Jun 182019

Somendranath Sharma reports:

Confidential data entrusted to a Bhayandar-based Business Process Outsourcing (BPO) company by a New York-based company was compromised recently. This has led to a police investigation, and the corporate espionage angle is also being probed.

The BPO company registered an FIR stating that email addresses of the New York-based debt recovery company, which were used to communicate with clients, were illegally accessed from outside the BPO. One of the email IDs was allegedly accessed by a rival company in Thane.

Read more on Mumbai Mirror.

In light of recent news about a breach involving the New York-based medical collection agency Retrieval-Masters Creditors Bureau Inc. (dba American Medical Collection Agency), DataBreaches.net reached out to Epicenter Technology to inquiry about the identity of the NY firm, but has received no response as yet. DataBreaches.net has also sent an email inquiry to the law firm representing Retrieval-Masters to ask them if this report out of India is in any way connected.

This could all be a coincidence, of course, but a NY collection agency being mentioned seems like quite a coincidence. If any response is received, I will update this post.

Jun 182019

Matt Dathan reports:

The site containing bills currently before Parliament was showing private folders not meant for publication.

One Twitter user said they had found passwords had leaked online too.

A Parliamentary spokesman said it was looking into the reports but said it had not found any evidence that confidential parliamentary data had been breached.

Read more on The Sun.

Jun 182019

SafetyDetective reports:

SafetyDetective’s research lab discovered a leak online that exposed an elastic server containing 3GB of data with over 1.6 million users affected. We informed the apparent owners of this database as soon as we were able to identify them. Because we did not receive a response from the owner of the database, we reached out to the hosting server company (Tata Communications), who subsequently closed the leak.

The Mumbai-based server seemed to be connected to the brand new Talanton.ai website, which as of publishing is not a functioning platform on the user-end. Talanton’s site is a job posting and searching platform based in India and specializing in professional, predominantly hitech job openings.  It is part of a network of websites  (jobyiee.com), including others related to job search and headhunting for candidates around the globe.

Read more on SafetyDetective.

Jun 172019

RTÉ reports:

The Dublin Port Company has confirmed it has launched an investigation into the source of the data leak to establish how it occurred and by whom it was carried out.

This follows recent media reports regarding the company, detailing expenditure on credit cards.

Read more on RTÉ