Proactive Computing | Optimizing IT for usability, performance and reliability since 1997

Category: #DataBreach (Page 1 of 3)

Auto Added by WPeMatico

Geico Customers’ Driver’s License Numbers Stolen In Months-Long Data Breach

A laptop on the Geico website.Casimiro PT/Shutterstock

A security flaw allowed “fraudsters” to steal driver’s license numbers from Geico’s online sales system, according to a data breach notice filed with the California attorney general’s office. Geico has since fixed the vulnerability, which went unnoticed for over a month, but asks that customers look out for fraudulent unemployment applications.

The cause for this data breach is still unclear. Geico states that its online sales system was compromised using data gathered “elsewhere,” which could imply that hackers broke into accounts using login information or personal data leaked from other websites. Still, Geico says that it fixed the problem, so there may have been a bug in its sales system—the insurer’s report is just too vague.

From the Geico data breach notice:

We recently determined that between January 21, 2021 and March 1, 2021, fraudsters used information about you –which they acquired elsewhere — to obtain unauthorized access to your driver’s license number through the online sales system on our website. We have reason to believe that this information could be used to fraudulently apply for unemployment benefits in your name. If you receive any mailings from your state’s unemployment agency/department, please review them carefully and contact that agency/department if there is any chance fraud is being committed.

Unemployment fraud is a common form of identity theft that requires a driver’s license and other personally-identifying information. The fact that Geico’s is laser-focused on unemployment fraud is concerning, and suggests that hackers broke into the online sales system using customers’ personal information.

But again, we don’t know what happened because Geico’s notice is too vague. Geico hasn’t announced (or doesn’t know) how many U.S. residents were affected by the breach, though the number could be quite large. Companies are only required to notify the California attorney general’s office when over 500 state residents are affected by a data breach—and again, that’s just people who live in California.

If you’re a Geico customer, keep an eye out for any mail from your state unemployment office. Geico says that it does not know if your driver’s license number was stolen from its website, though it will give you a year of IdentityForce identity-theft protection and insurance if a fraudster files for unemployment under your name.

Sources: Geico via TechCrunch

Source: https://www.reviewgeek.com/78683/geico-customers-drivers-license-numbers-stolen-in-months-long-data-breach/
Proactive Computing found this story and shared it with you.
The Article Was Written/Published By: Andrew Heinzman

Everything You Need to Know About the Facebook Data Breach

facebook-red-hero.png?width=600&height=2
The personal data of 533 million Facebook users leaked online. That’s a large percentage of the world’s population, so you should check to see if your account or phone number was affected. We’ll show you so you can protect yourself.

Read This Article on How-To Geek ›

Source: https://www.howtogeek.com/722194/everything-you-need-to-know-about-the-facebook-data-breach/
Proactive Computing found this story and shared it with you.
The Article Was Written/Published By: Joe Fedewa

Ransomware operators are piling on already hacked Exchange servers

A stylized ransom note asks for bitcoin in exchange for stolen data.

(credit: Aurich Lawson / Ars Technica)

Microsoft Exchange servers compromised in a first round of attacks are getting infected for a second time by a ransomware gang that is trying to profit from a rash of exploits that caught organizations around the world flat-footed.

The ransomware—known as Black Kingdom, DEMON, and DemonWare—is demanding $10,000 for the recovery of encrypted data, security researchers said. The malware is getting installed on Exchange servers that were previously infected by attackers exploiting a critical vulnerability in the Microsoft email program. Attacks started while the vulnerability was still a zero-day. Even after Microsoft issued an emergency patch, as many as 100,000 servers that didn’t install it in time were infected.

Opportunity knocks

The hackers behind those attacks installed a web shell that allowed anyone who knew the URL to completely control the compromised servers. Black Kingdom was spotted last week by Security firm SpearTip. Marcus Hutchins, a security researcher at security firm Kryptos Logic, reported on Sunday that the malware didn’t actually encrypt files.

