2015, Identity Theft and Information Security

Change Healthcare Breach Hits 100M Americans

Krebs on Security

OCTOBER 30, 2024

The chief information security officer for a large academic healthcare system affected by the breach told KrebsOnSecurity they participated in a call with the FBI and were told a third party partner managed to recover at least four terabytes of data that was exfiltrated from Change by the cybercriminal group. million individuals.

Healthcare

Healthcare Insurance Computers and Electronics Data breaches

New Atrium Health data breach impacts 585,000 individuals

Security Affairs

DECEMBER 6, 2024

Atrium Health launched an investigation into the security breach and discovered that from January 2015 to July 2019, certain online tracking technologies were active on its MyAtriumHealth (formerly MyCarolinas) Patient Portal, accessible via web and mobile. The company notified the US Department of Health and Human Services (HHS).

Data breaches

Data breaches Identity Theft Accountability Healthcare

Travel leisure company Carnival Corporation discloses data breach

Security Affairs

MARCH 6, 2020

Data breaches

Data breaches Identity Theft Advertising Scams

Fragomen law firm data breach exposed Google employee’s data

Security Affairs

OCTOBER 27, 2020

The form contains employee’s information, including full name, date of birth, phone number, social security number, passport numbers, mailing address, and email address, Exposed data could be abused by crooks to carry out multiple malicious activities, including identity theft. Pierluigi Paganini.

Data breaches

Data breaches Identity Theft Advertising Insurance

Staples discloses data breach exposing customer order data

Security Affairs

SEPTEMBER 14, 2020

Exposed data could be abused by threat actors to carry out malicious activities, including identity theft and phone call scams. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Customers that received the data breach notification could contact the company by phone for any questions or concerns.

Data breaches

Data breaches Identity Theft Retail Advertising

Sprint revealed that hackers compromised some customer accounts via Samsung site

Security Affairs

JULY 16, 2019

.” The information exposed in the data breach includes the phone number, device type, device ID, monthly recurring charges, subscriber ID, account number, account creation date, eligibility, first and last name, billing address, and add-on services. ” ~ Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Accountability

Accountability Identity Theft Telecommunications Data breaches

Experts found 20 Million tax records for Russian citizens exposed online

Security Affairs

OCTOBER 1, 2019

The cluster included multiple databases, two of them contained tax and personally identifiable information about Russian citizens, prevalently from Moscow and the surrounding area. “The first database contained more than 14 million personal and tax records from 2010 to 2016, and the second included over 6 million from 2009 to 2015.”

Identity Theft

Identity Theft Scams Advertising Risk

U.S. Charges Russia GRU Intelligence Officers for notorious attacks, including NotPetya

Security Affairs

OCTOBER 20, 2020

According to the indictment, the GRU officers were involved in attacks on Ukraine, including the attacks aimed at the country’s power grid in 2015 and 2016 that employed the BlackEnergy and Industroyer malware. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Identity Theft

Identity Theft Malware Hacking Government

Personal details and documents for millions of Indians available in the deep web

Security Affairs

MAY 24, 2020

This breach includes sensitive information such as email, phone, home address, qualification, work experience etc.” ” Crooks could use personal information exposed in both data leaks to conduct various malicious activities, including identity thefts, scams, and corporate espionage. Pierluigi Paganini.

Data breaches

Data breaches Identity Theft Hacking Advertising

Former American Express employee under investigation for customers’ data abuse

Security Affairs

OCTOBER 2, 2019

On September 30th, 2019, the financial institution began sending out data breach notifications to the impacted, the notice informed them that the former employee potentially used the data for fraudulent activities, including identity theft and financial frauds. ” reads the data br each notification. Pierluigi Paganini.

