386 Million User Records from 18 Companies Leaked for Free

computer hacker selling PII on dark web

What Happened?

It was just recently confirmed that starting on July 21, 2020, multiple databases containing the stolen information of over 386 million consumers were posted online in a hacker forum — all for free. The exposed information was stolen from eighteen companies, including Wattpad (270 million user records), Mathway.com (25.8 million user records), Promo.com (22 million user records), and Drizly.com (2.4 million user records) through past data breaches. Many of the 18 companies involved in this data leak have announced security incidents had occurred in 2020, but several remain unknown or undisclosed. The Personally Identifiable Information (PII) in each database varies, but typically contain names, user names, email addresses, and hashed passwords. Hashed passwords can be deciphered, further exposing a breach victim to account takeover and credential stuffing attacks. Continue reading

Healthcare Data Breach Toolkit for Victims & Providers

Healthcare Data Breach Toolkit

It seems like almost every day a new healthcare agency, facility, or network is reporting a data breach.

A lot of it may have to do with the fact that many healthcare organizations have outdated IT systems and lack focus and investment in cybersecurity tools. There’s also employee error, which can inadvertently open up the flood gates to hackers. All of this, combined with the treasure trove of Personally Identifiable Information (PII), known in the industry as Protected or “Personal” Health Information (PHI), on their networks, makes healthcare providers an appealing target. In addition, a successful breach can generate millions of dollars for cybercriminals on the Dark Web. Continue reading

Healthcare Data Breaches and Cyber Attacks During COVID-19 Put Your Medical Identity at Risk

Healthcare Data on Laptop and Folder

Cybersecurity concerns surrounding healthcare organizations and hospitals have been brewing at the same time the novel coronavirus (COVID-19) has spread around the world. In fact, warnings from the FBI and Interpol indicate that hospitals are a target for a wide-range of cyber-attacks, from having medical records exposed to attacks that may involve ransomware — software built as a decoy to lock down a computer system until the ransom is paid. This happened on May 5th, 2020, when a reported ransomware attack on the Fresenius Group, a global healthcare company and one of the largest dialysis equipment providers in the U.S., impacted the company’s operations around the world. These attacks can not only cripple healthcare and hospital operations, but hackers and scammers can also put sensitive personal medical information at high risk of fraud. Continue reading

500K Zoom Accounts Discovered for Sale on the Dark Web

online video conference

What Happened?

As organizations move to remote work during the COVID-19 crisis, online communications have become essential. Online audio, web and video conferencing tool usage have increased 400% in only one month, according to AT&T. This new popularity for virtual meetings has also seen a multitude of security exploitations on popular video conferencing sites like Zoom.

On April 14, 2020, over 500,000 Zoom account credentials were found for sale on the Dark Web. The information available for purchase include the user’s email address, password, personal meeting URL, and their Zoom Host Key — all being sold for less than a penny each. In some cases, the account credentials were being offered for free. The account details were obtained through credential stuffing attacks, where cyberthieves use emails and passwords previously exposed in other, non-related data breaches, to attempt access into other sites.

Continue reading