Read 12 remaining paragraphs | Comments

index?i=LYVOmxMVBn8:QPGfrJsTxWw:V_sGLiPB index?i=LYVOmxMVBn8:QPGfrJsTxWw:F7zBnMyn index?d=qj6IDK7rITs index?d=yIl2AUoC8zA

Source: https://arstechnica.com/gadgets/2021/03/ransomware-operators-are-piling-on-already-hacked-exchange-servers/
Proactive Computing found this story and shared it with you.
The Article Was Written/Published By: Dan Goodin

SolarWinds Hackers Also Went After NASA and the FAA

kcs2lwfrltkaweauvf0m.jpg

Apparently not content with having penetrated the networks of such piddling federal agencies as the U.S. State Department, the Department of Homeland Security, and that agency that maintains our nuclear stockpile, the hackers of the “SolarWinds” affair also went after NASA and the Federal Aviation Administration,…

Read more…

Source: https://gizmodo.com/solarwinds-hackers-also-went-after-nasa-and-the-faa-1846340394
Proactive Computing found this story and shared it with you.
The Article Was Written/Published By: Lucas Ropek

Chinese hackers are leveraging flaws in Microsoft Exchange Server to steal emails

Security researchers reported at least 30,000 organizations across the US have been hacked over the past few days by an unusually aggressive Chinese cyber-espionage unit focused on stealing email. The researchers say that many of the organizations targeted in the act include small businesses, cities, and local governments. The group of hackers is exploiting four newly-discovered flaws in Microsoft Exchange … Continue reading

Source: https://www.slashgear.com/chinese-hackers-are-leveraging-flaws-in-microsoft-exchange-server-to-steal-emails-08662578/
Proactive Computing found this story and shared it with you.
The Article Was Written/Published By: Satsuki Then

Microsoft Says Chinese Hackers Responsible for Exchange Attacks

Microsoft-Exchange-Attacks-Featured.jpg Microsoft had a warning for its customers on Tuesday, and it’s boldly calling out the bad actors. According to Microsoft, Chinese hackers are behind Exchange attacks. The company claims American businesses were targeted by exploits of a flaw in the email product. Chinese Attackers Exploit Microsoft Exchange Microsoft called attention to four zero-day vulnerabilities that were recently discovered. The company connected the Exchange attacks to patches and a list of compromise indicators. Researchers with the company have labeled the hacking group as “HAFNIUM.” They explained the group is a “highly skilled and sophisticated actor” with… Read more14327099.gif

Source: https://tracking.feedpress.com/link/12555/14327099/microsoft-says-chinese-hackers-responsible-exchange-attacks
Proactive Computing found this story and shared it with you.
The Article Was Written/Published By: Laura Tucker

Gab hacked — 70 GB of passwords, private posts taken, says transparency group DDoSecrets

blank.jpg

The far-right hate platform Gab has been hacked and 70GB of private posts and other data are being made available to journalists and social scientists, says Distributed Denial of Secrets cofounder Emma Best.

From Wired:

 “It contains pretty much everything on Gab, including user data and private posts, everything someone needs to run a nearly complete analysis on Gab users and content,” Best wrote in a text message interview with WIRED.

Read the rest

Source: https://boingboing.net/2021/03/01/gab-hacked-70-gb-of-passwords-private-posts-taken-says-transparency-group-ddosecrets.html
Proactive Computing found this story and shared it with you.
The Article Was Written/Published By: Mark Frauenfelder

Law Firm Accused of ‘Aiding’ Trump’s Election Disputes Gets Data Stolen By Hackers

pyd9c0hevumvsdipxthc.jpg

A ransomware gang claims to have stolen over 100 gigabytes of data from Jones Day, a prominent global law firm that recently stirred backlash for its entanglement in the 2020 presidential election.

Read more…

Source: https://gizmodo.com/law-firm-accused-of-aiding-trumps-election-disputes-get-1846284511
Proactive Computing found this story and shared it with you.
The Article Was Written/Published By: Lucas Ropek

« Older posts