Midwest City, Oklahoma reports that about 2,300 customers were potentially affected by a breach involving software needed to use Click2Gov. As Dark Reading recently explained: Risk Based Security’s Inga Goddijn noticed a pattern of Click2Gov, a product of Superion Software, appearing in breach notification letters. The notifications came from cities across the United States, which…
Category: Government Sector
Aadhaar Security Failure: Government Webpages Provide Unsecured Access To Demographic Authentication
Aria Thaker reports: In another exposure of Aadhaar’s cybersecurity weaknesses, over 70 subdomains under a Government of India website are providing access to demographic-authentication services without requiring identity verification from the requester. The websites allow users to access an application programming interface, or API, in which anyone can enter a person’s Aadhaar number, name, gender…
Indian-origin Singapore woman faces jail for data leak in ‘biggest scam’ to hit US navy
Gurdip Singh reports: ‘Contract specialist’ Sharon Rachael Gursharan Kaur allegedly got $95,000 to sell information used to sway defence bids. Singapore: A 57-year-old Indian-origin Singaporean woman, accused of being involved in the largest bribery case in the history of the US Navy, may face a jail term of more than three years, a media report said…
NYU professor releases personal info on over 1,500 ICE employees, hopes people will find it ‘useful’
Sarah Taylor reports: Sam Lavigne, who is reportedly an adjunct professor at New York University as well as a digital designer and developer, released a list of more than 1,500 Immigration and Customs Enforcement employees’ personal information on Wednesday. What are the details? In a since-removed blog post on Medium, “Lavigne wrote, ‘I’ve downloaded and…
Surgery technician accused of stealing personal information from BAMC
KSAT reports: A surgery technician is accused of taking personal information from a surgeon and other active-duty and retired military members at Brooke Army Medical Center. Abelardo Arellano, 32, was arrested after his wife found a notebook belonging to him with several people’s names, birthdays and Social Security numbers in it, authorities said. Read more…
Email providers blacklist oregon.gov, now state can’t email some members of the public
When you think of consequences of employees clicking on phishing emails, did you ever think about how an entire state government might wind up having their email domain blacklisted? It happened to Oregon because oregon.gov was used to send out spam after an employee clicked on a phishing email. Hillary Borrud reports: Oregon’s state technology workers…