Hacker News with Generative AI: Data Breaches

Feds worry AT&T breach could out informants (scworld.com)
The FBI is reportedly in a panic over a possible leak of informant data thanks to an AT&T data breach.

Data Breaches, Cybersecurity, Law Enforcement, Telecommunications

8 points by LinuxBender 3 hours ago | 0 comments

UnitedHealth hid its Change Healthcare data breach notice for months (techcrunch.com)
Change Healthcare, the UnitedHealth-owned health tech company that lost more than 100 million people’s sensitive health data in a ransomware attack last year, said on Tuesday that the company has “substantially” completed notifying affected individuals about the massive data breach.

Data Breaches, Healthcare, Cybersecurity, UnitedHealth

7 points by blackeyeblitzar 2 days ago | 1 comments

Hackers Claim Breach of Location Data Giant, Threaten to Leak Data (404media.co)
Hackers claim to have compromised Gravy Analytics, the parent company of Venntel which has sold masses of smartphone location data to the U.S. government. The hackers said they have stolen a massive amount of data, including customer lists, information on the broader industry, and even location data harvested from smartphones which show peoples’ precise movements, and they are threatening to publish the data publicly.

Data Breaches, Privacy, Government Surveillance, Cybersecurity

43 points by anarbadalov 10 days ago | 21 comments

MyGiftCardSupply exposed hundreds of thousands of people's identity documents (techcrunch.com)
A U.S. online gift card store has secured an online storage server that was publicly exposing hundreds of thousands of customer government-issued identity documents to the internet.

Data Breaches, Security, Privacy, Identity Theft

5 points by impish9208 14 days ago | 0 comments

US Treasury Department breached through remote support platform (bleepingcomputer.com)

Cybersecurity, Government, Data Breaches

9 points by WaitWaitWha 17 days ago | 2 comments

Hackers hijacked legitimate Chrome extensions to try to steal data (theverge.com)
A cyberattack campaign inserted malicious code into multiple Chrome browser extensions as far back as mid-December, Reuters reported yesterday.

Cybersecurity, Chrome, Data Breaches

4 points by georg-stone 20 days ago | 0 comments

Volkswagen Data Leak Exposed 800k EV Owners' Movements (carscoops.com)
Many people worry about hackers stealing their personal data, but sometimes, the worst breaches come not from shadowy cybercriminals but straight from the companies we trust. According to a new report from Germany, the VW Group stored sensitive information for 800,000 electric vehicles from various brands on a poorly secured Amazon cloud—essentially leaving the digital door wide open for anyone to waltz in. And not just briefly, but for months on end.

Data Breaches, Privacy, Volkswagen, Electric Vehicles, Cloud Security

8 points by Vinnl 21 days ago | 2 comments

Cybersecurity firm's Chrome extension hijacked to steal users' data (bleepingcomputer.com)
At least five Chrome extensions were compromised in a coordinated attack where a threat actor injected code that steals sensitive information from users.

Cybersecurity, Chrome Extensions, Data Breaches, Security

3 points by sandwichsphinx 21 days ago | 0 comments

VW breach exposes location of 800k electric vehicles (cyberinsider.com)
A massive data leak involving over 800,000 Volkswagen electric vehicles (EVs) has left sensitive user information, including location data and personal contact details, unprotected on the internet.

Cybersecurity, Data Breaches, Electric Vehicles, Volkswagen

275 points by benwerner01 21 days ago | 297 comments

Help me find a blogpost I saw here once (ycombinator.com)
Within the past 2 years. It was specifically about correlating information obtained from dumps of breached websites to identify users and take advantage of password reuse to hack accounts.

Cybersecurity, Data Breaches, Password Security, Information Security, User Privacy

6 points by branon 23 days ago | 2 comments

Nebraska Sues United Healthcare (techcrunch.com)
The U.S. state of Nebraska has sued the health tech giant Change Healthcare over a series of alleged security failings that resulted in a historical data breach exposing the sensitive health information of at least 100 million Americans.

Data Breaches, Healthcare, Lawsuits

7 points by jakubsuchy 30 days ago | 0 comments

LastPass hacked, users see millions of dollars of funds stolen (techradar.com)

Cybersecurity, Data Breaches, Passwords, Financial Crime

11 points by belter 32 days ago | 3 comments

Texas medical school says hackers stole sensitive data of 1.4M individuals (techcrunch.com)
The Texas Tech University Health Sciences Center confirmed hackers accessed the personal and sensitive health data of over 1.4 million individuals during a September cyberattack.

Cybersecurity, Data Breaches, Healthcare, Texas

4 points by impish9208 32 days ago | 0 comments

Settlement for Australian users impacted by Cambridge Analytica incident (oaic.gov.au)
The Australian Information Commissioner today agreed to a $50 million payment program as part of an enforceable undertaking (EU) received from Meta Platforms, Inc. (Meta) to settle civil penalty proceedings.

Privacy, Data Breaches, Australia, Law, Social Media

76 points by ajdlinux 32 days ago | 37 comments

Krispy Kreme Doughnut Corporation admits to hole in security (theregister.com)
Doughnut slinger Krispy Kreme has admitted to an attack that has left many customers unable to order online.

Cybersecurity, Data Breaches, Food Industry, Retail

5 points by mooreds 33 days ago | 0 comments

Personal Data of Rhode Island Residents Breached in Large Cyberattack (nytimes.com)
The personal and private information of possibly hundreds of thousands of people who applied for government assistance in Rhode Island could be in the hands of hackers after a huge cyberattack, state officials said on Friday.

