ABC in Australia reports: The Australian National University has been hit by a massive data hack, with unauthorised access to significant amounts of personal details dating back 19 years. A sophisticated operator accessed the ANU’s systems illegally in late 2018 but the breach was only detected two weeks ago, the university said in a statement….
Category: Of Note
Update on American Medical Collection Agency breach: Almost 12 million Quest Diagnostic patients impacted
On May 10, DataBreaches.net broke the story of a medical collection agency breach involving American Medical Collection Agency. The breach had been discovered by Gemini Advisory, who informed this site that they had found approximately 200,000 patients’ payment card info for sale on a well-known marketplace. The cards had apparently been compromised between September, 2018…
GandCrab ransomware operation says it’s shutting down
Does Hallmark have a card suitable for this? Catalin Cimpanu reports: The creators of the GandCrab ransomware announced yesterday they were shutting down their Ransomware-as-a-Service (RaaS) operation, ZDNet has learned. […] “We successfully cashed this money and legalized it in various spheres of white business both in real life and on the Internet,” the GandCrab…
Utah knew the company it picked to create standardized tests had a history of crashes and cyberattacks. It signed a $44 million contract with Questar anyway.
Courtney Tanner reports: In other states, the year-end tests were marked by glitches and cyberattacks and hourlong delays. One school district threw out its results because the software was so unreliable. In another, all of the students had to start over when the programming shut down and didn’t save their responses. Sensitive student data was…
It’s been a strange week, Part 2. An open letter to Twitter.
This was a strange week. It started off great, but then, there I was in a private (DM) conversation on Twitter with Chris Vickery, and alluva sudden, I get a message that my Twitter account was suspended. I refreshed the screen and got the same message. I logged out, logged back in, and was still…
Legislative Roundup: New Laws Passed in Arkansas, Oklahoma, and Maryland That Revise Cyber Security Measures
Steven Erkel and Kaeley Brown of Alston & Bird write: Arkansas In April, Arkansas’ Governor signed H.B. 1943 as Act 1030 expanding the scope of personal information, as used in the Personal Information Protection Act, to include “biometric data.” The Bill defines “biometric data” as “data generated by automatic measurements of an individual’s biological characteristics,…