The Vice Society added more schools to their “partners” leak site yesterday. One of them is the Mars Area School District in Pennsylvania. According to niche.com, MASD is a k-12 district with 3,334 students. In a notice posted on the district’s website on October 3, Superintendent Gross described the progress the district was making in…
Category: Commentaries and Analyses
Aesthetic Dermatology Associates notifies patients of breach, but data already leaking on dark web
If you say you are going to provide details of an incident, then DataBreaches believes that you should provide important details — like the fact that patient data has been leaked on the dark web. Here’s another incident notice where there is no mention of that. From Aesthetic Dermatology Associates‘ press release: What Happened? On…
Does your risk assessment include drone-delivered exploits?
Greg Linares tweeted a thought-provoking thread that is reminder that what we speculated about in one year comes to pass in another year. His thread begins: This will be a thread discussing a real world breach involving a drone delivered exploit system that occurred this summer Some details I am not able to discuss, however…
How Ransomware Is Causing Chaos in American Schools
Lorenzo Franceschi-Bicchierai reports: May 19, 2021 was supposed to be just another day at the end of the school year at Sierra College, a community college in Rocklin, California. Instead, hackers hit the school with ransomware, throwing it into chaos. “We are experiencing a major cybersecurity event this morning that is impacting the majority of services…
34 Deputies call on France’s Minister of Justice to Request Extradition of Sebastien Raoult to France
Although it has been out of the news cycle in the U.S., counsel for suspected ShinyHunters member Sebastien Raoult continues to urge France to seek his client’s extradition to France from Morocco. Raoult has been sitting in a Moroccan jail since May 31 when he was picked up on a red notice from Interpol at…
Covering Up Cyber Breaches
I was researching something and stumbled across a post in r/sysadmin on Reddit that begins: I wanted to make this post for a few months now because I know we all have horror stories on this topic. It seems the only way to stop this is to make sure more IT admins are aware of…