Search This Blog
Powered by Blogger.

Blog Archive

Labels

Load More
Trendy Right Now

Popular Posts

Showing posts with label Data Safety User Data. Show all posts
Mexican Users
Cybernews Data Breach Data Leak Data Safety User Data Data Visualisation healthcare data breach Mexican Users

Massive Data Breach in Mexican Health Care Sector Exposes 5.3 Million Users’ Data

 

In a significant data breach, Cybernews researchers discovered a 500GB unprotected database from a Mexican health care company on August 26, 2024, exposing sensitive details of approximately 5.3 million people. Information in the leak included names, CURP identification numbers, phone numbers, email addresses, and details of payment requests. This security lapse occurred due to a misconfigured Kibana visualization tool, which left the database publicly accessible. While health records were reportedly not taken, the exposed CURPs (Mexican ID numbers akin to Social Security numbers) create risks for identity theft and phishing attacks. 

The breach has been attributed to Ecaresoft, a Texas-based firm specializing in cloud-based Hospital Information Systems, which provides services like Anytime and Cirrus. Over 30,000 doctors and 65 hospitals rely on Ecaresoft’s solutions for scheduling, inventory management, and patient data handling. However, a lapse in securing this information has now exposed users to heightened cybersecurity risks. Besides personal details, the exposed database included patients’ ethnicities, nationalities, religions, blood types, dates of birth, and gender, along with specifics about medical visits and fees. Although hackers were not directly responsible for this breach, the open database left users’ data vulnerable to any threat actors actively scanning for unsecured files online. 

Ecaresoft has yet to release a statement addressing the issue. As the database has since been removed from public access, it remains unclear how long it was available or if the affected users are aware of the potential risk. The breach highlights a common yet preventable security oversight, where sensitive data left unprotected can be indexed by search engines or accessed by unauthorized parties. This incident underscores the broader importance of robust password management and server configuration practices. Past cases, such as Equifax’s breach in 2017 caused by the use of “admin” as a password, illustrate how easily weak configurations can lead to large-scale data theft. Such security lapses continue to raise awareness of the need for secure, authenticated access in cloud-based and digital health care systems. 

Data security in health care remains a global challenge as hospitals and medical systems rapidly digitize, exposing user data to increasingly sophisticated cyber risks. As this incident reveals, health organizations must adopt robust security measures, such as regularly auditing databases for vulnerabilities and ensuring all access points are secure.
Read more »
Spyware
AI Tool ChatGPT ChatGPT Vulnerabilities ChatGPT. OpenAI Data Breach Data Hackers Data Safety User Data Data Theft OpenAI Spyware

ChatGPT Vulnerability Exploited: Hacker Demonstrates Data Theft via ‘SpAIware

 

A recent cyber vulnerability in ChatGPT’s long-term memory feature was exposed, showing how hackers could use this AI tool to steal user data. Security researcher Johann Rehberger demonstrated this issue through a concept he named “SpAIware,” which exploited a weakness in ChatGPT’s macOS app, allowing it to act as spyware. ChatGPT initially only stored memory within an active conversation session, resetting once the chat ended. This limited the potential for hackers to exploit data, as the information wasn’t saved long-term. 

However, earlier this year, OpenAI introduced a new feature allowing ChatGPT to retain memory between different conversations. This update, meant to personalize the user experience, also created an unexpected opportunity for cybercriminals to manipulate the chatbot’s memory retention. Rehberger identified that through prompt injection, hackers could insert malicious commands into ChatGPT’s memory. This allowed the chatbot to continuously send a user’s conversation history to a remote server, even across different sessions. 

Once a hacker successfully inserted this prompt into ChatGPT’s long-term memory, the user’s data would be collected each time they interacted with the AI tool. This makes the attack particularly dangerous, as most users wouldn’t notice anything suspicious while their information is being stolen in the background. What makes this attack even more alarming is that the hacker doesn’t require direct access to a user’s device to initiate the injection. The payload could be embedded within a website or image, and all it would take is for the user to interact with this media and prompt ChatGPT to engage with it. 

For instance, if a user asked ChatGPT to scan a malicious website, the hidden command would be stored in ChatGPT’s memory, enabling the hacker to exfiltrate data whenever the AI was used in the future. Interestingly, this exploit appears to be limited to the macOS app, and it doesn’t work on ChatGPT’s web version. When Rehberger first reported his discovery, OpenAI dismissed the issue as a “safety” concern rather than a security threat. However, once he built a proof-of-concept demonstrating the vulnerability, OpenAI took action, issuing a partial fix. This update prevents ChatGPT from sending data to remote servers, which mitigates some of the risks. 

However, the bot still accepts prompts from untrusted sources, meaning hackers can still manipulate the AI’s long-term memory. The implications of this exploit are significant, especially for users who rely on ChatGPT for handling sensitive data or important business tasks. It’s crucial that users remain vigilant and cautious, as these prompt injections could lead to severe privacy breaches. For example, any saved conversations containing confidential information could be accessed by cybercriminals, potentially resulting in financial loss, identity theft, or data leaks. To protect against such vulnerabilities, users should regularly review ChatGPT’s memory settings, checking for any unfamiliar entries or prompts. 

