A few weeks ago, I had no idea what Dentrix software was. Now I’ve seen it mentioned in connection with two recent breaches involving PHI (the first one was this breach, involving an older version of Dentrix). Such coincidences often get my attention. Dr. Rob Meaglia is a dentist in Rocklin, California. According to his December…
Month: January 2014
The Straight Dope forum hacked – reset your passwords
The following notice was posted on The Straight Dope on January 7: Important Message about your Straight Dope Account and Password Our security team recently discovered that the Straight Dope message board forum was targeted and hacked. This resulted in the illegal acquisition of message board users’ information, namely usernames, email addresses, and Straight Dope…
Internet Scammers Change Some Boston University Direct Deposit Accounts
Rich Barlow reports: Apparently using a common internet deception called phishing, scammers obtained log-in information allowing them to change direct deposit routing information for the paychecks of 10 BU employees in December. The employees’ monthly paychecks were then routed elsewhere. […] Shamblin says that users of suspicious internet protocol (IP) addresses gained access to the…
VA: Supt. of Loudoun County Public Schools statement on breach (updated)
Statement on the school district’s website from Supt. Dr. Edgar B. Hatrick: Recently, the school system was informed of a security breach involving one of our software vendors. The vendor, Risk Solutions International, maintains the school system’s Emergency Management Plans. The website contains some personal information about students and staff members that is normally restricted to…
AU: Schoolboy hacks Public Transport Victoria website
Adam Carey reports: Personal information about public transport users in Victoria has been exposed to potential identity theft because government authority Public Transport Victoria failed to secure its website. The security flaw in the PTV website was discovered by schoolboy Joshua Rogers, 16, who used a simple hacking technique to unearth a database containing the…
OpenSUSE forums hacked in ANOTHER vBulletin attack
Phil Muncaster reports: Linux distro openSUSE’s public forums have been compromised and defaced and tens of thousands of user email addresses exposed after a hacker exploited a zero day flaw in the underlying vBulletin software. OpenSUSE responded quickly to media reports about the breach on Tuesday by admitting the successful exploit had allowed the hacker…