99.2 million records affected by data breaches around the world in July 2022
August 6, 2022 |
As it does, it Governance has collated data breaches and cyber attacks for July 2022 and found that 99.2 million records were breached. That is quite outstanding. They include:
- the comic reading platform Mangatoon has suffered a massive data breach involving 23 million accounts. The breach apparently occured when a hacker found an unsecured Elasticsearch database. It seems that credentials just said password.
- Twitter suffered a data breach involving 5.4 million records involving phone numbers and email addresses. The hacker attempted to sell data for $30,000.
- the virtual pet website Neopets had a data breach involving the theft of the source code and a database containing personal information of 69 million members. It amazes me that 69 million people would sign up for a website where people can own, raise and play games with their virtual “pets.”
- Carolina Behavioural Health Alliance suffered a ransomware attack involving health information of 138,000 people.
- a misconfigured portal in a Phillipine government website, Proud Makatizen, resulted exposure of 620,000 files. The files included photos of ID cards as well as private and financial information.
In Australia there were significant data breaches in July including:
- a data breach at the University of Western Australia involving records of 46,980 of current and past students.
- a data breach by uber involving records of Australians. The breach happened in 2016. Uber covered it up until this year. Uber went to the extent of paying the hackers $100,000 to delete the data stolen and be quiet about it.
- the Perth Festival, Black Swan Theatre and other arts organisations suffered a massive data breach.
- Hotel Quarantine data breach results in exposure of data of students, travellers and staff
- Marriott has yet another data breach.
- Deakin University suffers a data breach involving almost 47,000 students
- AMD has a serious potential data breach involving 450Gb of sensitive data.
- OpenSea customers email database exposed by a third party