Clark County School District (CCSD) in Nevada informed parents and employees that they became aware of a “cybersecurity incident” on October 5. Three weeks later, the district had not fully recovered from the attack and parents were complaining about the district’s lack of transparency about what was stolen in the breach. Disturbingly, while the district…
Category: Hack
1Password, Cloudflare affected by Okta compromise
Jonathan Greig reports: Password manager 1Password and cybersecurity and networking giant Cloudflare were targeted by hackers following the breach affecting single sign-on provider Okta, according to statements from both companies. First reported by Ars Technica and later confirmed in a blog post directly from company chief technology officer Pedro Canahuati, 1Password said it detected suspicious activity on its Okta instance that…
Cisco IOS XE threat actors hide their tracks, find other zero-days
Catalin Cimpanu writes: Over the past three days—since our last newsletter edition—the situation around the latest zero-day attacks targeting Cisco IOS XE devices has drastically changed, and we feel the need to cover it in our featured section and provide a short summary of what has been going on. Although these attacks have been taking…
More lawsuits filed against Gaston College over data breach
Kara Fohner reports: Two more lawsuits filed against Gaston College allege that a data breach earlier this year exposed the personal information of more than 100,000 people. The lawsuits, filed by Ludenia Archie and Shaquasia Eppes, both former students, state that in the Feb. 21 cybersecurity incident, in which a hacker accessed sensitive files and…
BlackCat threatens to leak data from Morrison Community Hospital (1)
On October 13, AlphV threat actors added Morrison Community Hospital to their dark web leak site. Within hours, it appeared to have been removed. Today, it was re-listed with this commentary by AlphV: HUGE LEAK COMING! SQL + DATA = 5TB Given that we haven’t received a clear response from MCH representatives, we’ve decided to…
UPDATE: D.C. Board of Elections data breach contained fewer than 4,000 D.C. voters’ data
On October 6, DataBreaches reported a breach allegedly containing more than 600,000 lines of data on registered voters in D.C., where, according to the threat actors who listed it, each line represented one voter’s records. Although there may have been 600k lines of data as previously reported, the D.C. Board of Elections released a statement…