From the not-really-a-surprise dept., Vindu Goel reports: Yahoo, already under a cloud from its summertime disclosure that 500 million user accounts had been hacked in 2014, disclosed Thursday that another attack a year earlier had compromised more than 1 billion Yahoo accounts. The newly disclosed attack involved more sensitive user information, including unencrypted security questions….
Month: December 2016
$17.5 Million Settlement With Owner Of Ashleymadison.com In Joint Multi-State And FTC Agreement
Settlement Follows Investigation Finding That Adult Dating Website Maintained Lax Security Practices, Misled Consumers About Its Data Security, And Created Fake Female Profiles To Entice Male Users In Addition to Penalties, Settlement Requires The Website To Implement Stronger Data Security Program And Cease Deceptive Practices NEW YORK—Attorney General Eric T. Schneiderman joined twelve other states,…
Nearly half of education-vendor websites tested had security problems, audit reveals
Nichole Dobo writes: Nearly half of the more than 1,200 education technology vendor websites used by teachers and students, and checked in an October audit, did not include a secure log-in, according to a new survey. This makes these programs vulnerable to a security breach – a school leader’s nightmare. “We want people to fix this,”…
Ca: Privacy breach affects 200 patient records at Hamilton doctor’s office
The Hamilton Spectator reports: Ontario’s former privacy commissioner is “enormously” concerned after the medical privacy of more than 200 patient records was breached within a Hamilton doctor’s office. The Hamilton Family Health Team — a nonprofit corporation that provides clinical and administrative assistance to 166 doctors — confirmed Tuesday that personal letters were sent out…
Data breach affects Frederick County schools (UPDATED)
WMAR reports: A data breach may have affected up to 1000 students at Frederick County Public Schools (FCPS) officials said. The breach impacted students who attended FCPS between November 2005 and November 2006. The breached information includes names, social security numbers and birth dates. AP adds important details that the breach was brought to the school…
UK: TalkTalk hacker who blackmailed company chief during year-long cyber crime spree faces jail
While a 17 year-old teen got a rehabilitation order and had his phone confiscated for his role in the TalkTalk hack and other cybercrimes, 19 year-old Daniel Kelley is likely facing real jail time for his role in the TalkTalk hack and other crimes. Emily Pennink and Sam Russell recap the blackmail and other crimes Kelley admitted to at hearing,…