The Quint reports: A complaint has been filed against the Vice Chancellor of the University of Delhi (DU) over allegations of the varsity having leaked personal data of final-year students in admit cards issued ahead of the controversial online Open Book Examinations. The complaint, filed by former Delhi University Student’s Union President Arun Hooda at…
Category: Education Sector
University of Michigan: Leaked emails, passwords were from ‘3rd-party data breaches’
Nisa Khan reports: University of Michigan students got a scare Friday night: warnings circulating on social media about an apparent data breach leaking their U-M email addresses and passwords. On Saturday, the University of Michigan released a statement saying the information was from older “third-party data breaches, such as Chegg, Zynga, LinkedIn” where users used their student emails to sign…
Serious data privacy breach at DU admit card 2020 download portal, students’ personal details available
Roshni Chakrabarty reports: Early on Thursday, two Twitter users pointed out the serious data privacy breach problems arising in the DU admit card 2020 download portal, which is part of the official Delhi University website. Anyone with the ‘gateway password’ can download the admit cards of all students in any Delhi University college. Read more…
BBC got to spectate ransomware negotiations with NetWalker
Oh, this is a bit different. Joe Tidy of BBC reports that BBC got an anonymous tipoff about NetWalker’s ransomware negotiations with the University of California San Francisco and was able to spectate the chat negotiations. BBC’s report includes snippets of the negotiations such as when the uni counter-offered $780,000 to the threat actors’ $3…
NYS: Comptroller’s audits continue: Urban Choice Charter School
For a number of years now, I’ve noted NYS comptroller audits of school districts when it comes to IT and infosecurity. Here’s one that was recently released concerning Urban Choice Charter School in Rochester: Issued Date June 12, 2020 Audit Objective Determine whether the Board and School officials ensured information technology (IT) assets were safeguarded….
UCSF admits it paid NetWalker more than $1 million ransom
On June 4, this site noted that NetWalker ransomware operators had added the University of California at San Francisco (UCSF) to their website where they name victims who have not paid their ransom demands. I did not expect the university to pay, commenting, at the time, “I wonder if the threat actors know how many…