Free Republic

An email to vaccinators said their names were found on a document on a US site in January. (An earlier version of the below story has been amended to clarify not all 12,000 people affected by the breach were vaccinators.) A nurse says she will be looking over her shoulder for years after her name was published online in an unauthorised leak of Te Whatu Ora data. At least 12,000 people, most of them vaccinators, had personal information released online after the breach, and the woman is one of those who were notified by Te Whatu Ora that her name...

Your personal information may have been leaked in the 'Mother of all Breaches' (MOAB), cybersecurity researchers have warned. Over 26 billion personal records have been exposed, in what researchers believe to be the biggest-ever data leak. Sensitive information from several sites including Twitter, Dropbox, and Linkedin was discovered on an unsecured page. Worryingly, the researchers who found it claim this breach is extremely dangerous and could prompt a tsunami of cybercrime.

A peer-reviewed study in the Journal of Information Warfare (JIW) confirms a “Loss of Control” breach has occurred in the NYSVoter Database. A peer-reviewed paper of their results in a respected journal is a hard-won and “significant milestone,” according to Marly Hornik, Executive Director of the NY Citizens Audit. The audit of the voter rolls was led by Marly Hornik and Andrew Paquette, Ph.D., Director of Research, who submitted the paper to JIW. Paquette “co-founded the International Game Architecture and Design Academy (now BUAS) in the Netherlands after a career in the feature film and video game industries. He received...

The Internal Revenue Service (IRS) mistakenly released the private data of roughly 112,000 taxpayers in September and again in late November, the agency disclosed Thursday. An IRS programming error in September caused the release of 112,000 individual 990-T forms, a form used by IRA holders to report retirement account assets. The IRS is required to publicize 990-T forms filled out by nonprofit organizations but not those completed by individual taxpayers, ... The 990-T data was accidentally released again in November when a contractor uploaded an outdated file holding the private information, the IRS said in a Thursday letter to Congress....

Eugene Yu, the CEO of the software firm Konnech, has been arrested in connection to the storage of data on servers in China. "Yu, 51, was arrested early Tuesday just outside of Lansing, Mich., after prosecutors alleged he improperly stored the information on servers in China, according to Los Angeles County Dist. Atty. George Gascón. Yu, who is the chief executive officer of a company named Konnech, is expected to be extradited to Los Angeles in the coming days, Gascón said," according to the LA Times. "Konnech allegedly violated its contract by storing critical information that the workers provided on...

The Internal Revenue Service 'mistakenly' posted the names, contact data and financial information from about 120,000 taxpayers' retirement accounts. The US Treasury Department determined that a human coding error allowed the confidential information to be posted on the IRS' website before it was taken down, the Wall Street Journal reported. Among the information published were the names, contact information and finances of individuals who submitted 990-T forms regarding their IRA plans. On Friday, the Treasury assured Congress that Social Security numbers, full income information and other key pieces of financial data were not published and that those affected would be...

Hackers have stolen data from Nvidia, the world’s largest GPU maker, and are holding that data ransom. The as-yet unidentified “threat actors” may be helping the company’s competition in China, according to a research group in Washington D.C. Last week, Nvidia lost proprietary information to a group of hackers. A cybercriminal gang called “Lapsus$” has leaked Nvidia passwords, schematics, drivers and firmware and is threatening to release more information unless its demands are met, according to press reports. Those demands include removing cryptocurrency mining limiters on its gaming cards and making its GPU drivers open source, according to ArsTechnica. Nvidia...

Okta, the $25 billion market cap company that handles logins for more than 100 million users, today confirmed it suffered a breach in January via a third party customer support provider. But for some customers who spoke to Forbes, the disclosure was too late and too scant with information. Okta’s admittance came after a hacking crew called LAPSUS$, which extorts its targets after stealing their data and often leaks victims’ information in public forums, claimed it had breached the company. LAPSUS$ had previously claimed to have stolen data from major security companies including NVIDIA and Microsoft, leading both to investigate...

Facebook is down, and not in a minor way. The Big Tech mammoth is down worldwide in a way in which they will not be able to easily recover as the DNS A and AAA records have been deleted. Technically speaking, facebook.com is now for sale. They’re not alone. Instagram, WhatsApp, and others have also been affected in the same way. It’s clearly a coordinated attack on a massive scale, though it’s unclear how it was pulled off. We’re not talking about a simple DDoS attack. This is catastrophic and would have required high-level access to certain protocols that one...

