Cyber Security Breach

Maze Ransomware Hits Cognizant

Maze Ransomware Hits Fortune 500 Company Cognizant: What Can We Learn?

It’s not new news but it’s shocking how large enterprises are becoming victims, these are challenging times. Cognizant (A large fortune 500 company) was seen to notify customers of a compromise and more details. This particular ransomware is particularly dangerous as it steals data before encrypting it and next threatens to release it if the… Read More »Maze Ransomware Hits Fortune 500 Company Cognizant: What Can We Learn?

Learn About Saltstake Vulnerability

SaltStack Advisory (Vulnerability, Impact, Remediation)

This blog was authored by Jitendra Chauhan, Head R&D, FireCompass Salk Stack is  A configuration management system. Salt is capable of maintaining remote nodes in defined states. For example, it can ensure that specific packages are installed and that specific services are running. A distributed remote execution system used to execute commands and query data on… Read More »SaltStack Advisory (Vulnerability, Impact, Remediation)

2019 Biggest Breaches: 2019 The “Worst Year On Record” For Breaches

According to research from Risk Based Security, the total number of breaches was up 33% over last year. That’s a whopping 5,183 data breaches for a total of 7.9 billion exposed records and in November, the research firm called 2019 the “worst year on record” for breaches… Not having real time view of your dynamic attack surface and… Read More »2019 Biggest Breaches: 2019 The “Worst Year On Record” For Breaches

One Plus Breach – November 2019

Less than 3000 one-plus smartphone users were claimed to be affected by a recent one-plus data breach. One-plus is known to have had previous data breaches. Customers are advised to change their password. Data leaked involves name, address, email. The nature of data revealed maybe used for impersonation and indirect access to other accounts. Recently,… Read More »One Plus Breach – November 2019

T-mobile data breach (1 M customers affected)

Over 1 million+ T-mobile customers were affected with a data breach. Personal information (not including password or financial data) were revealed. Expected data revealed would be name, billingaddress, phone and account number, calling scheme etc. The scheme data by T-Mobile customer privacy policy requires them to notify their customer if there is a leak of… Read More »T-mobile data breach (1 M customers affected)

Facebook & Twitter Breach – November 2019

This year July, facebook settled for a $5billion worth settlement with US Federal Trade Commission for its privacy failures in Cambridge Analytica case. Recently, they have disclosed a group of developers around 100 had access to additional information of people in groups. Malicious apps have leaked personal data of facebook and twitter users to third… Read More »Facebook & Twitter Breach – November 2019

Macy’s Breach November 2019

Macy’s is a popular shopping destination and a breach before christmas shopping is a scare. On October 15 it notified customers of a magecart card-skimming device. The unauthorized code on payment page (checkout & wallet) could have accessed name, address, city, phone, email, payment card number, card security code, card month/year of expiration. -> (Free… Read More »Macy’s Breach November 2019

Yves Rocher Breach

Yves Rocher Breach (2.5 Million Canadian Customers Affected)

In early september, Yves Rocher warned about a data leak of millions of its customers. An exposed database left by a third party vendor was the cause of the breach. A server owned by Aliznet (serves IBM, Salesforce, Sephora, Louboutin) had an exposed database of Yves Rocher with millions of customer and their PII exposed.… Read More »Yves Rocher Breach (2.5 Million Canadian Customers Affected)

Click2Gov Breach

Click2Gov Breach (8 American Cities Affected)

8 American Cities were affected by this breach. Click2Gov is a popular software solution used by local governments for receiving parking tickets or taxes. The software was developed by Superion. It’s a popular municipality payment software. Gemini said it had found at least 46 compromised U.S. locations and one in Canada, some of those compromises… Read More »Click2Gov Breach (8 American Cities Affected)