From the not-really-a-surprise dept., Vindu Goel reports: Yahoo, already under a cloud from its summertime disclosure that 500 million user accounts had been hacked in 2014, disclosed Thursday that another attack a year earlier had compromised more than 1 billion Yahoo accounts. The newly disclosed attack involved more sensitive user information, including unencrypted security questions….
Category: Of Note
$17.5 Million Settlement With Owner Of Ashleymadison.com In Joint Multi-State And FTC Agreement
Settlement Follows Investigation Finding That Adult Dating Website Maintained Lax Security Practices, Misled Consumers About Its Data Security, And Created Fake Female Profiles To Entice Male Users In Addition to Penalties, Settlement Requires The Website To Implement Stronger Data Security Program And Cease Deceptive Practices NEW YORK—Attorney General Eric T. Schneiderman joined twelve other states,…
Data breach affects Frederick County schools (UPDATED)
WMAR reports: A data breach may have affected up to 1000 students at Frederick County Public Schools (FCPS) officials said. The breach impacted students who attended FCPS between November 2005 and November 2006. The breached information includes names, social security numbers and birth dates. AP adds important details that the breach was brought to the school…
Data enrichment records for 200 million people up for sale on the Darknet
Steve Ragan reports: Full data enrichment profiles for more than 200 million people have been placed up for sale on the Darknet. The person offering the files claims the data is from Experian, and is looking to get $600 for everything. Details of this incident came to Salted Hash via the secure drop at Peerlyst, where…
Facing a Data Breach Suit Without the Data Breach? ‘Scary.’
Roy Strom writes: Chieftains of corporate America have long feared the financial and reputational fallout from a hacking breach. But a class action suit unveiled against a law firm last week could add to their data security anxiety. The suit claims that companies and law firms should be held accountable for lax security measures even if their…
Massive Australian Taxation Office data loss feared after Hewlett Packard Enterprise equipment crash
Fleur Anderson and Paul Smith report: The Australian Taxation Office has restored access to some of its online services, but concerns remain that large amounts of data have been lost after it suffered a “world-first” technical glitch to equipment from Hewlett Packard Enterprise more than 24 hours earlier. Tax officials were reportedly told to work…