A large-scale breach of the domain registrar and web hosting company Epik has exposed a massive trove of data, including the names of individuals behind some of the far-right's most notorious websites...In a press release on the hack, dubbed Operation EPIK FAIL, Anonymous claimed that it was able to obtain "a decade's worth" of information, including domain registrations and transfers, account credentials, and emails from an Epik employee.

T-Mobile continues to investigate a data breach from the past week that compromised the personal information of tens of millions people, and not just active subscribers. The data includes names, driver's license numbers, Social Security numbers and device identification (IMEI and IMSI) numbers for subscribers, former customers, and prospective customers who may have been interested in T-Mobile service at one point. And the breach includes customers of Metro by T-Mobile too. That means almost anyone who has given their information to T-Mobile could be affected.

Recent reports claim that a second data breach at Microsoft-owned LinkedIn has exposed the personal data of 700 million users, which is more than 92 percent of the platform’s total 756 million users. 9to5Mac reports that a second LinkedIn data breach has reportedly exposed the data of 700 million users and the database is currently for sale on the dark web. The user information reportedly includes phone numbers, physical addresses, geolocation data, and inferred salaries.

Insurance company Geico suffered a data breach earlier this year that exposed customers’ driver’s license numbers for more than a month, according to a data breach notice filed with the attorney general of California. First reported by TechCrunch, Geico says in the notice that it has fixed the security issue that led to the breach. “We recently determined that between January 21, 2021 and March 1, 2021, fraudsters used information about you – which they acquired elsewhere – to obtain unauthorized access to your driver’s license number through the online sales system on our website,” the notice reads. “We have...

Facebook decided not to notify over 530 million of its users whose personal data was lifted in a breach sometime before August 2019 and was recently made available in a public database. Facebook also has no plans to do so, a spokesperson said. Phone numbers, full names, locations, some email addresses, and other details from user profiles were posted to an amateur hacking forum on Saturday, Business Insider reported last week. The leaked data includes personal information from 533 million Facebook users in 106 countries. In response to the reporting, Facebook said in a blog post on Tuesday that "malicious...

Details from more than 500 million Facebook users have been found available on a website for hackers. The information appears to be several years old, but it is another example of the vast amount of information collected by Facebook and other social media sites, and the limits to how secure that information is. The availability of the data set was first reported by Business Insider. According to that publication, it has information from 106 countries including phone numbers, Facebook IDs, full names, locations, birthdates, and email addresses. Facebook has been grappling with data security issues for years. In 2018, the...

A user in a low level hacking forum has published the phone numbers and personal data of hundreds of millions of Facebook users for free online. The exposed data includes personal information of over 533 million Facebook users from 106 countries, including over 32 million records on users in the US, 11 million on users in the UK, and 6 million on users in India. It includes their phone numbers, Facebook IDs, full names, locations, birthdates, bios, and — in some cases — email addresses. Insider reviewed a sample of the leaked data and verified several records by matching known...

Hackers breached Verkada and accessed its customers' security cameras, Bloomberg reported Tuesday. They gained access to 150,000 cameras inside places such as Tesla, Cloudflare, hospitals, and jails. Some cameras let the hackers access Verkada customers' separate corporate networks.

A sophisticated hacking group backed by a foreign government stole information from the U.S. Treasury Department and a US agency responsible for deciding policy around the internet and telecommunications, according to people familiar with the matter.

<p>"There's some cross-information about what happened and where," an intelligence official with expertise in cyber operations told Just the News. "Verified reports about one incident probably got conflated with speculation about another."</p><p>The "verified reports" involve a July raid on a German server that hosted sensitive, hacked files from U.S. law enforcement agencies, authorities said. The files reportedly were accessed over the summer, in the course of a Houston data breach.</p>

TAMPA (WFLA) – Moffitt Cancer Center is notifying patients that a briefcase containing personal patient information was stolen from a physician’s car in July. According to the cancer center on July 4, Moffitt learned about the potential breach that affected over 4,000 patents. The briefcase contained two personal storage devices, which were not encrypted, and printouts of clinical schedules, according to a patient notice posted Sept. 2 on Moffitt’s website. The information included patient names, dates of birth, medical record numbers and some information about what kind of medical treatment those patients received at Moffitt. Moffitt says patients social security numbers...