employee who had access to banking details. As a result of this individual’s actions, the data of 4.2 million Desjardins customers was exposed and 1.8 million credit cardholders who were

Read More
28 Feb 2020

Facebook sues SDK maker for secretly harvesting user data

Yesterday, Facebook filed a lawsuit against a data analytics firm, OneAudience, in a California court. Facebook alleges in the lawsuit that OneAudience paid developers to install its SDK in their apps, and later used the control it had over the SDK code to harvest Facebook users’ data. The court documents

Read More