Catalin Cimpanu reports: A new penetration testing tool published at the start of the year by a security researcher can automate phishing attacks with an ease never seen before and can even blow through login operations for accounts protected by two-factor authentication (2FA). Named Modlishka –the English pronunciation of the Polish word for mantis– this…
Month: January 2019
ND: Mandan School accidentally leaks student information to students, parents
KXnet reports: Mandan School Administrators are working hard to recover from an accidental information leak that happened at the school just yesterday. Mandan High School’s administrative office sent an email containing names of all 1,024 students, addresses, phone numbers, PowerSchool ID’s, Department of Public Instruction State ID’s, student schedules and locker combinations. They had intended…
LA: Caddo Schools scammed out of nearly $1 million
Marquel Sennet reports: The Caddo Parish School System is scammed out of nearly $1 million in tax payer money. The fraudulent activity is now being investigated by the FBI and local law enforcement. This phishing scheme targeted funds designated for Charter Schools USA, which operates Magnolia School of Excellence. Caddo Schools makes monthly payments to…
Shutdown delays TSA data-security efforts
Adam Mazmanian reports: The Transportation Security Administration is looking to consolidate contracts and streamline technology in the system used to protect key elements of the air travel infrastructure from terrorist infiltration. But the ongoing shutdown is preventing TSA from moving ahead with a planned $230 million procurement. TSA’s Technology Procurement Division was scheduled to host…
Neiman Marcus reaches $1.5 million data breach settlement
AP reports: More than 40 state attorneys general have announced a $1.5 million settlement with The Neiman Marcus Group LLC over a data breach the Dallas-based retailer disclosed in January 2014. The breach exposed customer credit card data at 77 Neiman Marcus stores nationwide. Over a three-month period in 2013, about 370,000 Neiman Marcus credit…
MI: Kent County Community Mental Health Authority notifies 2,284 patients after phishing attack
Kent County Community Mental Health Authority of Michigan, dba as Network180, issued a notice on their site about a HIPAA breach that they reported to HHS as affecting 2,284 patients. Here is the text of their notice: We are posting this notice as part of our serious commitment to privacy. We regret to inform the…