To follow up on my post about a Florida vendor’s misconfiguration that impacted 368,000 students as well as thousands of former and current Leon County Schools employees: I took marked exception to some of the FLVS‘s initial claims because I felt it was misleading to try to cry “hack” when it was a misconfigured server that exposed…
Category: Commentaries and Analyses
Statistics Canada loses, mishandles hundreds of sensitive census, employment files
Kathleen Harris reports: The federal agency in charge of collecting, analyzing and securely storing personal data about Canadians lost hundreds of sensitive files during the 2016 census process. Incident reports obtained by CBC News through Access to Information detail 20 cases of information and privacy breaches by Statistics Canada, including long and short census surveys, home…
Data Breach Left Millions of Israeli Kids’ Pictures Vulnerable to Hacking
Amitai Ziv reports: A serious security breach in an app called Remini left millions of pictures of Israeli children vulnerable to being leaked to the internet. Remini is an app that enables preschool teachers to stay in touch with parents. It allows them to share everything from pictures and videos through schedules of classroom activities…
Did Columbia Falls Schools treat an extortion payment made to TheDarkOverlord as a dirty little secret?
Update of March 12: After this story appeared on March 9, DataBreaches.net received a call from Superintendent Bradshaw, who had been out of town when my email had arrived. This story has been updated – and corrected occasionally – to incorporate his answers. If students are at risk of significant emotional damage because highly sensitive…
In: 53,000 cybersecurity incidents observed during 2017
For comparison purposes: “As per the information reported to and tracked by Indian Computer Emergency Response Team (CERT-In), a total number of 49,455, 50,362 and 53,081 cyber security incidents were observed during the year 2015, 2016 and 2017, respectively,” IT Minister Ravi Shankar Prasad said in a written reply to Rajya Sabha today. Read more…
This bill would make it easier for businesses to keep data breaches under wraps
David Lazarus has some unflattering words for a bill introduced in Congress by Representatives Blaine Luetkemeyer and Carolyn Maloney. Indeed, the Data Acquisition and Technology Accountability and Security Act might be more aptly named the “Businesses Get Out of Jail Free Pass and Screw The Consumers Act of 2018.” Well, ok, I grant you that that…