Identity Theft

Identity Theft Advertising Data breaches Cybercrime

French daily Le Figaro leaks 7.4 Billion records

Security Affairs

MAY 2, 2020

” Experts pointed out that exposed data could lead to identity theft and multiple fraud scheme. ” Please vote Security Affairs for European Cybersecurity Blogger Awards – VOTE FOR YOUR WINNERS [link]. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Identity Theft

Identity Theft Passwords Accountability Advertising

A thief stole hard drives containing Facebook payroll data from a car

Security Affairs

DECEMBER 16, 2019

. “Out of an abundance of caution, we have notified the current and former employees whose information we believe was stored on the equipment and are offering them free identity theft and credit monitoring services,” Facebook said. The social media giant is working with police investigating the theft.

Identity Theft

Identity Theft Banking Advertising Media

Russian hacker Andrei Tyurin sentenced to 12 years in prison

Security Affairs

JANUARY 11, 2021

The man was arrested in Georgia at the request of US authorities, he was charged with multiple conspiracy counts, including wire fraud, aggravated identity theft and four counts of computer hacking. Andrei Tyurin is accused of being the mastermind of the organization that targeted the US financial institution from 2012 to mid-2015.

Hacking

Hacking Identity Theft Marketing Banking

LAPD data breach exposes personal info of thousands of officers

Security Affairs

JULY 30, 2019

The officers’ union, the Los Angeles Police Protective League, defined the incident as a serious security issue. ” Any data breach that exposes personal information belonging to law enforcement is very dangerous, such events expose officers to identity theft, phishing attacks, and other malicious activities.

Data breaches

Data breaches Identity Theft Advertising Media

Foxit Software discloses a data breach that exposed user passwords

Security Affairs

AUGUST 30, 2019

The company r ecommends customers to remain vigilant to avoid identity theft and phishing attacks. “Foxit also recommends customers to remain vigilant by reviewing account statements and monitoring credit reports to avoid identity theft. ” concludes the advisory. Pierluigi Paganini.

Data breaches

Data breaches Passwords Software Identity Theft

Popular Marketing Tool exposes data of users of dating sites

Security Affairs

SEPTEMBER 14, 2020

Leaked data could expose users to several malicious activities, including scams, identity theft, blackmail and extortion, and of course attack takeover. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Marketing

Marketing Identity Theft Advertising Authentication

Russian operator of Cardplanet carding site pleads guilty in the US

Security Affairs

JANUARY 24, 2020

The suspect was arrested in Israel in 2015, his case made the headlines multiple times because media speculated a possible prisoner swap with Naama Issachar, an Israeli-American that was arrested in Russia on cannabis charges. .” Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. District Judge T.S.

Identity Theft

Identity Theft Cybercrime Insurance Advertising

Cognizant admitted data breach in April Ransomware Attack

Security Affairs

JUNE 18, 2020

“The majority of the personal information that was impacted was information relating to our corporate credit cards. ” The company offers credit and identity theft monitoring services from ID Experts to all associates who have an active corporate credit card. Pierluigi Paganini.

Data breaches

Data breaches Ransomware Identity Theft Accountability

US DoJ charges Iranian hackers for attacks on US satellite companies

Security Affairs

SEPTEMBER 18, 2020

The hackers were employed in a coordinated campaign of identity theft and hacking on behalf of Iran’s Islamic Revolutionary Guard Corps (IRGC), a designated foreign terrorist organization. The campaign aimed at stealing critical information related to United States aerospace and satellite technology and resources.

Hacking

Hacking Identity Theft VPN Accountability

US-based children’s clothing maker Hanna Andersson discloses a data breach

Security Affairs

JANUARY 21, 2020

The retailer is offering MyIDCare identity theft protection services through ID Experts, it includes 12 months of credit and CyberScan monitoring, a $1,000,000 insurance reimbursement policy, and fully managed id theft recovery services. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Data breaches

Data breaches Identity Theft eCommerce Retail

PoS malware infected systems at 71 locations operated by US store chain Rutter’s

Security Affairs

FEBRUARY 14, 2020

Rutter’s customers should also file a complaint with the Federal Trade Commission and a police report in case of fraud or identity theft. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Rutter’s also set up a dedicated call center at 888-271-9728 for additional questions.

