Joseph Cox reports: Elsevier, the company behind scientific journals such as The Lancet, left a server open to the public internet, exposing user email addresses and passwords. The impacted users include people from universities and educational institutions from across the world. It’s not entirely clear how long the server was exposed or how many accounts…
Category: U.S.
Boxes of documents including possible personal tax information showed up at a Marshall Co. recycling center, investigation underway
Laura Christmas reports from Alabama: Monday morning when employees came to work at a Marshall County recycling center, they found boxes of documents that included people’s personal information in what looked like personal tax documents. Some of the papers had a company name listed: Professional Tax & Accounting, which has three offices in Birmingham, Jasper,…
Here’s What It’s Like to Accidentally Expose the Data of 230M People
Andy Greenberg reports: Steve Hardigree hadn’t even gotten to the office yet, and his day was already a waking nightmare. As he Googled his company’s name that morning last June, Hardigree found a growing list of headlines pointing to the 10-person marketing firm he’d founded three years earlier, Exactis, as the source of a leak…
Student information: Mississippi reaches agreement with Questar over data breach
Bill Moak reports that Questar, a testing and assessment vendor, has settled charges by the Mississippi state attorney general in the wake of a 2018 breach that affected hundreds of students in Mississippi and other states. Moak reports: In its Assurance of Voluntary Cooperation, Questar agreed to a number of actions: Compliance with the Mississippi…
Some job applicants are first learning about the May, 2018 JobScience breach. Why?
In November, 2018, this site noted a breach disclosed by Huntsville Hospital involving JobScience, Inc., a vendor providing online job application services. On November 10, we reported that other entities were also affected, such as Tallahassee Memorial Hospital, who had been notified in September by JobScience, and NorthBay Healthcare Corp., who were notified in October….
Bitcoin Ransomware Cripples Boston Legal System for Two Weeks
P. H. Madore reports: Boston public defenders suffered a ransomware attack some weeks back but have chosen not to send the bitcoin demanded by the attacker. Instead, they decided to use back-ups to restore services. The Committee oversees public defenders in Boston. According to the Boston Globe, that decision has meant a “weekslong slowdown” that…