News of the monumental 500px data breach incident has hit the media recently. It may have affected all of their users – that’s 15 million people worldwide.
It’s understood that an ‘unauthorised party’ gained access to their systems on 5th July 2018. However, engineers only discovered the security issue and the subsequent breach last month. That means a period of around six months where victims of the 500px data breach have been left vulnerable to further attacks.
It’s thought that all 15 million of their users are affected by the incident. The organisation has triggered password resets as a precaution. Victims will need to keep an eye on their online accounts and activity, as well as being wary of phishing scams.
The York City Council data breach revealed at the end of November appears to be another avoidable breach from a local authority.
In this incident, an IT expert inadvertently stumbled across a huge vulnerability in the York City Council’s environmental app, named One Plant York. The app, which has since been taken down, had some 6,000 users and was aimed at promoting environmental protection. Unfortunately, a vulnerability in the app’s coding led to the personal and private information of the 6,000 users being compromised.
It’s a potentially deadly combination: healthcare data and mobile apps. In fact, one of the world’s largest diagnostics service providers had its security wall breached as a result of a mobile app exposing medical data. So, it has happened.
Reportedly, around 34,000 customers had personal and medical information accessed during the breach. The information included customers’ names, dates of birth, health records and some telephone numbers.
Thankfully, the breach did not include any financial details like bank account numbers, sort codes and NI numbers. But it raises serious doubts over whether the healthcare industry is really secure enough to combine with the mobile app industry. Is it just too risky?
Read More “The deadly combination: healthcare data and mobile apps”