๐ Medial Secures Investment on Shark Tank India - Fueling the Future of Professional Social Networking. ๐ฅ
โ
Login
Home
News
Messages
Startup Showcase
Trackers
Premium
Premium Content
Jobs
Notifications
Settings
Try our Valuation Calculator โ
Log In
News on Medial
IT contractor CGI Federal says US government data breach was tied to Atlassian bug
Reuters
ยท
1y ago
Medial
A U.S. government data breach earlier this year is linked to a bug in Atlassian's Confluence collaboration software, according to IT contractor CGI Federal. The breach, which was made public in October, is currently being investigated to determine the extent of the data affected. Reports suggest that 6,000 current and former Government Accountability Office employees were victims of the breach, and it is unclear if other government agencies were affected. Atlassian and the U.S. cybersecurity agency have not yet commented on the matter.
View Source
Related News
CGI Federal points finger at Atlassian bug for US government data breach
Techradar
ยท
1y ago
Medial
A bug in the Atlassian collaboration platform has been blamed for a recent data breach that affected CGI Federal, an IT contractor for the US government. Over 6,000 current and former employees were impacted by the breach, and it is unclear if other government agencies were affected. CGI Federal is working with authorities and clients to identify the data affected by the Confluence exploit, with the vulnerability discovered in October 2023. The Cybersecurity & Infrastructure Security Agency (CISA) recommends immediate application of upgrades provided by Atlassian to mitigate the exploit.
View Source
US agency says it was alerted to breach by contractor CGI Federal
Economic Times
ยท
1y ago
Medial
IT contractor CGI Federal alerted the US Government Accountability Office (GAO) about a data breach affecting around 6,000 current and former GAO employees. The breach, carried out by a threat actor exploiting a vulnerability in an externally provided platform, exposed personally identifiable information such as names, social security numbers, addresses, and some banking information. CGI, which provides IT protection for numerous federal agencies, has not yet commented on the incident. The GAO has referred questions about the impact of the breach to CGI.
View Source
Key US government body says it might have been breached, with thousands of employees affected
Techradar
ยท
1y ago
Medial
A possible breach at CGI Federal, a third-party contractor providing IT services, may have resulted in the theft of sensitive data belonging to around 6,600 employees of the US Government Accountability Office (GAO). The breach, which occurred in January 2024, involved stolen information such as names, social security numbers, addresses, and some banking details. The vulnerability exploited by the attackers remains undisclosed. CGI Federal provides cybersecurity services for multiple US government agencies, including the State, Justice, Commerce, and Labor departments, along with the Federal Communications Commission and US State for International Development.
View Source
Canadian federal police says they were targeted by cyberattack
Reuters
ยท
1y ago
Medial
Canadian federal police have reported being targeted by a cyberattack, although they assure the public that there is no impact on operations and no known threat to the safety of Canadians. The Royal Canadian Mounted Police (RCMP) is currently investigating the breach to determine its extent. This follows a data breach in the Canadian government's foreign affairs department last month, indicating an increasing trend of cyberattacks on critical infrastructure in the country. The government has yet to disclose further details on the recent attack.
View Source
Rite Aid says breach exposes sensitive details of 2.2 million customers
Arstechnica
ยท
1y ago
Medial
Rite Aid, the third largest US drug store chain, has announced a data breach affecting over 2.2 million customers. The breach, which occurred between June 2017 and July 2018, resulted in the theft of personal information such as driver's license numbers, addresses, and dates of birth. The stolen data was linked to purchases or attempted purchases of retail products. Rite Aid detected the incident within 12 hours and launched an investigation, though no social security numbers, financial information, or patient data were compromised. Ransomware group RansomHub has claimed responsibility for the attack. This incident follows a previous data breach in 2023 that affected over 24,000 customers.
