Catalin Cimpanu reports: A 22-year-old man was sentenced today in London for his involvement in an extortion attempt against Apple, during which the suspect and co-conspirators threatened to mass-hack iCloud accounts and factory reset 250 million iPhones and iPads. The man, Kerem Albayrak, was sentenced today to a two-year suspended jail term, 300 hours of…
Category: Commentaries and Analyses
NYS Comptroller releases two more school district IT audits
By now, regular readers may wonder why I continue to post IT audits of New York school districts when the results have generally been so poor. Where’s the good news, you wonder? There really has been none or extremely little. Which is exactly why I will continue to post these — until people wake up…
UK: Information Commissioner’s Office takes enforcement action against pharmacy
From the ICO: The Information Commissioner’s Office (ICO) has fined a London-based pharmacy £275,000 for failing to ensure the security of special category data. Doorstep Dispensaree Ltd, which supplies medicines to customers and care homes, left approximately 500,000 documents in unlocked containers at the back of its premises in Edgware. The documents included names, addresses,…
Henry County spends $650K to restore its computer network affected in a data breach
Cyware reports: Henry County, Georgia, was forced to pull out typewriters and switch to paper forms after it’s computer network was affected in a ransomware attack that occurred in July 2019. This tireless manual process appeared to have extended for the next couple of weeks until the affected systems were restored. Read more on Cyware
SonyLIV Fixes leaky Elasticsearch in record time
Once again, a service owned and control by a division of official Sony Entertainment has slipped up. This time, their error exposed a elasticsearch server leaking log entries that feed into a third-party tool. Sony is no stranger when it comes to reports of poor infosecurity and hacking incidents, but it is not often we…
China Citizen Watch (Finally) Secures 150TB of Leaking Data
China Citizen Watch, the official Chinese division of the Japanese watch giant Citizen, and Bulova Watch Company (a Citizen brand in the U.S.) have both been affected because China Citizen Watch or its hosting company left an unsecured RSYNC server online with more than 150TB of files. Cursory skimming of the files, necessitated by Citizen…