Security News

Canada Post has informed 44 of its large commercial customers that a ransomware attack on a third-party service provider exposed shipping information for their customers. Yesterday, Canada Post disclosed that a third-party supplier named Commport Communications suffered a ransomware attack where threat actors accessed data stored in their systems.

Japan's Ministry of Foreign Affairs and Ministry of Land, Infrastructure, Transport and Tourism this week confirmed impact from a data breach at service provider Fujitsu Limited. Earlier this week, the Japanese multinational provider of IT services and products confirmed it suffered a cyberattack resulting in unauthorized access to ProjectWEB, a tool that allows organizations to share data within and outside their environments.

Domino's India has disclosed a data breach after a threat actor hacked their systems and sold their stolen data on a hacking forum. In April 2021, a threat actor created a new topic on a hacking forum where they claimed to be selling 13 TB of stolen data, including details for 18 crores orders and 1 million credit cards, from Domino's India.

Bose Corporation has disclosed a data breach following a ransomware attack that hit the company's systems in early March. The audio maker hired external security experts to restore impacted systems after the attack and forensic experts to determine if any of its data was accessed or exfiltrated by the attackers.

India's flag carrier, Air India, has admitted it fell foul of the data breach at aviation information services provider SITA, and that its disclosure comes five weeks after it was notified of the situation. A new statement [PDF] from the airline says that personal data describing around 4.5 million of its customers leaked when SITA revealed it had been breached in March 2021.

Air India disclosed a data breach after personal information belonging to roughly 4.5 million of its customers was leaked two months following the hack of Passenger Service System provider SITA in February 2021. "This is to inform that SITA PSS our data processor of the passenger service system had recently been subjected to a cybersecurity attack leading to personal data leak of certain passengers," Air India said in a breach notification sent over the weekend.

E-commerce platform Mercari has disclosed a major data breach incident that occurred due to exposure from the Codecov supply-chain attack. Today, e-commerce giant Mercari has disclosed major impact from the Codecov supply-chain attack on its customer data.

Me is one of the world's largest insurance carriers specializing in providing health insurance to students while traveling or studying abroad in another country. Me discovered suspicious activity on their website that led them to take down their website.

CybelAngel announced the most comprehensive Data Breach Prevention in the Cloud service, offering unmatched scanning capabilities, detecting data leaking from the top three Cloud storage providers, AWS S3 Buckets, Google Cloud Storage and Azure Blob Storage. CybelAngel's announcement offers the opportunity to secure cloud infrastructures and monitor for data exposure better than ever before.

The city of Chicago on Friday said that employee emails were compromised in a Jones Day data breach involving Accellion's FTA file sharing service. On Friday, the city of Chicago revealed that some employee emails that were given to Jones Day "As part of an independent inquiry being conducted by the firm" were compromised in the incident.