Ethan Wolff-Mann reports: Equifax used the word “admin” as both password and username for a portal that contained sensitive information, according to a class action lawsuit filed in federal court in the Northern District of Georgia. The lawsuit, filed in January, went viral on Twitter Friday after Buzzfeed reporter Jane Lytvynenko came across the detail. Read more…
Category: U.S.
SC: Ransomware attack may be affecting 911, emergency dispatch in Jasper Co.
Kristen Rary reports: Earlier this week it was confirmed Jasper County had a cyber attack on their countywide systems, including email and emergency response systems. At that time, county officials said 911 and emergency dispatch services were not having any issues as a result of the cyberware attack. Now, that may not be the case….
Mishandling of Veterans’ Sensitive Personal Information on VA Shared Network Drives — Audit by Veterans Affairs OIG
VA OIG 19-06125-218 | October 17, 2019 From the Executive Summary: The OIG team found that veterans’ sensitive personal information was left unprotected on two shared network drives, where it was accessible to VSO officers who did not represent those veterans. Senior Office of Information and Technology (OIT) representatives told the team that other authenticated…
Accused Capital One hacker had as much as 30 terabytes of stolen data, feds say
Jeff Stone reports: Investigators probing the Capital One data breach say they have between 20 and 30 terabytes of data in their possession as they prepare for trial against the alleged hacker, Paige Thompson, according to court documents obtained by CyberScoop. The government now is parsing through millions of individual files, prosecutors said, as well as…
Mission Health sends letter warning of website data breach spanning years
WLOS reports: A data breach on the Mission Health store website spanning years has many on edge across Western North Carolina and beyond. In a statement mailed to patients, Mission Health says they found a malicious code present on the store website that was sending the payment information to an unauthorized person. According to the…
CA: Lucia Mar employees at risk after data breach
Kasey Bubnash reports: Administrators and tech staff at Lucia Mar Unified School District are cleaning up after confidential employee information was accidentally shared in an email that was sent out to some district staff. At about 1:43 p.m. on Oct. 9, an email regarding open enrollment insurance—and including a file containing sensitive employee information—was sent to…