We know that no security is perfect, but when a company collecting and storing teenagers’ data has repeated breaches, it’s cause for concern – and possible investigation by federal and state regulators. In 2017, we learned that the popular teen quiz app, Wishbone, had been “hacked.” According to reports at the time, hackers snagged 2.2…
Category: U.S.
Ohioans’ and Coloradans’ personal info exposed in pandemic unemployment data breaches
Two more states have reported breaches or issues with state portals to apply for pandemic-related unemployment benefits. In Ohio, Maggy McDonel reports: The personal information of Ohioans receiving pandemic unemployment assistance was recently exposed to a data breach, according to Ohio Department of Jobs and Family Services. The information reportedly included names, Social Security numbers…
How secure is your child’s data in Virginia’s virtual classrooms?
Tom Nash or the Virginia Center for Investigative Journalism reports: … As the pandemic forces Virginia’s 1.2 million public school students to trade classrooms for laptops and smartphones — if they have them — many educators, parents and privacy advocates are raising alarms across the state about children’s digital security. Lapses in online protections have…
ADT employee spied on customers for years through their security cameras, lawsuits claim
Ron Hurtibise reports: Hundreds of customers of ADT Security Services were spied on through security cameras installed inside and outside of their homes, two federal lawsuits filed Monday are claiming. ADT, headquartered in Boca Raton, “failed to provide rudimentary safeguards” to prevent an employee from gaining remote access to the customers’ cameras over a seven-year period,…
PA: Ex-Geisinger employee accessed hundreds of patients’ info improperly
From their notice of May 18: WILKES-BARRE, Pa. – Geisinger Wyoming Valley Medical Center has notified certain patients that their protected health information (PHI) may have been accessed by an individual employee in a non-permitted manner. On March 20, 2020, Geisinger’s Privacy Office was alerted to a Geisinger Wyoming Valley employee possibly accessing medical records without…
REvil claims to have sold Trump-related material to unnamed buyer
The Sodinokibi/REvil ransomware team that attacked the entertainment law firm of Grubman Shire Meiselas & Sacks have certainly gotten media attention for this attack. In their first notice of the attack, they listed some of the celebrity clients, showed screenshots of some directory of files, and provided snippets from some celebrity-related files. But then negotiations…