Data Breaches, Cybersecurity, Rhode Island, Government, Privacy

5 points by jbegley 34 days ago | 0 comments

Yearlong supply-chain attack targeting security pros steals 390K credentials (arstechnica.com)
A sophisticated and ongoing supply-chain attack operating for the past year has been stealing sensitive login credentials from both malicious and benevolent security personnel by infecting them with Trojanized versions of open source software from GitHub and NPM, researchers said.

Cybersecurity, Data Breaches, Software Security

36 points by rntn 35 days ago | 4 comments

Postman is largest public source of leaked secrets? (trufflesecurity.com)
tl;dr Postman, the popular API testing platform, hosts the largest collection of public APIs. Unfortunately, it’s become one of the largest public sources of leaked secrets. We estimate over 4,000 live credentials are currently leaking publicly on Postman for a variety of popular SaaS and cloud providers.

Security, APIs, Data Breaches, Cloud Computing, SaaS

22 points by Letmetest 36 days ago | 0 comments

Risk for Americans as Credit Card Details Leaked (leakd.com)
As the festive season approaches, an estimated millions of Americans may find their Christmas at risk after a shocking data breach exposed 5 million unique credit and debit card details online

Data Breaches, Cybersecurity, Credit Cards, Consumer Protection, United States

4 points by bmcn2020 37 days ago | 0 comments

Tell HN: Alaska Airlines website exposes passenger data (ycombinator.com)
TL;DR: Alaska exposes other customers names, record locators, flight information, phone numbers emails, and probably more. I could have canceled or changed these people's flights.

Security, Privacy, Data Breaches, Airlines, Travel

65 points by JaakkoP 42 days ago | 44 comments

Troy Hunt's "Pwned", the Book, Is Now Available for Free (troyhunt.com)
Nearly four years ago now, I set out to write a book with Charlotte and RobIt was the stories behind the stories, the things that drove me to write my most important blog posts, and then the things that happened afterwards. It's almost like a collection of meta posts, each one adding behind-the-scenes commentary that most people reading my material didn't know about at the time.

Security, Books, Data Breaches

48 points by RyeCombinator 43 days ago | 2 comments

UnitedHealth data breach leaked info on over 100M people (theverge.com)
Insurance company UnitedHealth Group is confirming a ransomware attack earlier this year affected the private data of over 100 million people.

Cybersecurity, Data Breaches, Healthcare, Insurance

6 points by croes 44 days ago | 0 comments

Xerox, Nokia, BofA, Morgan Stanley's employees data dumped (theregister.com)
Hundreds of thousands of employees from major corporations including Xerox, Nokia, Koch, Bank of America, Morgan Stanley and others appear to be the latest victims in a massive data breach linked to last year's attacks on file transfer tool MOVEit.

Data Breaches, Cybersecurity, Corporate Data, Finance

5 points by rbanffy 45 days ago | 0 comments

What can we learn from the Andrew Tate data breach? (archive.org)
What can we learn from theAndrew Tate data breach?

Data Breaches, Privacy, Security, Online Safety

16 points by icw_nru 49 days ago | 5 comments

Exxon hacked environmental activist emails (twitter.com)

Cybersecurity, Environmental Activism, Data Breaches

7 points by miohtama 51 days ago | 0 comments

Hacker in Snowflake extortions may be a U.S. soldier (krebsonsecurity.com)
Two men have been arrested for allegedly stealing data from and extorting dozens of companies that used the cloud data storage company Snowflake, but a third suspect — a prolific hacker known as Kiberphant0m — remains at large and continues to publicly extort victims. However, this person’s identity may not remain a secret for long: A careful review of Kiberphant0m’s daily chats across multiple cybercrime personas suggests they are a U.S.

Cybersecurity, Data Breaches, Crime, Military, Snowflake

350 points by todsacerdoti 52 days ago | 194 comments

Taiwan gets slammed with 15,000 cyber attacks per second – 4X more than average (tomshardware.com)

Cybersecurity, Taiwan, Technology, Data Breaches

24 points by giuliomagnifico 52 days ago | 0 comments

1,000s of Palo Alto Networks firewalls hijacked miscreants exploit critical hole (theregister.com)
Thousands of Palo Alto Networks firewalls were compromised by attackers exploiting two recently patched security bugs. The intruders were able to deploy web-accessible backdoors to remotely control the equipment as well as cryptocurrency miners and other malware.

Cybersecurity, Network Security, Data Breaches, Malware, Cryptocurrency

10 points by LinuxBender 53 days ago | 1 comments

1,000s of Palo Alto Networks firewalls hijacked as miscreants exploit hole (theregister.com)
Thousands of Palo Alto Networks firewalls were compromised by attackers exploiting two recently patched security bugs. The intruders were able to deploy web-accessible backdoors to remotely control the equipment as well as cryptocurrency miners and other malware.

Cybersecurity, Network Security, Data Breaches, Malware

18 points by LinuxBender 55 days ago | 2 comments

Andrew Tate's online university hacked – Chat logs, data on 800k users leaked (dailydot.com)
An online course founded by far-right influencer Andrew Tate was breached by hackers, revealing the email addresses of roughly 325,000 users.

Cybersecurity, Hacking, Online Education, Data Breaches, Influencers

58 points by _fw 57 days ago | 44 comments