Hey friends!

I should have kept my mouth shut last week about the lack of breaches. After I sent out the newsletter a bunch of them popped up. Sorry for jinxing it ;-)

Apart from that there was plenty of security news to go through and curate, I hope you like the result. Thank you for reading, and as always, thanks to 1Password and SecAlerts for their support!


Dieter Van der Stock

Breaches and leaks

  • Shields Health, a medical imaging firm, was breached and leaked sensitive info on 2.3 million people: link.
  • The Indian ICICI bank had a misconfigured Digital Ocean storage bucket exposing over 3 million sensitive records like bank statements, resumes, passports and credit card numbers: link.
  • The Canadian Yellow Pages group fell victim to ransomware: link.
  • Several US universities and a bunch of other sites running MediaWiki and Twiki were breached: link.
  • The American Bar Association (ABA) was breached with older credentials of over 1.4 million members taken: link.
  • Not a breach technically but still interesting: European traffic control was under DDOS attack from a pro-Russian group. Flights were unaffected. link.
Dieter Van der Stock