![]() Miami-based Carnival also said it alerted individuals whose data had been compromised and set up a call center to respond to their queries. "There is evidence indicating a low likelihood of the data being misused," the company added. As such, it is highly likely that the credential stuffing was deployed using the leaked information from these databases.The breach affected personal information of some guests, employees and crew for Carnival Cruise Line, Holland America Line, Princess Cruises and medical operations, Carnival said. Prior to the discovery of the misconfigured databases, Wegmans suffered a credential stuffing attack that affected 2,700 accounts back in January. Wegmans reassured that social security numbers (SSN) and payment details were not compromised. The databases contained customer information such as names, dates of birth, home addresses, phone numbers, email addresses, membership IDs, and salted and hashed passwords for Wegmans’ online accounts. However, it was unclear for how long the databases were exposed prior to the discovery. Wegmans said that it was first notified of the misconfiguration on April 19 by a security researcher, of which two cloud databases containing internal data were left open to the public. Wegmans Food Markets, a US-based grocery store chain, disclosed a data breach that originated from two misconfigured cloud databases, resulting in the exposure of sensitive customer data. US grocery chain Wegmans discloses data breach due to cloud misconfigurations ![]() To protect sensitive medical data from ransomware attacks, an encryption solution like D’Amo is crucial to ensure that the attackers cannot use stolen data as leverage.ģ. ![]() Still, there is no way to find out whether ransomware operators live up to their promise of actually destroying the data. At this time, RBA said that all the encrypted data had been restored and that the attackers had destroyed the stolen data, implicitly suggesting that a ransom payment was made. Investigations lasted until June 7, when the clinic finally confirmed the attack. Prior to deploying ransomware, the attackers stole sensitive data including the patients’ names, home addresses, social security numbers (SSN), and medical test results. Follow-up investigations suggested that the attackers first gained access to its IT network on April 7, then got into a server containing medical data on April 10. Reproductive Biology Associates (RBA), a fertility clinic in Georgia, US offering the first IVS program in the state, disclosed a ransomware attack incident that led to the compromise of personal and medical data belonging to 38,000 patients.Īccording to the breach notification letter, RBA first discovered the attack on April 16 when a database server containing embryology data was encrypted by ransomware. Ransomware attack at fertility clinic compromises sensitive data of 38,000 patients Hence cybersecurity must be taken as a priority.Ģ. The massive amounts of personal data these industries hold make them attractive targets for financially motivated hackers. Other industries in the travel and tourism sector, such as hotels and airlines, have also suffered similar breaches recently. has been suffering continuous cyberattacks since the beginning of the COVID-19 pandemic, with two of them being ransomware attacks. The compromised data contained names, dates of birth, passport numbers, home addresses, phone numbers, social security numbers (SSN), as well as COVID-19 test results.Ĭarnival Corp. Carnival cruises disclose a fourth data breach over a period of 15 monthsĬarnival Corporation & plc, the world’s largest travel company that operates some of the major cruise lines, disclosed another data breach incident that affected the Carnival Cruise Line, Holland America Line, and Princess Cruises, making it the fourth data breach incident the company had suffered over the past 15 months.Īccording to a breach notification letter sent to its customers on June 17, the company detected unauthorized access to a “limited” number of IT systems and email accounts back on March 19, which may have leaked customer and employee information collected from booking and onboard activities. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |