Security News

Folksam, one of the largest insurance companies in Sweden, today disclosed a data breach affecting around 1 million Swedes after sharing customers' personal info with multiple technology giants. The insurer discovered the data breach after an internal audit according to Jens Wikström, Head of Marketing and Sales at Folksam, and reported the incident to the Swedish Data Protection Authority.

The Microsoft Tips app has leaked more evidence that Microsoft is working on rounded corners for Windows 10 windows. For some time, Microsoft has been adding rounded corners to dialog boxes in Windows 10 apps such as Photos, Maps, Calculator, and the new Microsoft Edge.

Details of bank vault floor plans, alarm systems and the security arrangements for Swedish authorities have been leaked online after a security company was hacked, local media reported Tuesday. A total of 19 gigabytes of information and around 38,000 files were stolen from security group Gunnebo by one or more hackers in August, according to newspaper Dagens Nyheter.

Amazon has recently terminated employees responsible for leaking customer data, including their email addresses, to an unaffiliated third-party in violation of company policies. "Did anyone else get a weird email from Amazon about this data breach or was I just targeted solo?" tweeted entrepreneur Zain Jaffer.

The Egregor ransomware gang has reportedly taken responsibility for the Barnes & Noble cyberattack, first disclosed on Oct. 15. The bookseller warned last week that it had been hacked in emailed notices to customers, noting that a cyberattack happened on Oct. 10, "Which resulted in unauthorized and unlawful access to certain Barnes & Noble corporate systems."

UPDATE. Pharma giant Pfizer has leaked the private medical data of prescription-drug users in the U.S. for months or even years, thanks to an unprotected Google Cloud storage bucket. Some of the transcripts were related to conversations about Advil, which is manufactured by Pfizer in a joint venture with GlaxoSmithKline.

ThunderX has changed its name to Ranzy Locker and launched a data leak site where they shame victims who do not pay the ransom. The ransomware operators quickly fixed their bugs and released a new version of the ransomware under Ranzy Locker name.

Because its technology underpins these customers' basic interactions with patients, clients, partners, suppliers and others, plenty of personal data flows through Broadvoice's cloud-based systems. The cache of data included records with personal details of Broadvoice clients' customers, they noted.

Software AG has seemingly been hit by ransomware, with the German IT giant itself telling the Euro nation's stock market it had been "Affected by a malware attack." In a notification to the German stock market published earlier this week, Software AG said: "The IT infrastructure of Software AG is affected by a malware attack since the evening of 3 October 2020.".

All 100 apps were analyzed using an array of static application security testing and dynamic application security testing techniques based on the OWASP mobile app security guidelines. The vast majority of medical apps have mishandled and/or weak encryption that puts them at risk for data exposure and IP theft.