Leon County Schools in Tallahassee, Florida has more than 34,000 students, more than 2,400 teachers, and a total of 4,300 employees. That’s a lot of students and teachers to notify when you discover that a third-party vendor’s mistake exposed their personal information for almost two years. But it’s not as much as the vendor, Florida…
Month: March 2018
Did Columbia Falls Schools treat an extortion payment made to TheDarkOverlord as a dirty little secret?
Update of March 12: After this story appeared on March 9, DataBreaches.net received a call from Superintendent Bradshaw, who had been out of town when my email had arrived. This story has been updated – and corrected occasionally – to incorporate his answers. If students are at risk of significant emotional damage because highly sensitive…
Blaming the vendor when a security breach occurs
Mitch Tulloch writes: The blame game is something all of us practice from time to time, when something goes badly wrong we don’t want to get caught holding the bag. And when we’re accused of being the culprit, our natural reaction is to raise our hands and say, “Not me!” So it’s not unusual when…
Ca: JJ Meds was attacked today
JJ Meds is a medical marijuana delivery service in Canada. They seem to have received an extortion demand, as they explained on the CanadianMOM forum (“MOM” refers to Mail Order Marijuana, not that lovely woman who made you peanut butter and jelly sandwiches): Hi everyone, we wanted to share with the community what has happened.Drama: Today…
In: 53,000 cybersecurity incidents observed during 2017
For comparison purposes: “As per the information reported to and tracked by Indian Computer Emergency Response Team (CERT-In), a total number of 49,455, 50,362 and 53,081 cyber security incidents were observed during the year 2015, 2016 and 2017, respectively,” IT Minister Ravi Shankar Prasad said in a written reply to Rajya Sabha today. Read more…
This bill would make it easier for businesses to keep data breaches under wraps
David Lazarus has some unflattering words for a bill introduced in Congress by Representatives Blaine Luetkemeyer and Carolyn Maloney. Indeed, the Data Acquisition and Technology Accountability and Security Act might be more aptly named the “Businesses Get Out of Jail Free Pass and Screw The Consumers Act of 2018.” Well, ok, I grant you that that…