View Source
Massive leak reveals extent of Chinaโs foreign hacking activities
Techradar
ยท
1y ago
Medial
Chinese police are investigating a major data leak from a private security contractor with suspected ties to Chinese state security. The leaked data, posted on GitHub, provides unprecedented insights into international cybersecurity operations. The documents reveal hacking activity, tools used, and targets such as government agencies and universities. The authenticity of the documents is yet to be confirmed. The leak also sheds light on the inner workings of the firm, including employee complaints and gambling habits. The data breach highlights the reality of global espionage, revealing more office politics than James Bond-style operations.
View Source
Health care giant Ascension says 5.6 million patients affected in cyberattack
Arstechnica
ยท
7m ago
Medial
Ascension, a health care company, has reported a cyberattack that led to the loss of sensitive data for around 5.6 million individuals. The attack, attributed to the ransomware group Black Basta, disrupted operations and resulted in errors, delays, and diversions of ambulances. The stolen data includes names, medical records, payment information, insurance details, government identification, and personal information. Ascension is notifying affected individuals and offering credit and fraud monitoring, insurance reimbursement, and ID theft recovery services. The US Department of Health and Human Services has classified this breach as the third-largest health care-related breach in 2021.
View Source
Naukri bug exposed recruiter email IDs via mobile apps: Report
Economic Times
ยท
2m ago
Medial
A bug in Naukri.com's mobile apps exposed recruiters' email addresses, potentially risking phishing attacks and spam, according to TechCrunch. Security researcher Lohith Gowda discovered the vulnerability caused by a flaw in the API used by Naukriโs apps. The web version was unaffected. The issue has been fixed, and Naukri reported no unusual activity affecting user data integrity. Gowda warned the data could be misused in public breach databases or by scammers.
View Source
Data broker giant LexisNexis says breach exposed personal information of over 364,000 people | TechCrunch
TechCrunch
ยท
2m ago
Medial
LexisNexis Risk Solutions, a data broker, reported a data breach impacting over 364,000 individuals. The breach, dating back to December 2024, enabled a hacker to access sensitive personal data through LexisNexis's GitHub account. Stolen information includes names, Social Security numbers, and driver licenses. The breach is part of the larger issue of data brokers collecting and selling personal data. Recently, a plan to restrict such practices was scrapped by the U.S. administration.
View Source
EPFO, PMO data breach: Centre says aware of reports, Cert-In looking into details
Economic Times
ยท
1y ago
Medial
The Indian government is investigating a reported data breach that claims to have datasets from the Prime Minister's Office (PMO) and the Employees' Provident Fund Organisation. The Indian Computer Emergency Response Team (Cert-In) has been asked to verify the claims and submit a detailed report. The data breach was reported on social media, with a user claiming that leaked documents contained data from various public and private organisations, including the EPFO and the PMO. Cybersecurity experts are investigating the matter to determine the authenticity of the claims. India has seen a significant increase in cyberattacks, with state-sponsored attacks against India increasing by 278% between 2021 and September 2023.
View Source
Trackers
Active Indian VCโs
OG Capital
Email
With a hands-on approach, OG Capital aims to invest in over 20 promising...
Accel Partners
Email
Early and growth-stage investments in disruptive technology companies with...
Blume
Email
Early-stage venture capital firm investing in technology startups in India. Focus on...
Access All Trackers
Startup Showcase Winners
June 2025
Buddy
Helping your parents when you are miles away
BiteStop
The Pit Stop Your Cravings Deserve
Bloomer
The next generation E-commerce platform
Enter Ongoing Startup Showcase
Top Users
Trending News on Medial
Download the medial app to read full posts, comements and news.
Go to Medial App
Not Now
Know everything thatโs happening in the startup ecosystem, first.
Enable Notifications?
No, thanks
Count me in
/cloudfront-us-east-2.images.arcpublishing.com/reuters/HYZ3NPH76BPDRPHXKYW2C3T5IU.jpg)
/cloudfront-us-east-2.images.arcpublishing.com/reuters/BUL46LAFUFKAVAEQABKVD37ULM.jpg)
