Page 15 - Threat Intelligence 11-5-2019
P. 15
Data Breach
World's First Domain Registrar Network Solutions Discloses Breach. World's first domain registrar Network
Solutions disclosed a security breach that happened in late August 2019, and allowed a third-party to infiltrate
some of the company's computing systems without authorization and potentially access some customers'
personally identifiable information (PII). "On October 16, 2019, Network Solutions determined that a third-
party gained unauthorized access to a limited number of our computer systems in late August 2019, and as a
result, account information may have been accessed," says the breach notice. "No credit card data was
compromised as a result of this incident."
Source: https://www.bleepingcomputer.com/news/security/worlds-first-domain-registrar-network-
solutions-discloses-breach/
UniCredit data breach impacts 3 million Italians. Italian global banking and financial services company
UniCredit S.p.A. yesterday disclosed a data breach incident involving a file containing roughly 3 million records.
The file was generated in 2015, which suggests that customers who created accounts in 2016 and beyond are
likely safe. Affected information consisted of customers’ names, cities, telephone numbers and emails.
Source: https://www.scmagazine.com/home/security-news/data-breach/unicredit-data-breach-
impacts-3-million-italians/
Adobe confirms security vulnerability in one of their Elasticsearch servers that exposed 7.5 million Creative
Cloud accounts. Last week, Adobe admitted of being the victim of a serious security incident exposing the
personal information of nearly 7.5 million users. The information belonged to the company’s popular Creative
Cloud service. The news was initially reported by security firm Comparitech. Comparitech partnered with
security researcher Bob Diachenko to uncover the exposed database. They discovered that Adobe left an
Elasticsearch server unsecured accessible on the web without any password or authentication required. The
leak was plugged by Adobe after being alerted.
Source: https://hub.packtpub.com/adobe-security-vulnerability-in-elasticsearch-servers-that-exposed-
7-5-million-creative-cloud-accounts/
Data Breach at St. Louis Health Center Impacts up to 152,000. Officials at a St. Louis health center that serves
needy, uninsured residents says a cyber-attack has caused a data breach that potentially affected 152,000
people. The Betty Jean Kerr People's Health Center said Friday that the attack involved patient information
such as addresses and social security numbers, but no patient medical records. Information on medical
providers and health center employees also was breached. The incident last month locked data and demanded
a ransom to unlock it. The center says it refused to pay the ransom and contacted police.
Source: https://www.securityweek.com/data-breach-st-louis-health-center-impacts-152000
www.accumepartners.com
15