Updated May 13: It appears that Bluefield U. has not warned students that the university’s system is still compromised and that the threat actor can see and acquire files. Yesterday, a student that DataBreaches will not name submitted a Virginia Tuition Assistance Grant application with his full Social Security number, date of birth, and other…
Category: Hack
Brightly warns of SchoolDude data breach exposing credentials
Sergiu Gatlan reports: U.S. tech company and Siemens subsidiary Brightly Software is notifying customers that their personal information and credentials were stolen by attackers who gained access to the database of its SchoolDude online platform. SchoolDude is a cloud-based platform for managing work orders used by over 7,000 colleges, universities, and K-12 schools from school…
More breach news from the U.S. healthcare sector
A small roundup of incidents from the past 24 hours, including some dark web disclosures Uintah Basin Healthcare notifies patients of data breach discovered in November Uintah Basin Healthcare (“UBH”) in Utah became aware of unusual activity in their network on November 7, 2022. They are first notifying patients who received care at UBH between…
WhizComms data breach: 50% of customers affected, notified on May 10
Aqil Hamzah reports: About 24,000 customers of broadband service provider WhizComms, or roughly half the company’s customer base, had their personal information stolen by an external party in a data breach incident detected on April 21. The affected people received e-mail on Wednesday informing them that a third party had accessed the firm’s Web server and downloaded…
North Korea behind SNUH hacking in 2021: police
Lee Han-Soo reports: The personal information leak at Seoul National University Hospital (SNUH) two years ago was found to be the work of North Korean hackers. The National Police Agency’s National Office of Investigation has confirmed that a cyber attack orchestrated by North Korean hackers infiltrated the internal network of SNUH through seven domestic and…
Deconstructing a Cybersecurity Event — Dragos
Dragos writes: On May 8, 2023, a known cybercriminal group attempted and failed at an extortion scheme against Dragos. No Dragos systems were breached, including anything related to the Dragos Platform. Dragos has a culture of transparency and a commitment to providing educational material to the community. This is why it’s important to us to…