Breaches and leaks

  • Facebook: the private messages of 81.000 users are being sold online for 10 cent per account. The attackers also claim to have more data on 120 million accounts, but it's unclear how truthful that is. Facebook suspects it's the result of malicious browser extensions.
  • British Airways: 185.000 more people were impacted in their September breach than originally thought.
  • Tomorrowland: a well-known music festival. Their payment provider, Paylogic, had its 2014 database breached, with 64.000 people impacted. As a yearly Tomorrowland visitor, I am not amused.
  • Eurostar: no sign of a real breach as far as I can see, but they reset everyone's password as a precaution after detecting an automated attack on their accounts.
  • Wolf Intelligence: a company that sells surveillance technologies to governments. They had all collected information, including personal data of the founders, completely public. Ouch.
  • Xnore: another spy-on-your-loved-ones app. A map on their website had identifier tokens in plain sight in the HTML, allowing you to view data on 28.000 tracked individuals.
  • Girl Scout of America: their Orange County branch had an e-mail account breached, compromising personal information of 2800 minors.
  • Radisson Hotel Group: had a breach compromising personal information on an unspecified number of hotel customers.
Dieter Van der Stock