Oops. An overlooked server that was not configured for two-factor authentication became the weak link in JPMorgan’s defenses. Matthew Goldstein, Nicole Perlroth, and Michael Corkery report: The computer breach at JPMorgan Chase this summer — the largest intrusion of an American bank to date — might have been thwarted if the bank had installed a simple…
Category: U.S.
PA: Police investigate student data breach at South Western High School
Jennifer Wentz reports: Penn Township police are investigating a data breach at South Western High School. The district discovered Dec. 18 that an unauthorized person accessed social security numbers of students attending the school in the 2006-2007 and 2014-2015 school years, according to a letter sent to district parents Dec. 19. Police do not believe…
Student hackers and hackees
In Illinois, Katlyn Smith reports: Bartlett police are considering whether to level criminal charges against two Bartlett High School students who hacked into an Elgin Area District U-46 online portal and changed student attendance records, officials said Friday. The duo also hacked into at least one U-46 staff member’s email account, officials said. Read more…
Quest Diagnostics notifies employees of breach after email attachment error (UPDATE)
Quest Diagnostics is notifying some employees that some of their personal information was inadvertently attached to an email sent outside the company. The email gaffe occurred on November 17, when a report containing employee information was attached to an email sent to two individuals with whom the firm has a business relationship. The error was reported…
PA: Police investigate hacking threat against Pine Forge Academy
Ryan Hughes reports: Pennsylvania State Police are investigating a $1 million hacking threat against Pine Forge Academy in Berks County. The school received an anonymous email on Dec. 16 at the campus in Douglass Township. It threatened harm against its computer system and property if demands were not met, state police said Friday. “This person was…
Staples Provides Update on Data Security Incident: 1.6M potentially affected
From their press release: FRAMINGHAM, Mass.–(BUSINESS WIRE)–Staples, Inc. (Nasdaq: SPLS) today gave an update on the investigation into its previously announced data security incident involving a small percentage of its retail point-of-sale systems. Staples’ data security experts detected that criminals deployed malware to some point-of-sale systems at 115 of its more than 1,400 U.S. retail…