Hi friends,

I hope this week's issue finds you well. There are some more MOVEit related breaches, a few AI related stories (with many more to come down the road no doubt), and just lot's of interesting reads. Enjoy!

I would also like to welcome a new long-term sponsor, GlitchSecure! They provide continuous security testing services, performed by a wonderful group of people whom I have the pleasure of knowing personally and working with. I can't thank them enough for their support. Please check them out!

Dieter Van der Stock

Breaches and leaks

  • Research firm PBI Research Services was impacted by MOVEit, with data of 4.75 million people confirmed stolen so far, with more maybe underway: link.
  • Suncor Energy suffered an attack, impacting its Petro-Canada gas stations: link.
  • Pilot Credentials, a pilot recruiting firm, was breached impacting 9,000 applicants of American Airlines and Southwest Airlines. The airlines will no longer be using the service. link.
  • New York City's Department of Education had a MOVEit breach impacting 45,000 students: link.
  • The US agency responsible for patents and trademarks leaked the private addresses of 61,000 filers through its API: link.
  • Siemens Energy confirms that data was stolen through the MOVEit zero-day: link.
Dieter Van der Stock