Page 15 - Threat Intelligence 11-5-2019
P. 15

Data Breach













        World's First Domain Registrar Network Solutions Discloses Breach. World's first domain registrar Network
        Solutions disclosed a security breach that happened in late August 2019, and allowed a third-party to infiltrate
        some of the company's computing systems without authorization and potentially access some customers'
        personally identifiable information (PII). "On October 16, 2019, Network Solutions determined that a third-
        party gained unauthorized access to a limited number of our computer systems in late August 2019, and as a
        result, account information may have been accessed," says the breach notice. "No credit card data was
        compromised as a result of this incident."
                Source:    https://www.bleepingcomputer.com/news/security/worlds-first-domain-registrar-network-
                solutions-discloses-breach/



        UniCredit data breach impacts 3 million Italians. Italian global banking and financial services company
        UniCredit S.p.A. yesterday disclosed a data breach incident involving a file containing roughly 3 million records.
        The file was generated in 2015, which suggests that customers who created accounts in 2016 and beyond are
        likely safe. Affected information consisted of customers’ names, cities, telephone numbers and emails.
                Source:        https://www.scmagazine.com/home/security-news/data-breach/unicredit-data-breach-
                impacts-3-million-italians/



        Adobe confirms security vulnerability in one of their Elasticsearch servers that exposed 7.5 million Creative
        Cloud accounts. Last week, Adobe admitted of being the victim of a serious security incident exposing the
        personal information of nearly 7.5 million users. The information belonged to the company’s popular Creative
        Cloud service. The news was initially reported by security firm Comparitech. Comparitech partnered with
        security researcher Bob Diachenko to uncover the exposed database. They discovered that Adobe left an
        Elasticsearch server unsecured accessible on the web without any password or authentication required. The
        leak was plugged by Adobe after being alerted.
                Source: https://hub.packtpub.com/adobe-security-vulnerability-in-elasticsearch-servers-that-exposed-
                7-5-million-creative-cloud-accounts/



        Data Breach at St. Louis Health Center Impacts up to 152,000. Officials at a St. Louis health center that serves
        needy, uninsured residents says a cyber-attack has caused a data breach that potentially affected 152,000
        people. The Betty Jean Kerr People's Health Center said Friday that the attack involved patient information
        such as addresses and social security numbers, but no patient medical records. Information on medical
        providers and health center employees also was breached. The incident last month locked data and demanded
        a ransom to unlock it. The center says it refused to pay the ransom and contacted police.

                Source: https://www.securityweek.com/data-breach-st-louis-health-center-impacts-152000






                                                    www.accumepartners.com
                                                                                                                    15
   10   11   12   13   14   15   16   17   18   19   20