So we’re beginning to learn a bit more about the Schoolzilla data breach that MacKeeper Security Research Center’s Chris Vickery reported yesterday. Chris had reported that 1.3 million students had their data in the misconfigured Amazon bucket, but he couldn’t be more specific as to where these students came from as he deleted the data…
Month: April 2017
No Business Associate Agreement? $31K Mistake
From HHS: The Center for Children’s Digestive Health (CCDH) has paid the U.S. Department of Health and Human Services (HHS) $31,000 to settle potential violations of the Health Insurance Portability and Accountability Act of 1996 (HIPAA) Privacy Rule and agreed to implement a corrective action plan. CCDH is a small, for-profit health care provider with…
BakerHostetler 2017 Data Security Incident Response Report Based on 450 Incidents
I don’t post links to most reports with data breach analyses because some are so flawed that they just perpetuate errors some of us have tried to correct. But BakerHostetler handles a lot of breach incidents for their clients, and they’ve issued a report based on 450 incidents they’ve handled. Some of their findings seem quite…
Feds seek 30-year sentence for Russian master hacker convicted in Seattle
Mike Carter reports: In Russian cybercrime mastermind Roman Seleznev, the Department of Justice is boasting it finally caught and convicted a big fish in the often impenetrable world of global computer theft — and now the agency intends to make a lesson of him. Federal prosecutors will ask a Seattle judge Friday to sentence the…
Millions of Fashion Fantasy Game accounts exposed in data breach, responsibility thrown to the wind
Charlie Osborne reports on an all-too-common situation: a site or vendor has a data breach and either doesn’t seem to know, despite repeated attempts to alert them, or doesn’t seem to care. In any event, while the world seems to know about a breach, the responsible firm continues on its way as if there is…
Texas man charged with cyberstalking FBI agent detained without bail
Good Friday turned out not to be a good day for Justin Shafer. The 37 year-old dental IT technician had been arrested on March 31 and charged with cyberstalking an FBI agent and the agent’s family under 18 U.S. Code § 2261A(2)(B). On April 14, he was taken back into custody, this time for violating release conditions. Shafer’s…