Breaches and leaks

  • The Desjardin Group, the largest federation of credit unions in North America, had a rogue employee that shared/sold data related to 2.7 million people and 173.000 businesses: link.
  • NASA was breached. An attacker gained access through an unauthorised Raspberry Pi in the network, moving laterally to other JPL networks and exfiltrating 500MB of data: link.
  • WeTransfer had some kind of security incident where files were sent to "unintended e-mail addresses". Not much else is known right now: link.
  • Tesco's Twitter account was hacked. The attacker spent some time pitching Bitcoin scams, impersonating Bill Gates, and act as Tesco support to get personal information from customers: link.
  • The dental and vision insurer Dominion National discovered a data breach that happened in 2010: link.
Dieter Van der Stock