Resource Center
Resource Center
Expert Insights and Tools for Fortifying Your Cyber Defense
Elevate your cybersecurity expertise and strengthen the security posture of your organization with expert guidance, industry best practices, and research insights from Enterprotect.
Food Importer Admits Data Breach After Previous Ransomware Attack
North American food importer Atalanta recently declared a data breach due to a ransomware attack that happened in July 2021. An investigation of the data breach confirmed that personal information from Atalanta’s current and former employees and some visitors were exfiltrated by an unauthorized third party.
Over 1 Million Users Affected In GoDaddy Data Breach
Web hosting giant GoDaddy recently filed a report with the SEC regarding a data breach that appears to have potentially impacted 1.2 million customers. The detailed report shows that GoDaddy detected unauthorized third-party access to its systems where it hosts and manages its customers’ WordPress servers.
Patient Data Exposed In 3rd Party Healthcare Ransomware Attack
Healthcare business management and IT solutions vendor PracticeMax is reaching out to members of VillageHealth after a ransomware attack potentially exposed their protected health information (PHI). Thousands of patients could be impacted by this incident.
3.1 Million Users’ Email Addresses Leaked In Data Breach
CoinMarketCap, a crypto price tracking website, was hit with a data leak that saw 3.1 million user email addresses being leaked onto the dark web. After the leak was first reported by Have I Been Pwned, CoinMarketCap initially denied the hacking incident occurred. The company soon after admitted to the data leak as “batches of data have shown up online purporting to be a list of user accounts.”
Stolen Access Key Used to Breach HPE’s Aruba Central
Technology giant Hewlett Packard Enterprise (HPE) has begun to inform users of their Aruba networking unit that their information may have been compromised during a cyberattack that took place in October. On November 2nd HPE discovered the unauthorized use of an Aruba Central access key between October 9-27.
US Defense Contractor Reveals Employee Phishing Attack
US national defense contractor Electronic Warfare Associates (EWA) has announced a data breach that is suspected to have been caused by an employee phishing attack. With over 270 employees, EWA is a major provider of services and products concerning cyber security and electronic warfare for several US defense establishments including the Pentagon, the Department of Defense, and Department of Homeland Security.
30,000 University Students Potentially Impacted By 3rd Party Data Breach
A cyber attack on third-party service, Atlassian, has potentially exposed personal details of 30,000 current and former students of the University of Colorado Boulder. A vulnerability on Atlassian, the resource sharing software program used by the institution’s Office of IT, was taken advantage of by threat actors when the university’s department was preparing to implement a new version of the software.
Terminated Executive Turns Insider Threat After 37,000 Patients’ Data Compromised
A malicious insider was the cause for the PII exposure of over 37,000 patients of the Premier Patient Healthcare network. The incident that took place in June of 2020 (discovered in April 2021) is now under investigation by the organization.
Several Employee Email Accounts Compromised in Phishing Attack
In a recent press release, clothing manufacturer Next Level Apparel, announced several of its employees have been compromised in a phishing attack. The company’s statement noted that cyber criminals were able to access the email accounts, and their contents, during a timespan between February 17, 2021, and April 28, 2021.
Employees Seek Class Action Lawsuit After Info Stolen In Data Breach
A class action lawsuit has been proposed against US truck manufacturer, Navistar for a data breach that exposed current and former employee information. Victims are claiming the compromised data was a consequence of the company being negligent and reckless” with their attempts to properly safeguard sensitive data and implement sufficient security methods.
144,000 Canadians’ Personal Info Mishandled by Federal Departments
According to the OPC, over the past two years under reported breach numbers indicate that 144,000 Canadians may have had their personal information mishandled by federal departments and agencies. What makes the situation worse, is not all of the citizens involved have been made aware of the respective breaches.
City’s Privacy Breach Handed Over to Provincial Privacy Commissioner
The city of Corner Brook has handed the reigns to an investigation to the province’s privacy commissioner after a data breach to the city’s website occurred. City officials have noted that they are not sure if private information was viewed, but they do know that there was four counts of unauthorized access by different users.
Plenty of Fish Private User Info Accidental Data Leaked
Security researchers uncovered a major data breach in the Plenty of Fish Mobile App. Information that users set to “Private",” such as First Names and Postal Codes, were found to be leaked on the dating company app’s API.
Shaw Warns Customers of Potential Data Leak 6 Months Later
Shaw customers were recently notified of a data breach that occurred 6 months ago. Despite notifying the police of a stolen company computer in June, the company waited 6 months before detailing the report to customers.
3rd Party Data Breach Affects Ontario Science Centre
The Ontario Science Centre has warned newsletter subscribers of a data breach that occurred after an employee of a third-party contractor was able to access and download personal data without authorization. An undisclosed number of subscribers and camp/birthday party participants were all potentially impacted by the breach.
8,000 People Warned After BC Pension Plan Data Leak
Approximately 8,000 members of the BC College Pension Plan have received notifications that their information may be at risk of exposure after a data breach was discovered. After moving offices earlier this year, the BC Pension Corporation noticed one box was unaccounted for. Contents of the box included personal information of members who worked from 1982-1997. After being unable to track the location of the box, the company played it safe and declared a data breach.
Thousands of Canadians Affected As CRA Employees Caught Snooping
After initially investing $10M on prevention in 2017, the CRA is now having to augment spending as an internal breach has exposed records of over 41,000 Canadian tax payers. Thousands of Canadians had their personal and tax information compromised by CRA employees who were caught inappropriately accessing files. In total 264 workers were reprimanded, 182 faced disciplinary actions, 36 await a pending decision and 46 have left the organization.