Nicole Ogrysko reports: The Office of Personnel Management may have paid too much for identity theft and credit monitoring services for victims of the two 2015 cyber breaches. The Government Accountability Office questioned whether the requirement that OPM provide victims of the 2015 breaches with no less than $5 million in identity theft insurance for…
Category: Commentaries and Analyses
FBI Arrests Hacker Who Hacked No One
Kevin Poulsen reports on the arrest of Taylor Huddleston, whose “crime” is that others have used a tool he developed: Huddleston, though, isn’t a hacker. He’s the author of a remote administration tool, or RAT, called NanoCore that happens to be popular with hackers. NanoCore has been linked to intrusions in at least 10 countries,…
Introducing the K-12 Cyber Incident Map
Doug Levin writes: …. I am pleased to introduce and launch the K-12 Cyber Incident Map. It is a visualization of cybersecurity-related incidents reported about U.S. K-12 public schools and districts from 2016 to the present. ‘Cyber’ incidents tracked on the map, include: (a) phishing attacks resulting in the disclosure of personal data; (b) other unauthorized disclosures, breaches…
A puzzling private industry notification from the FBI (UPDATED)
Update of March 31: Tonight, Justin Shafer contacted this site to report that the FBI was raiding him again – for the third time – and this time, they had an arrest warrant for him. DataBreaches.net is waiting to get additional details and will post something when we know more. Original post: On March 22,…
Cyber Criminals Sharing Millions of Higher Education Institutions’ E-mails and Passwords on The Dark Web
Cyber criminals are aggressively sharing credentials to .edu e-mail accounts – including stolen accounts, fake e-mails, and older e-mail accounts. The Digital Citizens Alliance saw evidence showing threat actors of all types – including hacktivists, scam artists, and terrorists – putting credentials (e-mails and passwords) up for sale, trade, or, in some cases, just given…
Personally Identifiable Information Found on 40 Percent of Used Devices in Largest Study To-Date
The headline pretty much says it all. The study was conducted by an association with a self-serving interest, but here’s the press release: The National Association for Information Destruction (NAID ) announced today the results of the largest study to date of the presence of personally identifiable information (PII) on electronic devices sold on the…