Earlier this week, Zack Whittaker reported: The website for ODIN Intelligence, a company that provides technology and tools for law enforcement and police departments, was defaced on Sunday. The apparent hack comes days after Wired reported that an app developed by the company, SweepWizard, which allows police to manage and coordinate multi-agency raids, had a significant security…
Author: Dissent
More data leaked from St. Rose Hospital ransomware incident
Since DataBreaches first reported that data from St. Rose Hospital had appeared on a popular hacking forum and appeared to be linked to the BianLian ransomware group, there have been some additional developments: St. Rose Notified the California Attorney General’s Office The notification, submitted to California on January 12, states that Hayward Sisters Hospital d/b/a…
T-Mobile discloses yet another data breach; this one hits 37 million
It seems like litigation from one T-Mobile data breach is barely settled when we are reading about yet another T-Mobile breach. AP reports the carrier disclosed that an unidentified threat actor breached its network in late November and stole data on 37 million customers. The data stolen included addresses, phone numbers, and dates of birth….
Chinese, North Korean hackers continue exploiting zero-day vulnerabilities
Ionut Arghire reports that Chinese hackers exploited Fortinet FortiOS SSL-VPN vulnerability when it was still a zero-day. Mandiant tracks the bug as CVE-2022-42475 (CVSS score of 9.8), and described it as “a buffer overflow issue that could be exploited by remote, unauthenticated attackers to execute code or commands via crafted requests.” Read more at Security Week….
More than 19,000 records released in B.C. school district data breach
Stefan Labbé reports: A school district in B.C. said more than 19,000 personal records from students and staff were accessed in a privacy breach. In a statement Wednesday, School District 42 — which encompasses Maple Ridge and Pitt Meadows — said 19,126 records were publicly released in the afternoon of Jan. 17, 2023. The records…
UK: Students ‘outed without even knowing’ after SU self-id data ‘breach’
Caredig ap Tomos reports: Sensitive data relating to students’ self-identification continued to be shared with students running elections on Cambridge Students’ Union’s voting platform months after the issue was originally raised. Sources have told Varsity that countless students were “effectively outed without even knowing it” because of the ‘breach’ of sensitive data, which took nine months to…