Malware

Malware Identity Theft Advertising Cybersecurity

Oregon Department of Human Services data breach impacted 645,000 clients

Security Affairs

JUNE 20, 2019

.” Individuals impacted by the data breach were enrolled in the department’s welfare and children services programs at the time of the security incident. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. ” reads the Associated Press. ” concludes the AP. Pierluigi Paganini.

Data breaches

Data breaches Identity Theft Insurance Advertising

3.4 Million user records from LiveAuctioneers hack available for sale

Security Affairs

JULY 14, 2020

Experts warn that attackers can use the PII in the data dump to carry out phishing campaigns, online and offline scams, and even identity theft. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Having these details makes it easier for threat actors to compromise the victims’ accounts.”

Hacking

Hacking Data breaches Identity Theft Advertising

A member The Dark Overlord group sentenced to 5 years in prison

Security Affairs

SEPTEMBER 22, 2020

authorities on six counts of aggravated identity theft, threatening to damage a protected computer, and conspiracy. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. The man was charged by U.S. Rabbitt of the Justice Department’s Criminal Division said. Pierluigi Paganini.

Identity Theft

Identity Theft Accountability Hacking Advertising

Cloud Hopper operation hit 8 of the world’s biggest IT service providers

Security Affairs

JUNE 27, 2019

indictment in December that accused two Chinese nationals of identity theft and fraud. Even is HPE has been hacked multiple times since 2010, most of the hack occurred between 2015 and 2017. APT10 hackers also targeted the customers of the IT companies stealing plans, blueprints, personal information, and other data.

Identity Theft

Identity Theft Hacking System Administration Advertising

New Zealand property management company leaks 30,000 users’ passports, driver’s licenses and other personal data

Security Affairs

JULY 15, 2020

Due to the fact that it is extremely easy to access these types of files, it is possible that bad actors may have accessed the information in this bucket and may potentially use it for malicious purposes. After we insisted that this type of data should not be made public, Amazon was finally able to secure the database on July 6.

Identity Theft

Identity Theft Advertising Phishing Risk

Payment card breach potentially impacts all locations of Wawa convenience store

Security Affairs

DECEMBER 20, 2019

“Our information security team discovered malware on Wawa payment processing servers on December 10, 2019, and contained it by December 12, 2019,” Wawa CEO Chris Gheysens wrote in a public letter. We continue to take steps to enhance the security of our systems.” Pierluigi Paganini.

Data breaches

Data breaches Identity Theft Malware Advertising

US authorities have sentenced to prison 3 Romanian men who hacked US servers

Security Affairs

JULY 24, 2019

The suspects have received sentences ranging from four years and three months to eight years and two months i n prison on wire fraud conspiracy , computer fraud and abuse, and aggravated identity theft charges. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Attorney Byung J. BJay ” Pak.

Hacking

Hacking Banking Identity Theft Phishing

IndieFlix streaming service leaves thousands of confidential agreements, filmmaker SSNs, videos exposed on public server

Security Affairs

JULY 31, 2020

While IndieFlix believes that the bucket has been publicly accessible since May 2015, the company has not found any suspicious activity or unauthorized access attempts to any of its accounts during the period. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Disclosure. Pierluigi Paganini.

Identity Theft

Identity Theft Accountability Advertising Marketing

Mastercard data breach affected Priceless Specials loyalty program

Security Affairs

AUGUST 23, 2019

. “We are working closely with the relevant authorities to investigate this incident,” adds Mastecard also stating that they are “currently reviewing our security safeguards to protect this information to identify appropriate improvements to protect against similar incidents in the future.” Pierluigi Paganini.

