Posts by Brite

What happened: An unknown party gained access to the Girl Scouts of Orange County organization’s email account last month. Around 2,800 members of the Girl Scouts tribe received a letter about the breach of personal information. Information accessed includes names, birth dates, home addresses, insurance policy numbers, and health history.  The information was kept for travel…

  What happened: The U.S. Department of Defense suffered a data breach affecting at least 30,000 service members and employees.  An unnamed third-party vendor was compromised exposing the personal and payment card information of the military and civilian workers. The method and date of the attack are not known.  Pentagon leadership was informed of the…

The Breach Shopper Approved is the latest Magecart victim.  A malicious JavaScript compromised the code of the popular plugin that online retailers can embed their sites to allow customers to post opinions and ratings. A payment card skimmer code had been added to a legitimate file that collected information entered in checkout forms. Compared to…

What Happened: Apollo Apollo is a sales engagement startup that helps salespeople connect with prospective customers.  This startup is the latest company who failed to properly protect their data. As a result, attackers were able to access the company contact database that is used to match sellers with potential buyers.  The prospect database contains 200…

We are now days away from the Rochester Security Summit (RSS)! Join us and other cybersecurity professionals at RSS on October 9-10 at Rochester Riverside Convention Center to learn about cutting-edge technology for the cybersecurity industry.  Stop by our booth to talk to our reps on how Brite can help you Break Through the Clutter! In…

What happened: Chegg, an education technology company has announced that the company suffered a data breach. The breach occurred in April, but it was only discovered last week on September 19. The unauthorized party gained access to a company database that hosts user data for Chegg.com. It is estimated that the hackers accessed the data…

What Happened: GovPayNet (GovPayNow.com) is the latest victim of a data leak. The online payment company is used by more than 2,000 government agencies in 35 states for online payment of everything from traffic citations to court-ordered fines.   On September 14, 2018, it was discovered that more than 14 million customer records could be accessed…

What happened: Veeam, a Swiss-based data company exposed more than 445 million records after using a misconfigured host on Amazon Web Services.  The issue was that it did not require any password to access. An independent security researcher, Bob Diachenko, discovered the open database on September 5. Diachenko notified Veeam about the issue but received no response. …