Doug Levin writes: …. I am pleased to introduce and launch the K-12 Cyber Incident Map. It is a visualization of cybersecurity-related incidents reported about U.S. K-12 public schools and districts from 2016 to the present. ‘Cyber’ incidents tracked on the map, include: (a) phishing attacks resulting in the disclosure of personal data; (b) other unauthorized disclosures, breaches…
Category: Commentaries and Analyses
A puzzling private industry notification from the FBI (UPDATED)
Update of March 31: Tonight, Justin Shafer contacted this site to report that the FBI was raiding him again – for the third time – and this time, they had an arrest warrant for him. DataBreaches.net is waiting to get additional details and will post something when we know more. Original post: On March 22,…
Cyber Criminals Sharing Millions of Higher Education Institutions’ E-mails and Passwords on The Dark Web
Cyber criminals are aggressively sharing credentials to .edu e-mail accounts – including stolen accounts, fake e-mails, and older e-mail accounts. The Digital Citizens Alliance saw evidence showing threat actors of all types – including hacktivists, scam artists, and terrorists – putting credentials (e-mails and passwords) up for sale, trade, or, in some cases, just given…
Personally Identifiable Information Found on 40 Percent of Used Devices in Largest Study To-Date
The headline pretty much says it all. The study was conducted by an association with a self-serving interest, but here’s the press release: The National Association for Information Destruction (NAID ) announced today the results of the largest study to date of the presence of personally identifiable information (PII) on electronic devices sold on the…
Privilege Waiver: Is Your File-Sharing Site a Public Park Bench?
Lia Marie Brooks and Peter A. Nelson have an article on Harleysville Insurance Co. v. Holding Funeral Home, Inc. that I nearly skipped. I’m glad I didn’t, because it may have some applicability to cases where entities leave confidential or protected health information on public FTP servers without any password protection and then try to…
Protenus releases February health data breach statistics
So what kind of month was February for breaches in the healthcare sector? Protenus has released its February Breach Barometer based on incidents compiled by this site. As a reminder: their analyses do not rely solely on HHS’s public breach tool. As in past months, insider incidents – whether accidental or intentional wrongdoing – comprised…