Data breaches

Data breaches Identity Theft Financial Services Advertising

A previously undetected FIN7 BIOLOAD loader drops new Carbanak Backdoor

Security Affairs

DECEMBER 29, 2019

Security experts from Fortinet’s enSilo have discovered a new loader, dubbed BIOLOAD, associated with the financially-motivated group FIN7. The group that has been active since late 2015 targeted businesses worldwide to steal payment card information. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

Cybercrime

Cybercrime Antivirus Identity Theft Malware

FIN7 Hackers group is back with a new loader and a new RAT

Security Affairs

OCTOBER 12, 2019

Security experts at FireEye Mandiant discovered that the FIN7 hacking group has added new tools to its arsenal, including a new loader and a module that hooks into the legitimate remote administration software used by the ATM maker NCR Corporation. ” ~ Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Identity Theft

Identity Theft Hacking DNS Advertising

Watch out! Malware Analysis Sandboxes could expose sensitive data of your organization

Security Affairs

AUGUST 19, 2019

The public availability of such kind of information could expose the owners to identity theft and other scams. The experts also discovered a large number of insurance certificates that expose various personally identifiable information (PII), such as names, phone numbers, postal and email addresses. Pierluigi Paganini.

Malware

Malware Identity Theft Advertising Insurance

More than 737 million medical radiological images found on open PACS servers

Security Affairs

SEPTEMBER 18, 2019

Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. ” concludes the report. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini. SecurityAffairs – PACS servers, data leak).

Identity Theft

Identity Theft Social Engineering Healthcare Internet

Tank, the leader of the Zeus cybercrime gang, was arrested by the Swiss police

Security Affairs

NOVEMBER 17, 2022

“The US authorities accuse the prosecuted person of extortion, bank fraud, and identity theft, among other things. Both were sentenced to two years and ten months of incarceration in May 2015 followed by a supervised release of 1 year.

Cybercrime

Cybercrime Banking Identity Theft Hacking

US Department of State offers $10M reward for info to locate six Russian Sandworm members

Security Affairs

APRIL 27, 2022

According to the indictment, the GRU officers were involved in attacks on Ukraine, including the attacks aimed at the country’s power grid in 2015 and 2016 that employed the BlackEnergy and Industroyer malware. The US Department of State states that cyber activities conducted by the APT group collectively cost impatced U.S.

Identity Theft

Identity Theft Government Malware Hacking

350 million decrypted email addresses left exposed on an unsecured server

Security Affairs

AUGUST 27, 2020

Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. They can then conduct elaborate phishing and social engineering attacks to gain access to the victims’ accounts on other digital services such as entertainment and shopping platforms or even online banking. Change your passwords approximately every 30 days.

Social Engineering

Social Engineering Passwords Marketing Phishing

Australian social news platform leaks 80,000 user records

Security Affairs

OCTOBER 5, 2020

We discovered the Snewpit bucket on September 24 and immediately reached out to the company in order to help secure the bucket. The Snewpit team responded within minutes and secured the files containing user records on the same day. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Identity Theft

Identity Theft Passwords Advertising Encryption

Online marketing company exposes 38+ million US citizen records

Security Affairs

SEPTEMBER 3, 2020

Because we were initially unable to identify the owner of the unsecured bucket, we contacted Amazon on July 27 to help them secure the database. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. What happened to the data? Look out for potential phishing emails and spam emails. Pierluigi Paganini.

Marketing

Marketing Media Advertising Identity Theft

Real estate app leaking thousands of user records and sensitive private messages

Security Affairs

MAY 27, 2020

Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Original post available on Cybernews: [link]. Ed’s interests include all things tech and cybersecurity. You can reach him via email or find him on Twitter giggling at jokes posted by parody accounts. Pierluigi Paganini.

Identity Theft

Identity Theft Advertising Accountability Passwords

Texas man sentenced to 145 months in federal prison for hacking Los Angeles Superior Court

Security Affairs

OCTOBER 23, 2019

In July, Aloba was found guilty of one count of conspiracy to commit wire fraud, 15 counts of wire fraud, one count of attempted wire fraud, one count of unauthorized impairment of a protected computer, five counts of unauthorized access to a protected computer to obtain information, and four counts of aggravated identity theft.

