Steve Ragan reports: A remotely exploitable vulnerability in the Nighthawk line of Netgear routers was disclosed on Friday. The flaw leaves customers exposed to having their connections hijacked, as someone exploiting the vulnerability can take complete control of the device. Despite having months to address the problem, Netgear has yet to publish a fix. Read…
Category: Of Note
BMC to send pathology lab show-cause notice over data leak
Mumbai: After data from a privately-run pathology lab, Health Care Solutions, Parel, leaked around six months ago and has been in circulation on social media, the Brihanmumbai Municipal Corporation (BMC) has now decided to issue a show-cause notice to the lab for being ‘irresponsible’. The leaked data contained the test results of patients, along with vital…
New World Hackers group revealed as college students: sources
Some great reporting by Zack Whittaker the other day, pretty much outing the members of New World Hackers: How many hackers does it take to bring down one of the world’s largest websites? Turns out, only three — and two of them are still in college. Several sources have told ZDNet that despite claiming to…
Oregon Department of Education risked breach of private student data, audits find
Betsy Hammond reports: Two separate audits found the Oregon Department of Education didn’t do enough to ensure that its huge cache of data on more than 600,000 students remains private. Hundreds of people in school districts and in state government have access to some or all of that data. That means keeping it safe is…
NorQuest College faces tough questions from MLAs on alleged fraud and security breach
Kim Trynacity reports: During what was sometimes a testy exchange with MLAs, the president of NorQuest College fended off a wide range of questions Tuesday about an alleged fraud and massive security breach at the college between 2008 and 2012. Appearing for the first time since the public learned about the incidents in September 2016, NorQuest…
Chicago Law Firm Accused of Lax Data Security in Lawsuit
Gabe Friedman reports: A federal judge on Friday unveiled a long sealed proposed class-action complaint that accused the law firm, Johnson & Bell, of failing to take adequate steps to protect the data on its servers. The case is currently proceeding in confidential arbitration and the complaint was filed in April by the plaintiff’s firm Edelson P.C. on behalf…