ZackWhittaker reports: A bug in Comcast’s website used to activate Xfinity routers can return sensitive information on the company’s customers. The website, used by customers to set up their home internet and cable service, can be tricked into displaying the home address where the router is located, as well as the Wi-Fi name and password….
Month: May 2018
Update: LifeBridge Health notifying 500,000 patients of security incident
Remember that LifeBridge Health and LifeBridge Potomac Professionals malware incident noted on this site on May 16? Baltimore Sun reports that they are notifying 500,000. Ouch.
IN: Allied Physicians of Michiana report SamSam attack
South Bend Tribune reports: A local physicians network was the focus of a recent cyberattack that released ransomware into its network. According to a press release from Allied Physicians of Michiana CEO Shery Roussarie, the company became aware of the cyberattack on Thursday afternoon and immediately took steps to shut down the network in order…
Bombas notifies consumers of breach going back to 2013
Bombas is sending out a breach notification to consumers. It says, in part: What Happened? We first started selling Bombas socks online using an outside vendor to develop and manage our website and a third party e-commerce platform for purchases. Malware in the code of the e-commerce platform was identified and initially removed from our…
University of Toledo alerts some faculty, students of lost flash drive
Lauren Lindstrom reports: A lost flash drive containing the names and Social Security numbers of an undisclosed number of people associated with the University of Toledo prompted the university to send out letters alerting those affected by the “security incident.” A UT faculty member lost an unencrypted flash drive containing personal information belonging to some…
UK: The University of Greenwich fined £120,000 by Information Commissioner for “serious” security breach
The University of Greenwich has been fined £120,000 by the Information Commissioner following a “serious” security breach involving the personal data of nearly 20,000 people – among them students and staff. It is the first university to have been fined by the Commissioner under the existing data protection legislation (Data Protection Act 1998). The investigation…