Brian Krebs reports: Identity thieves have been exploiting a glaring security weakness in the website of Experian, one of the big three consumer credit reporting bureaus. Normally, Experian requires that those seeking a copy of their credit report successfully answer several multiple choice questions about their financial history. But until the end of 2022, Experian’s…
Category: Commentaries and Analyses
What Twitter’s 200 million email leak really means
Lily Hay Newman reports: After reports at the end of 2022 that hackers were selling data stolen from 400 million Twitter users, researchers now say that a widely circulated trove of email addresses linked to about 200 million users is likely a refined version of the larger trove with duplicate entries removed. The social network…
FCC Proposes to Modernize Data Breach Rules
Commission Will Seek Comment on Proposed Consumer and Law Enforcement Notification Requirements for CPNI Leaks — WASHINGTON, January 6, 2023—The Federal Communications Commission today launched a proceeding to strengthen the Commission’s rules for notifying customers and federal law enforcement of breaches of customer proprietary network information (CPNI). The Commission will look to better align its…
Man who got into hacking while still in school explains what he did in Anonymous
Ali Condon reports: A man who first got into computer hacking when he was still in school has explained what it was like to work with infamous hacktivist group Anonymous. Mustafa Al-Bassam, who was once a member of Anonymous and is one of the founders of LulzSec, got his first taste for computer programming when he was just…
Report: 25% of Districts Victimized by Cyber Attacks in 2022
Giovanni Albanese reports: San Francisco-based Clever on Thursday released its Cybersecure 2023 report, based on October 2022 surveys of an excess of 800 administrators and more than 3,000 teachers in the U.S. The respondents had differing views on a wide number of issues but the two sides are in agreement that schools need better training, technology and…
University of Miami Health breach notice
Remember when Britton White and DataBreaches discussed employees having their work credentials compromised by infostealers and how employers might want to require employees to notify them whenever an employee’s device was compromised if the device had stored login credentials? University of Miami Health posted a breach notice this week that caught my eye. From the…