Desorden Group claims to have stolen 200 GB of data from ABX Express

DataBreaches.net has been contacted by a threat actor or group calling themselves “Desorden Group” (“Desorden”). The group claims to have hacked ABX Express Enterprise servers in Malaysia on September 23. We have stolen more than 200 gigabytes of files and databases, tens of millions of customers personal data from their servers, wiped their drives...

El Salvador PNC confirms investigation of FocaLeaks

David Bernal recently had an update on the FocaLeaks incident previously covered by this site and DDoSecrets. On September 22, Bernal reported that Mauricio Arriaza Chicas, director of the National Civil Police (PNC), confirmed that they were conducting an internal investigation into FocaLeaks and a second with the Attorney General’s Office to find the...

Declaration by the High Representative on behalf of the European Union on respect for the EU’s democratic processes

Some EU Member States have observed malicious cyber activities, collectively designated as Ghostwriter, and associated these with the Russian state. Such activities are unacceptable as they seek to threaten our integrity and security, democratic values and principles and the core functioning of our democracies. These malicious cyber activities are targeting numerous members of Parliaments,...

Golden Entertainment notification of malware incident

As I commented this week:  protected health information or medical information can be found in so many breaches involving entities that may not sound “medical” to you.  Today, this site is posting two such notifications.  Here’s the second one.  LAS VEGAS, Sept. 24, 2021 /PRNewswire/ — Golden Entertainment, Inc. (“Golden”) is notifying individuals of an incident...

Major European call center provider goes down in ransomware attack; not negotiating with Conti

Catalin Cimpanu reports: GSS, the Spanish and Latin America division of Covisian, one of Europe’s largest customer care and call center providers, has suffered a debilitating ransomware attack that froze a large part of its IT systems and crippled call centers across its Spanish-speaking customerbase. Call centers and automated customer support phone services for...

QR codes temporarily removed from Sask. COVID-19 vaccine records due to ‘privacy breach’

Kelly Skjerven reports: QR codes are being temporarily removed from residents’ COVID-19 vaccination records due to a situation that eHealth Saskatchewan is treating as a privacy breach. A Saskatchewan government release said they were alerted to an issue downloading patient QR codes. “IT has identified that the COVID-19 vaccination records of up to 19 residents have the potential...