Data Breach











            Georgia State Patrol agency infected with ransomware- The Georgia State Patrol was reportedly the
            target of a July 26 ransomware attack that has necessitated the precautionary shutdown of its servers
            and network. Per local news affiliate WHNT, the GSP has confirmed that the incidence could slightly
            impact response times; however, members of the force still have other channels of communication such
            as radio dispatch to perform their duties and coordinate responses to accidents and other events. A
            separate report by WGCL said the public should see “little to no” direct effect. GSP is a division of
            Georgia’s Department of Public Safety, where an employee first reported the attack after receiving an
            odd notification on his or her computer.

                   Source:    https://www.scmagazine.com/home/security-news/ransomware/georgia-state-patrol-
            agency-infected-with-ransomware/



            StockX was hacked, exposing millions of customers’ data - It wasn’t “system updates” as it claimed.
            StockX was mopping up after a data breach, TechCrunch can confirm. The fashion and sneaker trading
            platform pushed out a password reset email to its users on Thursday citing “system updates,” but left
            users confused and scrambling for answers. StockX told users that the email was legitimate and not a
            phishing email as some had suspected, but did not say what caused the alleged system update or why
            there was no prior warning.
                   Source: https://techcrunch.com/2019/08/03/stockx-hacked-millions-records/




            Decade-Long Bank Account Hacking Scheme Gets Fraudster 57 Months - Brooklyn man Jason Mickel
            Elcock was sentenced today to 57 months in prison for a series of account hijacking attacks spanning
            more than a decade, having used stolen personal and financial information to pilfer over $1.1 million
            from banks and online retailers. Account hijacking is a well-known tactic in identity theft schemes
            through which attackers profit from their victim's stolen account information to conduct unauthorized
            activities.

                   Source: https://www.bleepingcomputer.com/news/security/decade-long-bank-account-hacking-
                   scheme-gets-fraudster-57-months/



            Web host Hostinger says data breach may affect 14 million customers - Hostinger said it has reset user
            passwords as a “precautionary measure” after it detected unauthorized access to a database containing
            information on millions of its customers. The breach is said to have happened on Thursday. The company
            said in a blog post it received an alert that one of its servers was improperly accessed. Using an access
            token found on the server, which can give access to systems without needing a username or a password,
            the hacker gained further access to the company’s systems, including an API database. That database
            contained customer usernames, email addresses and passwords scrambled with the SHA-1 algorithm,
            which has been deprecated in favor of stronger algorithms after researchers found SHA-1 was vulnerable
            to spoofing. The company has more than 29 million customers on its books.

                   Source: https://techcrunch.com/2019/08/25/web-host-hostinger-data-breach/

                                                    www.accumepartners.com