A curated list of the top stories of the week concerning data leaks and digital threats.
By John E Dunn, May 28, 2019, Naked Security
One of the US’s most widely used vehicle license plate reader (LPR) companies, Perceptics, is reportedly investigating a data breach. A hacker claimed to have compromised the company, providing a list of 34 compressed directories amounting to hundreds of gigabytes and almost 65,000 files as evidence.
By Dell Cameron, May 24, 2019, Gizmodo
Several million records said to include bank account details, Social Security numbers, wire transaction records, and more were found publicly accessible on a server of First American Financial, a major U.S. financial service company.
By Catalin Cimpanu, May 24, 2019, ZDNet
Canva, a Sydney-based startup that’s behind the eponymous graphic design service, was hacked by the infamous GnosticPlayers. Data for roughly 139 million users has been taken during the breach, including details such as customer usernames, real names, email addresses, and city & country information.
By BBC News Team, May 29, 2019, BBC News
New Zealand’s main opposition party has denied hacking into the government’s computer systems to steal documents relating to the country’s budget. The National Party, which leaked details of the budget two days ahead of schedule on Tuesday, said it got the information legitimately.
By Lindsey O’Donnell, May 28, 2019, ThreatPost
An Elasticsearch database belonging to Australian event planning startup, Amazingco, was found leaking more than 200,000 records with personal details tied to children’s entertainment, wine tour events, and more. Details include names, emails, phone numbers, and addresses.
By Ross Snel, May 28, 2019, Barrons
Redtail Technology may have exposed personal client information of advisors who use the firm’s customer relationship management software. Data includes names, addresses, and Social Security numbers.
By Mike Moore, May 28, 2019, Tech Radar
Investment Week, a major UK financial news site, exposed the data of thousands of its readers. Details include full names, email addresses, and other subscription details, including business addresses.
By WKOW website Team, May 28, 2019, WKOW
Columbus Community Hospital says patients’ personal information may have been shared in an email scam. Names, account numbers, insurer information and social security numbers may have been compromised.