Cybersecurity

South Africa – Nando’s Peri-Peri

A credential stuffing incident gave customers of this popular high street restaurant chain a little more than they bargained for after several customers discovered that huge orders had been placed using their online accounts. to comply with COVID-19 operating regulations, Nando’s customers who are getting takeout are required to scan a QR code with their…

Read more
Cybersecurity

United States – Barnes & Noble

Barnes & Noble has been starring in its own horror story, as a massive network outage for its Nook customers rolled into the discovery of a massive cyberattack. The bookseller informed customers that it had experienced a data breach that exposed customers’ transaction histories and PII. Recovery and restoration efforts are underway. It’s unknown if…

Read more
Cybersecurity

United States – Pfizer

In a monster week for pharma hacking, Pfizer leads the pack with a substantial data breach that it brought on itself. In a huge blunder, unsecured and unencrypted data containing logs, transcripts, and details of patient helpline conversations was leaked from a misconfigured Google Cloud storage bucket. The exposed data included detailed information regarding hundreds…

Read more
Cybersecurity

Switzerland – Swatch

World-renowned watchmaker Swatch was hit with ransomware that impacted several of its systems, causing disruptions throughout its operations for several days. Some systems weren’t directly affected but were shut down to mitigate damage and stem the tide of the infection. The company did not identify the exact type of ransomware used but indicated in a…

Read more
Cybersecurity

United States – Microsoft

In a rare security blunder, Microsoft failed to secure a backend server for Bing. The server is estimated to have leaked more than 6.5TB of log files containing 13 billion records originating from the Bing search engine. The leak included the server exposed technical details, such as search queries, details about the user’s system (device,…

Read more
Cybersecurity

United States – Robinhood

Robinhood has empowered Americans to start investing by adding 3 million new users in the first quarter of 2020. But now its users say that their accounts were looted while there was no one to call. In response, the no-fee brokerage app says that the criminals targeted customer emails since their systems have not been…

Read more
Cybersecurity

United States – Department of Veterans Affairs

The Department of Veterans Affairs (VA) informed affected users on Monday of a data breach that resulted in the exposure of 46,000 veterans’ personal information. The incident stemmed from unauthorized users accessing an application within the Financial Service Center (FSC) to steal payment away from community health care providers. In a statement, the VA said malicious actors used “social…

Read more
Cybersecurity

United States – Maze Ransomware

There has been a huge uptick in the Maze Ransomware. To date 8 new occurrences have been seen where the Maze ransomware impacting small healthcare providers, municipal governments and a group of other shops like accountants. The important thing to remember is the tactic is changing. Data exfiltration is the target now. Here’s the Full…

Read more