Kansas City-based accounting firm Walters McCann Fanska is notifying clients that their personal and financial account information may have been acquired by a hacker or hackers who had access to the firm’s network from sometime late last year until late February 2015. To their credit, the firm noticed suspicious activity with some accounts at the end…
Category: Hack
The train wreck that was (is?) Pasco County School District’s IT security
I continue to look for details on the case of a 14-year old middle school student who is facing two felony counts for allegedly hacking into his district’s network (see previous coverage of the case on this blog here and here). In today’s installment of How Badly Can a District Screw Up InfoSecurity? Ashley Feinberg of…
Education Sector Struggles With Botnets: BitSight
As this blog makes painfully clear, the education sector struggles with data security and lags way behind other sectors, in my opinion. Now a new report indicates another area of security where they’re lagging. Brian Prince reports: The education industry – which includes education companies, schools and colleges – brought up the rear in a new…
FL: Was Pasco County School District negligent in securing their network from students?
WTSP has provided a follow-up to a report noted earlier involving a 14-year old student at Paul R. Smith Middle School who is facing two felony charges for allegedly hacking into the Pasco County School District‘s network. Their new report addresses some of the questions I raised in my previous post about the incident. In their update, the student, who is now…
FL: 14-year-old arrested after hacking into FCAT
For those not familiar with it, FCAT is the Florida Comprehensive Assessment Test, a standardized test for assessing student performance. WTSP reports: A 14-year-old student at Paul R. Smith Middle School was arrested Wednesday after investigators say he hacked into the school’s computer system and accessed the server containing 2014 FCAT information. In addition, the student…
Southern Powerlifting Federation member data repeatedly dumped – does anyone there notice?
Today’s second example of an entity not knowing their data has been repeatedly dumped is Southern Powerlifting Federation. On April 7, “Jabb” (@Versifyings) dumped some of their smf_members database on Pastebin. The dump consisted of approximately 440 email addresses and hashed passwords. The database records indicate that there were over 15,000 records. Whether Jabbs acquired them all…