As demonstrated in Rehberger’s video, users can manually delete suspicious entries, ensuring that the AI’s long-term memory doesn’t retain harmful data. Additionally, it’s essential to be cautious about the sources from which they ask ChatGPT to retrieve information, avoiding untrusted websites or files that could contain hidden commands. While OpenAI is expected to continue addressing these security issues, this incident serves as a reminder that even advanced AI tools like ChatGPT are not immune to cyber threats. As AI technology continues to evolve, so do the tactics used by hackers to exploit these systems. Staying informed, vigilant, and cautious while using AI tools is key to minimizing potential risks.
Read more »
Yahoo
Data Protection Bill Data Safety User Data Privacy Restricting app data usage Sensitive data Yahoo

Data Privacy Concerns Surround Period Tracking Apps

Period tracking apps have become increasingly popular among women seeking to monitor their menstrual cycles, plan pregnancies, or simply stay informed about their health. However, recent reports have raised serious concerns about the handling of user data by these apps. As a result, the Information Commissioner's Office (ICO) in the UK has announced plans to review period and fertility tracking apps to ensure they comply with data protection regulations.

The ICO's decision comes in response to growing apprehension regarding the handling of sensitive user data by these apps. According to the BBC, "Period trackers are among the most intimate apps available," as they collect highly personal information, such as menstrual cycle details, sexual activity, and fertility status. This wealth of sensitive data has prompted concerns about user privacy and data security

Many period tracking apps are developed by private companies, and their primary source of revenue often relies on advertising and partnerships. This business model may lead to the sharing of user data with third-party advertisers, raising questions about the transparency and consent mechanisms involved. As reported by Yahoo News, there is evidence to suggest that some apps may be sharing user data without clear consent, potentially violating data protection laws.

In response to these concerns, the ICO has decided to take action. Simon McDougall, Deputy Commissioner for Regulatory Innovation and Technology at the ICO, emphasized the importance of user trust in digital services: "These apps play a significant role in the lives of millions of people, and users deserve to know how their personal data is being used." The ICO's review aims to assess whether period tracking apps are in compliance with data protection regulations and to ensure that users' privacy rights are respected.

The ICO's investigation is expected to focus on several key areas, including data collection practices, user consent, data sharing with third parties, and the overall transparency of app operations. If any breaches of data protection laws are uncovered during the review, the ICO has the authority to take enforcement action, including imposing fines and requiring companies to make necessary changes to their data handling practices.

While period-tracking apps can provide valuable insights into women's health and fertility, the recent scrutiny highlights the importance of safeguarding user data in the digital age. Users should be able to trust that their most personal information is handled with the utmost care and respect for their privacy. As the ICO begins its review, it is a reminder that data protection and privacy considerations should be at the forefront of app development and usage, particularly when dealing with such sensitive data.

The ICO's move to examine period tracking applications highlights the need for more accountability and openness in the digital health industry. To safeguard user rights in the rapidly evolving digital environment, users must have faith that their personal data is treated properly. Any worries about data privacy and security should be swiftly addressed.

Read more »
User Security
Data Breach Data Leak Data Safety User Data Safety Security User Safety User Security

RailYatri Hack: 31M Users Data Impacted On Indian Ticketing Platform

 

RailYatri, a popular Indian train ticket booking platform, experienced a massive data breach, exposing the personal details of over 31 million (31,062,673) users/travelers. The breach is thought to have happened in late December 2022, and the database of sensitive information has now been leaked online. 

 The leaked data contains email addresses, full names, genders, phone numbers, locations, and 37,000 invoices, putting millions of users at risk of identity theft, phishing attacks, and other cyber crimes. Hackread.com confirmed that the database was leaked on Breachforums, a hacker and cybercrime forum that arose as a replacement for the popular and now-seized Raidforums.

The RailYatri data breach is not your typical case of hackers exploiting flaws, stealing, and spilling data. In fact, it all started in February 2020, when cybersecurity researcher Anurag Sen discovered a misconfigured Elasticsearch server that was open to the public with no password or security authentication.

Sen discovered that the server belonged to RailYatri and notified the company, which initially denied ownership. The company later claimed that it was just test data. The server had over 700,000 logs at the time, with over 37 million entries in total, including internal production logs.

“Back in 2020, when I reached out to Railyatri, they never replied or reached out to me, but after I contacted Cert-In, the server got closed,” Anurag told Hackread.com. “I have reported various data leaks in India; the most common issue I saw is that these companies are not getting fined due to India not having any GDPR-like law,” added Anurag.

As per Anurag, the latest data breach could have been prevented "if the company had implemented proper cybersecurity measures from the start."

As a security precaution,  it's recommended that all users change their passwords and enable two-factor authentication on their accounts. They also advised users to keep an eye on their bank accounts and credit card statements for any unusual activity.

This breach is a strong reminder of the rising frequency and severity of cyber attacks, especially in the aftermath of the COVID-19 pandemic, which has forced millions of people to rely on online platforms for their daily needs. It emphasizes the importance of companies prioritizing cybersecurity measures and taking all necessary steps to safeguard their customers' personal information.
Read more »
Subscribe to: Posts (Atom)