Here are the headlines of the past few weeks:
- AI Chatbot Startup Based in the UK Faces Backlash After Data Leaks
- Nintendo Breach Closes Portal and Affects More Than 300k Accounts
- Actors Threat Ransomware Victim Data Auction on Dark Web
- Recent Data Violations Affect the National Railway Passenger Company, Amtrak
- Skimmer Destroys Yourself Stealing Payment Card Information
Babylon Health, a telehealth startup worth more than $ 2 Billion, has experienced data leakage that allows users mobile application to access another patient’s video consultation. The company confirmed the violation, told the BBC that software errors were the cause of the incident and further stated that only a small number of users were based at English can see other patients’ sessions. Overall it is said that three users can access other patient data, however, under UK and EU law health data is considered as special category data – meaning the highest standards of data protection apply under General Data Protection Regulations (GDPR).
During April, more than 160 thousand Nintendo 3DS and Wii users were affected by violations that exposed their personal information, including D. O.B, Payment Information, and e-mail account. The investigation came after many complaints about unreasonable in-game purchases were reported. Nintendo is still trying to understand how the parties get access to NNID info. Has asked the user to send feedback in an effort to find the source of the violation. In an updated statement, the company said 140,000 other accounts had been compromised. Nintendo said the number had increased as a result of ongoing investigations.
The cybercriminal group, REvil, began auctioning sensitive data that was stolen from companies affected by its malware. This latest step by REvil may just be another tactic used by criminals to force victims to negotiate a ransom payment, however, researchers suggest that threat actors might be in despair because of the unprecedented economic slowdown caused by the COVID-19 pandemic. In addition, there is some evidence to suggest that recent global events have a significant impact on ransomware payments. By using a comprehensive security solution, the organization can activate remote access for important data, without worrying about whether and when they will be violated.
Although a customer PII may have been compromised in recent Amtrak data breaches, the railroad company confirmed that Social Security numbers, credit card information, and others financial data not involved in data leakage. The attack vectors involved are compromised user names and passwords, which might suggest the use of credentials that were previously leaked or stolen, or use brute-force method. At present there is no evidence that customer information has been exploited, such as through sales or identity fraud.
The Greenworks Tools website is the latest victim of dangerous scripts with the ability to cover themselves, who steal customer payment card information and direct it to threat actor. According to publicly available data, Greenworks Tools noted a sharp increase in visitor traffic from 45,000 February to 350,000 on 20 May. U.S. Customers those who make purchases since June 8 are advised to contact their bank and cancel their payment card. Researchers have contacted about hardware companies violation but apparently the script is still running.
to request modification Contact us at Here or [email protected]