Taiwan News: Taiwan government database leaked on dark web. “It was reported on Friday (May 29) that a government database of more than 20 million Taiwanese citizens was leaked on the dark web. According to researchers at Cyble Inc., Toogod, a ‘known and reputable actor’ was found to have released the data titled, ‘Taiwan Whole Country Home Registry DB,’ onto the dark web. It is unusual for an entire nation’s database to be leaked, Cyble reported. The data is from the Ministry of the Interior’s Department of Household Registration.”
TechCrunch: A massive database of 8 billion Thai internet records leaks. “Thailand’s largest cell network AIS has pulled a database offline that was spilling billions of real-time internet records on millions of Thai internet users. Security researcher Justin Paine said in a blog post that he found the database, containing DNS queries and Netflow data, on the internet without a password. With access to this database, Paine said that anyone could ‘quickly paint a picture’ about what an internet user (or their household) does in real-time.”
NBC News: Four states warn unemployment benefits applicants about data leaks. “At least four states are warning residents who have applied online for unemployment benefits because of the coronavirus that their personal information may have been leaked.”
ZDNet: Financial companies leak 425GB in company, client data through open database. “An open database is the source of a data leak leading to the exposure of 425GB in sensitive documents belonging to financial companies. On Tuesday, vpnMentor researchers led by Noam Rotem said the database appears to be connected to MCA Wizard, a now-defunct app that appears to have been developed by Advantage Capital Funding and Argus Capital Funding.”
Engadget: Whisper left users’ details exposed in an open database for years. “The once-popular app Whisper promises a place where you can share secrets anonymously. According to a Washington Post report, however, it left sensitive information that can be tied to users’ confessions exposed to the public for years. Apparently, Whisper kept a non-password-protected database that allowed anyone to freely browse its records.”
Reuters: Virgin Media reports database breach. “Virgin Media, owned by Liberty Global (LBTYA.O), on Thursday reported a breach that allowed unauthorized access to the cable company’s database that contained personal information of about 900,000 customers. The company said the breach did not happen due to a hack but occurred as the database was incorrectly configured.” To me that is not a breach. It’s a leak.
USA Today: Anxiety, depression and PTSD: The hidden epidemic of data breaches and cyber crimes. “It’s not just the nightmarish process of clearing your name and credit history or the struggle to get credit or loans, housing, employment or medical services after a breach. Victims wrestle with feelings of powerlessness and vulnerability. Their sleep can be disrupted, energy levels decrease. They self-medicate with alcohol, drugs or food. For some, the aftereffects are more severe: bouts of depression and anxiety, even post-traumatic stress disorder.”