Kelvin Gawley reports: A hacker is trying to extort a $30,000 ransom from the University of the Fraser Valley by claiming to hold students’ personal information hostage. On Monday morning, an email was sent to dozens of students containing the personal information of 29 UFV students, including their names, phone numbers, home addresses and grade…
Month: November 2017
In the wake of Equifax, states respond with new legislation
Not surprisingly, states are responding to the Equifax breach, but they are taking different approaches. Here are how two states are responding: Law.com reports that in New York: Attorney General Eric Schneiderman is proposing comprehensive legislation to tighten data security laws and expand protections. The Stop Hacks and Improve Electronic Data Security Act, introduced this…
“We’ve maintained access to Line 204’s network for a year” – TheDarkOverlord
First it was Larson Studios. Then an attempt to extort its clients, like Netflix. And now it’s Line 204. Lest there be any doubt, TheDarkOverlord wants you to know it is serious about attacking Hollywood “with prejudice.” And despite what Line 204’s owner claimed, the hack on Line 204 was not last week. It occurred…
Hetzner South Africa hacked – Sensitive information exposed
Hetzner’s konsoleH platform has been hacked, exposing customer details, FTP passwords, domain names, and banking details. […] Hetzner said the hackers used an SQL injection vulnerability to gain access to its konsoleH Control Panel database. The vulnerability has since been fixed. “While your konsoleH admin password has not been compromised, we have proactively updated your…
VEC discovers personal details of about 21,000 Victorian voters accidentally published online
Monique Hore reports: Thousands of Bayside residents’ names and addresses have been broadcast online in an electoral roll privacy breach. The Victorian Electoral Commission discovered in May that the details of about 21,000 voters in the 2015 Bayside council election could be found online, including the names and addresses of 28 people who have since become…
Hilton pays $700,000 to settle late notification and PCI DSS noncompliance charges by NY and VT over data breaches
From the NYS Attorney General’s Office, yesterday: Attorney General Eric T. Schneiderman today announced a $700,000 settlement with Hilton Domestic Operating Company, Inc., formerly known as Hilton Worldwide, Inc. (“Hilton”), after data security incidents exposed over 350,000 credit card numbers in two separate breaches in 2015. Attorney General Schneiderman’s investigation, conducted in collaboration with the…