New York State Education Department has addressed the Illuminate data breach in a notice on the state’s site that advises school districts that they must make their best effort to contact all students, including former students for whom they have addresses. They are also advising districts to keep records of who they notified and who…
Category: Of Note
Kaiser Wins Trademark Injunction Against Patient Data Company
Isaiah Poritz reports: Kaiser Foundation Health Plan Inc. won a preliminary injunction in California federal court against medical records company SureFile Filing Systems for attempting to sell patient data using Kaiser’s trademarks. Kaiser is likely to succeed on the merits of its breach of contract and common law trademark counterclaims against SureFile, Judge Mark C. Scarsi…
Web scraping is legal, US appeals court reaffirms
Zack Whittaker reports: Good news for archivists, academics, researchers and journalists: Scraping publicly accessible data is legal, according to a U.S. appeals court ruling. The landmark ruling by the U.S. Ninth Circuit of Appeals is the latest in a long-running legal battle brougcht by LinkedIn aimed at stopping a rival company from web scraping personal…
Joint Cybersecurity Advisory: TraderTraitor: North Korean State-Sponsored APT Targets Blockchain Companies
From the Summary: The Federal Bureau of Investigation (FBI), the Cybersecurity and Infrastructure Security Agency (CISA), and the U.S. Treasury Department (Treasury) are issuing this joint Cybersecurity Advisory (CSA) to highlight the cyber threat associated with cryptocurrency thefts and tactics used by a North Korean state-sponsored advanced persistent threat (APT) group since at least 2020….
Learning Opportunities from Ransomware and Redline Infostealer Events Inside America’s Universities
Britton White writes: After a university was recently hit with Ransomware, I decided to research the university’s domain name searching for any users who might have been hit with Redline Infostealer/Malware. To no surprise, I found many students had unknowingly had their saved browser credentials scraped (stolen/exfiltrated). It didn’t take long to find a student…
North Korean hackers behind $600 million crypto heist – FBI; spying on South Korean chemical sector firms – Symantec
Ameya Paleja reports: Cyber actors such as the Lazarus Group and APT38, from North Korea, have been confirmed by the Federal Bureau of Investigation (FBI) to be involved in the $600-million crypto-heist that took place last month, the investigation agency said in a press release. Earlier this year, we had reported that North Korean cybercriminals made…