Hacking

Hacking Phishing Identity Theft Advertising

5 Common Phishing Attacks and How to Avoid Them?

Security Affairs

AUGUST 19, 2019

You can further secure your connection by using a VPN. It allows you to access the internet anonymously and disguise your actual identity and location, eliminating any chances of identity theft. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Use Two Factor Authentication.

Phishing

Phishing Accountability Authentication Identity Theft

Brooklyn Hospital lost patient records after a ransomware infection

Security Affairs

NOVEMBER 6, 2019

“The Hospital encourages those who may be affected to remain vigilant against incidents of identity theft and fraud, to review account statements and explanation of benefits, and to monitor credit reports for suspicious activity and to detect errors.” ” concludes the notice. “Under U.S. “Under U.S.

Ransomware

Ransomware Identity Theft Encryption Malware

The Challenges Facing the Passwordless Future

eSecurity Planet

SEPTEMBER 25, 2022

By 2015, Microsoft joined, and in 2020, Apple followed. In today’s technological environment, cryptography is frequently employed as a method of information security. The rising dependence on cryptographic technologies has highlighted many worldwide ethical and security concerns.

Passwords

Passwords Password Management Authentication Technology

Change Healthcare Breach Hits 100M Americans

New Atrium Health data breach impacts 585,000 individuals

Trending Sources

Travel leisure company Carnival Corporation discloses data breach

Fragomen law firm data breach exposed Google employee’s data

Staples discloses data breach exposing customer order data

Sprint revealed that hackers compromised some customer accounts via Samsung site

Experts found 20 Million tax records for Russian citizens exposed online

U.S. Charges Russia GRU Intelligence Officers for notorious attacks, including NotPetya

Personal details and documents for millions of Indians available in the deep web

Former American Express employee under investigation for customers’ data abuse

French daily Le Figaro leaks 7.4 Billion records

A thief stole hard drives containing Facebook payroll data from a car

Russian hacker Andrei Tyurin sentenced to 12 years in prison

LAPD data breach exposes personal info of thousands of officers

Foxit Software discloses a data breach that exposed user passwords

Popular Marketing Tool exposes data of users of dating sites

Russian operator of Cardplanet carding site pleads guilty in the US

Cognizant admitted data breach in April Ransomware Attack

US DoJ charges Iranian hackers for attacks on US satellite companies

US-based children’s clothing maker Hanna Andersson discloses a data breach

PoS malware infected systems at 71 locations operated by US store chain Rutter’s

Oregon Department of Human Services data breach impacted 645,000 clients

3.4 Million user records from LiveAuctioneers hack available for sale

A member The Dark Overlord group sentenced to 5 years in prison

Cloud Hopper operation hit 8 of the world’s biggest IT service providers

New Zealand property management company leaks 30,000 users’ passports, driver’s licenses and other personal data

Payment card breach potentially impacts all locations of Wawa convenience store

US authorities have sentenced to prison 3 Romanian men who hacked US servers

IndieFlix streaming service leaves thousands of confidential agreements, filmmaker SSNs, videos exposed on public server

Mastercard data breach affected Priceless Specials loyalty program

A previously undetected FIN7 BIOLOAD loader drops new Carbanak Backdoor

FIN7 Hackers group is back with a new loader and a new RAT

Watch out! Malware Analysis Sandboxes could expose sensitive data of your organization

More than 737 million medical radiological images found on open PACS servers

Tank, the leader of the Zeus cybercrime gang, was arrested by the Swiss police

US Department of State offers $10M reward for info to locate six Russian Sandworm members

350 million decrypted email addresses left exposed on an unsecured server

Australian social news platform leaks 80,000 user records

Online marketing company exposes 38+ million US citizen records

Real estate app leaking thousands of user records and sensitive private messages

Texas man sentenced to 145 months in federal prison for hacking Los Angeles Superior Court

5 Common Phishing Attacks and How to Avoid Them?

Brooklyn Hospital lost patient records after a ransomware infection

The Challenges Facing the Passwordless Future

Stay Connected