Resources

GitHub revealed today that an attacker is using stolen OAuth user tokens (issued to Heroku and Travis-CI) to download data from private repositories.

Urgent Team Holdings, which operates more than 70 urgent care and walk-in centers in Alabama, Arkansas, Georgia, Mississippi, and Tennessee, has recently notified 166,601 patients that some of their protected health information may have been obtained by unauthorized individuals in a November 2021 cyberattack.

Roughly half of businesses have suffered a cyber-attack over the last few years, costing them, on average, almost $3 million – per incident.

The Home Office’s visa service has apologised for a data breach in which the email addresses of more than 170 people were mistakenly copied into an email circulated last week.

The Computer Emergency Response Team of Ukraine (CERT-UA) on Tuesday disclosed that it thwarted a cyberattack by Sandworm, a hacking group affiliated with Russia’s military intelligence, to sabotage the operations of an unnamed energy provider in the country.

Forty million credit and debit cards, 70 million customers’ information, nine years of repeating the same mistakes.

Japanese conglomerate Panasonic Corp. has been hit by a cyberattack at its Canadian operations, less than six months after it was previously hit by a data breach.

Arizona recently amended its breach notice law to change the regulator notification requirements. Starting this summer, depending on the scope of the incident, the Arizona Department of Homeland Security will need to be notified.

Health insurance provider SummaCare is notifying about 1,100 of its members that their information may have been involved in a data security breach.

The recent security breach of a third-party supplier to Okta Inc. has been widely reported. The criticisms of Okta’s response have been harsh and the impact on Okta’s value has been obvious: Investors shaved about $6 billion off the company’s market cap during the week the hack was made public.