GDPR Services report 13 Private Data breaches
– Week 25, 2019 –
This is a curated list about last week’s latest news from by our GDPR Services. Be informed about the latest 13 Private Data breaches, identified and reported publicly during Week 25, 2019.
As these Private Data breaches have a severe negative impact on any business and highly serious legal consequences, consider a these GDPR Service packages: on-demand GDPR COMPLIANCE or a recurrent monthly service of GDPR COMPLIANCE ADD-ON together with your dedicated data protection OFFICER package.
- A state-by-state comparison of the top data breaches has been assembled.
- Since 2008, there have been nearly 10,000 of them, exposing 10 billion records. They coordinate with overall population numbers: South Dakota, North Dakota, Wyoming, West Virginia, and Hawaii suffered the fewest ones, and California and New York the most. Which states have the most data breaches? Data breaches by US state
- xSocial Media, a Florida-based ad agency left their database open and leaked Private Data.
- The leaked details from their database included sensitive details about medical malpractice cases, and combat injuries sustained by US military veterans. Bank accounts were also part of the leak. Report: Medical Data Leaked for Hundreds of Thousands of Users (including US Veterans)
- Canada’s largest credit union Desjardins apparently was compromised by a phishing attack, the company confirmed.
- Private data of nearly 3 million of its members and business partners was leaked online. Passwords, security questions, and PINs weren’t part of the leak, however. Users will receive a year of free credit monitoring. Important message for our members June 20, 2019 – 2:00 pm
- Ransomware continues to make news this week.
- There were two major attacks recently reported: First the Brookside ENT hearing clinic in Michigan closed after a ransomware attack encrypted all of its computerized medical records in April. The attackers demanded $6,500 and the owners decided not to pay. Second, the trucking company A. Duie Pyle was also hit more recently with ransomware. The company was able to quickly restore many systems, although a few portions of their website remained offline. Michigan Practice to Shutter after Hackers Delete Patient Files and Pennsylvania trucking company falls victim to ransomware attack
- Oregon State University has discovered a breach from last month that compromised hundreds of students’ private data.
- Free credit monitoring has been offered. Oregon State University (OSU) Discloses Data Breach
- Seven million Venmo instant P2P payment transactions have been copied over a six-month period by a CS student and posted to Github.
- The issue is there isn’t any encryption by default and that the Venmo API is easily scriptable and completely open. This is the second such attack, this time by a different researcher. If you use Venmo, go to Settings/Privacy and select private for your past and future transactions. Millions of Venmo transactions scraped in warning over privacy settings
Discover more trending and viral stories from our GDPR Service. The remaining Private Data breaches made news headlines. All these news related to GDPR Services happened just in the last week.
- More than 645K Oregonians impacted by DHS data breach
- Personal data of more than 645,000 clients of Oregon’s Department of Human Services was compromised during a January data breach, the agency disclosed Tuesday. This number is significantly higher than the agency’s original report in March that the number of people affected “exceeded 350,000.” More than 645,000 Oregonians impacted by DHS data breach
- Where Data Breaches Happen the Most and Why
- Although attackers no longer discriminate when it comes to the brands they target, there are a few industries where data breaches are more common. Obviously, these industries hold more valuable data than some of the others. Firms that are a part of the industries below should begin to take the necessary steps to protect themselves and, most importantly, their clients. Data could very well be considered a currency in today’s world, as various industries rely on cloud systems to store their assets and clients’ information.
- Independent researcher discovered 9.5 billion rows of email metadata owned by Shanghai Jiao Tong University in a database that didn’t require authentication.
- On May 10, the researcher discovered a database containing 7 TB of data, which grew to 8.4 TB of data by the time it was secured on May 24, according to a June 9 blog post. Shanghai Jiao Tong University exposed 8.4 TB of email data
- Florida city is paying $600,000 in Bitcoins to a hacker who took over local government computers after an employee clicked on a malicious email link three weeks ago.
- Riviera Beach officials voted this week to pay 65 Bitcoins to the hacker who seized the city’s computer systems, forcing the local police and fire departments to write down the hundreds of daily 911 calls on paper, CNN affiliate WPEC reported. Florida city to pay $600K ransom to hacker who seized computer systems weeks ago
- Unknown number of accounts accessed.
- The Australian Catholic University has become the latest tertiary institution to disclose a recent data breach, with sensitive staff information being accessed by unknown attackers. Australian Catholic University breach nets staff details
- Meditab, an EMR and practice management software provider, has notified two healthcare providers in Maryland that their patients’ personal health information may have been exposed
- The EMR provider became aware that some protected health information could be viewed by unauthorized parties in March. Upon investigation, Meditab found that between Jan. 9 and March 14 a limited number of faxes that contained medical information could be accessed. EMR provider alerts 2 Maryland medical groups of data breach that may have affected 3,000 patients
- Retrieval-Masters Creditors Bureau has filed for bankruptcy.
- They are the parent company of the American Medical Collection Agency which suffered a series of data breaches earlier this month. Customer records from both LabCorp and Quest Diagnostics were leaked online. Collections Firm Behind LabCorp, Quest Breaches Files for Bankruptcy