Notice how they do not tell us when the phishing attack occurred – only when they concluded their investigation of it. So when was this attack, and when was it actually discovered for purposes of the 60-day clock? And how many people are being notified? From their substitute notice on their web site: Capitol Administrators,…
Category: Phishing
CA: Teen who phished his school district: “It was like stealing candy from a baby”
Lisa Amin Gulezian reports: The grading system at Ygnacio Valley High School in Concord was hacked by a 16-year-old sophomore. That student has been suspended. He spoke to ABC7 News about how and why he did it. Surveillance video shows the moment armed officers and the secret service broke down the door to David Rotaro’s home. The…
Fredericksburg school system employee falls for phishing attack….. with predictable results
Cathy Jett reports: Hackers phishing for sensitive information faked an email from a regional organization to break into the Fredericksburg school system’s electronic mail and file system last month. The April 24 intrusion was caught the following day, but not before hackers accessed 14 school employees’ emails and one school employee’s files, according to a…
TIMCO Aviation Services Settles Class Action Lawsuit by Employees Over 2016 W-2 Breach
OK, here’s a W-2 phishing attack from 2016 that I never covered on this site but has apparently resulted in a class action lawsuit settlement. Christina Davis reports: TIMCO Aviation Services has agreed to pay more than $300,000 to settle a class action lawsuit alleging the company violated Class Members’ privacy rights by compromising tax data…
Hackers stole his campaign cash, Sacramento lawmaker says
Taryn Luna reports on a hack and phish that may leave you wondering whether this was a politically motivated attack or just a garden variety attack. Luna reports the the victim is Sen. Richard Pan, D-Sacramento, whose re-election campaign account was robbed in a multi-step scheme that began with a hack of his email account…
A North Carolina Federal Court Allows A Treble Damages Claim In Employee Data-Breach Lawsuit
Alex Pearce of Ellis & Winters LLP writes: As we have explored before, a common scam known as “W-2 phishing” can put companies in the crosshairs for data-breach lawsuits brought by their employees. In honor of Tax Day, today’s post examines an interesting recent decision from a North Carolina federal court in one of these…