Sarah Perez reports: Twitter is alerting Vine users of a bug that exposed their email addresses and, in some cases, phone numbers to third parties. It’s also advising affected users to be cautious about any emails from unknown senders as a result. The company says the bug was only active for 24 hours before being patched, and…
Month: May 2017
“We’re not responsible:” TheDarkOverlord denies hacking Disney’s new Pirates movie
Since June of 2016, when they somewhat burst on the scene, there has been a lot written about the hacker/collective known as TheDarkOverlord (TDO). A lot of it appears to be just plain inaccurate, but in some cases, the inaccurate reporting can be traced back to misleading communications or tweets by TDO. As a recent example of miscommunication creating an inaccurate…
Hacker Steals Millions of User Account Details from Education Platform Edmodo
Hmm. I missed this one by Joseph Cox last week: A hacker has stolen millions of user account details from popular education platform Edmodo, and the data is apparently for sale on the so-called dark web. Teachers, students and parents use Edmodo to work on lesson plans, assign homework, and more. The organization claims to…
“Shoot the messenger:” NYC hospital and vendor threaten DataBreaches.net for reporting on their security failure
Vendor’s mistake potentially exposed “millions” of Bronx-Lebanon Hospital patients’ information; Hospital and vendor try to claim that iHealth Solutions was “hacked” by security researchers who uncovered the security problem; Hospital and vendor issue series of demands, threaten DataBreaches.net for reporting on incident; On May 3, Kromtech Security’s research team, conducting routine research, found that confidential and sensitive patient…
Coney Island Hospital notifies patients of….. what?
Crain’s reports: A volunteer at NYC Health + Hospitals/Coney Island gained unauthorized access to the protected health information of nearly 3,500 patients, the hospital told the U.S. Department of Health and Human Services last week. The volunteer in Coney Island’s phlebotomy department entered patient names in a logbook, cleaned up data storage areas and transported…
EPIC v. FBI: Agency Cyber Hack Notification Procedures Fall Short
Via EPIC.org: In Freedom of Information Act lawsuit EPIC v. FBI, EPIC has obtained the FBI notification procedures that would have applied to the Russian cyberattacks during the 2016 Presidential election. The documents obtained by EPIC establish that the FBI Cyber Division is to “notify and disseminate meaningful information to victims and the CND [Computer Network…