Malware hits Advantage dental database

March 13th, 2015

Oregon based Advantage Dental suffered data breach when its internal database was attacked by malware. The unauthorized access affected 151,626 Advantage patients. The compromised information includes names, dates of birth, phone numbers, Social Security numbers, and home addresses. According to the reports, treatment, payment, and other financial data were not accessed.

“Since terminating the illegal access, Advantage has been reviewing and improving its safeguards, implemented mitigation steps to prevent further access and has been working with law enforcement to properly determine the scope of the incident and any additional steps that might be required,” the statement read. “At this time, Advantage has no indication that the stolen information has been used for criminal activity, to include identity theft.”

Advantage Compliance Manager Jeff Dover told that the theft happened after the malware accessed an Advantage employee’s computer. Username and password that allows access to the membership database was stolen from there. This is a separate database from the one that contains financial and treatment information.

“Unfortunately this happened,” Dover said, adding that Advantage computers are equipped with anti-virus software, but sometimes new variations of a virus are not detected. “What you can do is be as transparent as you can, take responsibility for it, learn from it and then move on.”

After this incident, Advantage is no longer allowing access to its internal patient database from computers that are not within company clinics or its Redmond headquarters.

Get your personal as well as office laptops encrypted by Alertsec

Unencrypted laptops present a major risk of data loss. 80% of information theft is due to lost or stolen laptops and other equipment. About 50% of network intrusions are performed with credentials gathered from lost or stolen devices. The penalties for a data breach are severe not only in terms of the monetary fines imposed on the organization, but also the potential loss of trust from customers and suppliers. Encryption software greatly enhances the security of your organization’s data as the information is not compromised if a laptop is lost or stolen.

Alertsec Xpress is the full disk encryption service that delivers a mobile data protection system for all information stored on laptops used throughout your organization.

Apple admits its developer site was hacked

July 15th, 2013

Apple’s website meant for developers was down for few days, this outrage was due to a hack. Software developers use this website for tools and resources to write software for iPhones, iPads and Macs, it also contains sensitive financial information, which is encrypted.

Attempts were made to access personal information about developers. This data breach incident comes at a time when third-party developers were testing their apps on Apple’s iOS 7.

Apple said that no customer information had been compromised, but was unable to rule out the possibility that some email addresses, mailing addresses and developers’ names may have been accessed. An Apple spokesman said the website which suffered from data breach was not associated with any customer information.

Apple wrote to developers on its website “Sensitive personal information was encrypted and cannot be accessed. However, we have not been able to rule out the possibility that some developers’ names, mailing addresses, and email addresses may have been accessed”.

“This event shows that our private information and our developer account may be leaked, I hope Apple will spend more time and resources on security to protect our private information.” said Cui Tong, a Beijing-based iOS developer.

Apple apologized for the inconvenience that this data breach incident caused for software developers and that it was working “around the clock” to restore the website soon.

“To prevent a security threat like this from happening again, we’re completely overhauling our developer systems, updating our server software, and rebuilding our entire database,” Apple said in a statement.

The membership of the developers, if set to be expired has been extended by Apple and all third-party apps will remain on Apple’s app store.

Alertsec strengthens security

Alertsec has created a web based encryption service that radically simplifies deployment and management of PC encryption by using industry leading Check Point Full Disk Encryption (former Pointsec) software.

Organizations, especially corporate giants, have to have an information security policy in place that proves they have taken necessary steps and measures to safeguard the information they gathered. If these policies are not adhered to, the regulators may prosecute.

Alertsec Xpress is used by organizations that have recognized the need to protect their information. Customers range from single-user sole traders and consultants to multinational companies with a large number of offices around the globe. Over 4 million users worldwide use Alertsec Xpress’s Check Point Full Disk Encryption.

Enhanced by Zemanta