Jessy Edwards and Jon Styf provide an update to a previously reported class action lawsuit against Oklahoma City University: A judge dismissed an Oklahoma City University class action lawsuit regarding a data breach, saying the plaintiff did not show any injury or identity theft as a result of the breach. U.S. District Judge Timothy G….
Month: October 2023
D-Link confirms data breach after employee phishing attack
Sergiu Gatlan reports: Taiwanese networking equipment manufacturer D-Link confirmed a data breach linked to information stolen from its network and put up for sale on BreachForums earlier this month. The attacker claims to have stolen source code for D-Link’s D-View network management software, along with millions of entries containing personal information of customers and employees, including…
NV: Personal information accessed in Clark County School District cybersecurity incident (1)
C.C. McCandless reports: The Clark County School District announced that a recent cybersecurity incident allowed an “unauthorized party” to access personal information of some students, parents and employees. The district said it became aware of the hack on Oct. 5, adding that it involved the email environment. “Upon discovering the incident, CCSD immediately engaged a…
Kansas courts to operate on paper for at least 2 weeks due to “unauthorized incursion” into system (1)
Cameron Burnett reports: Court systems throughout Kansas, including Sedgwick County, will likely be operating on paper for the next two weeks, at the minimum. Kansas Judge Phil Journey says it looks like there has been an “unauthorized incursion” into the brand-new statewide computer system and it will be down for at least two weeks, affecting all…
CISA shares vulnerabilities, misconfigs used by ransomware gangs
Sergiu Gatlan reports: The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has unveiled additional details regarding misconfigurations and security vulnerabilities exploited by ransomware gangs, aiming to help critical infrastructure organizations thwart their attacks. CISA released this information as part of its Ransomware Vulnerability Warning Pilot (RVWP) program, established in January of this year, when it announced that…
Colonial Pipeline was hacked. No, wait, Accenture was hacked. No, wait….. untangling claims. (2)
By, now, there’s been a lot of buzz by some claims made by RansomedVC on their leak site and on their Telegram channel. In their post this afternoon, RansomedVC claimed that (1) Rob Lee of Dragos somehow cheated someone called “fooble,” and as a result, (2) RansomedVC was going to leak files that Lee had…