San Diego Unified School District
The San Diego Unified School District discovered a data breach in
October that compromised the personally identifiable information of
more than half a million students and staff. The breach occurred in
January and was the result of a phishing attack. To read more:
https://www.scmagazine.com/home/security-news/san-diego-unified-school-district-data-breach-exposed-500000-students-staff-parents/
City of Saint John
The City of Saint John’s parking ticket payment system fell victim
to a data breach that they are still trying to figure out. The city
believes the breach was part of the Click2Gov breach that impacted
other cities across North America. To read more: https://globalnews.ca/news/4792529/saint-john-parking-ticket-data-breach/
Evercore Investment Bank
Thousands of documents were stolen by hackers in an attack on
investment bank, Evercore. One of the bank’s junior administrators
fell victim to a phishing attack. To read more: https://www.thetimes.co.uk/edition/business/hackers-steal-thousands-of-files-from-dealmaker-evercore-pdcrhfqqg
BankIslami Pakistan
The Minister for Revenue informed the Pakistani Senate that six
million was taken out of international ATMs in a cyberattack last
October. There was no evidence of the bank’s data being hacked
further. To read more: https://fp.brecorder.com/2018/12/20181222433548/
North Korean defectors
Hackers stole the personal information of around 1,000 North Korean
defectors. The data came from one of the 25 defector support
centers. The hack occurred after an employee opened a malicious
document. To read more: https://www.zdnet.com/article/hackers-steal-personal-info-of-1000-north-korean-defectors/
US newspapers
A cyber attack caused printing disruptions to many major US
newspapers including the LA Times, the Chicago Tribune and the
Baltimore Sun. The West Coast editions of the Wall Street Journal
and New York Times were also hit. The malware, first detected on
Friday, appears to have originated outside the US. To read more:
https://www.theguardian.com/technology/2018/dec/30/cyber-attack-disrupts-printing-of-major-us-newspapers
Nova
Nova Entertainment informed listeners that their personal
information from May 2009 to October 2011 was leaked. The
information included names, genders, and dates of birth among other
items. The Australian company is urging listeners to change their
passwords. To read more: https://tendaily.com.au/news/australia/a181228qon/nova-admits-listener-info-has-been-leaked-in-data-breach-20181228
BevMo
BevMo is warning customers of a data breach that may have exploited
credit card numbers and other information from 14,000 people. The
hacker was able to plant malicious code onto BevMo’s checkout page.
To read more: https://www.columbian.com/news/2018/dec/27/bevmo-warns-of-customer-credit-card-data-breach/
Orange modems
A security researcher found 19,000 Orange Livebox ADSL modems were
leaking WiFi credentials. Attackers scan for these modems and
exploit a vulnerability first described in 2012. To read more:
https://www.zdnet.com/article/over-19000-orange-modems-are-leaking-wifi-credentials/
Balboa Water Group
Researchers demonstrated an attacker controlling hot tubs via a
laptop or smartphone. The Balboa Water Group stated it will try to
introduce better security systems for owners. To read more:
https://www.bbc.com/news/technology-46674706
Electrum wallets
A hacker stole over 200 Bitcoin by hacking the infrastructure of
the Electrum Bitcoin wallet. The attack began on December 21st and
ceased after GitHub admins took down the hacker’s repository. To
read more: https://www.zdnet.com/article/users-report-losing-bitcoin-in-clever-hack-of-electrum-wallets/
Microsoft
Last week Microsoft issued an emergency patch for Internet Explorer
to fix a zero-day vulnerability. After installing the patch, some
users of Lenovo laptops found they were unable to boot into
Windows. To read more: https://betanews.com/2018/12/24/internet-explorer-patch-lenovo-laptops/
CenturyLink
Emergency 911 services in a few states went down after a massive
outage occurred at several CenturyLink data centers. CenturyLink
said that a mysterious “network element” issue impacted service at
15 data centers. To read more: https://www.zdnet.com/article/centurylink-outage-takes-down-several-911-emergency-services-across-the-us/
Sign up below and receive these reports and more, directly in your inbox.