Anna Mahan reports: Multiple UAH email accounts were compromised through a phishing attempt in January, that’s confirmed by the UAH Office of Information Technology. Some emails impacted did contain personal information such as name, date of birth, or social security number. However, school officials say there was no server or directory impacted and no credit…
Category: Phishing
MN: School district employees falls for phishing attack; W-2 forms of 677 employees now compromised
David Colburn reports: REGIONAL- ISD 2142 fell prey to a common online phishing scheme on Feb. 4 when a scammer posing as Superintendent Reggie Engebritson used a fraudulent email to obtain the W-2 forms of 677 district employees. Engebritson sent a letter to staff the same day, informing them of the data breach. Read more…
Nigerian National Sentenced to Prison for $11 Million Global Fraud Scheme
NEWPORT NEWS, Va. – A Nigerian national was sentenced today to 10 years in prison for his involvement in a computer-based intrusion fraud scheme that caused approximately $11 million in known losses to his victims. “Through subterfuge and impersonation, Obinwanne Okeke engaged in a multi-year global business email and computer hacking scheme that caused a…
Beware of this active UK NHS COVID-19 vaccination phishing attack
Lawrence Abrams reports: A very active phishing campaign is underway pretending to be from the UK’s National Health Service (NHS), alerting recipients that they are eligible to receive the COVID-19 vaccine. Today, numerous Twitter users began reporting that they received this phishing email, with some being in the right age group to be eligible and…
DENIED! Court REJECTS Motion to Certify Class in Data Breach Alleging Disclosure of Employees’ Sensitive Tax Information
Kristin L. Bryan of Squire Patton Boggs writes: Data breach litigations rarely make it to motions for class certification. This trend makes each decision that does come out addressing class certification in the data breach context that much more interesting. Well, last week a federal court denied a plaintiff’s motion to certify a class in…
Cybercriminals are Bypassing Multi-factor Authentication to Access Organisation’s Cloud Services
Graham Cluley writes: The US Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency (CISA) has issued a warning to companies to better protect their cloud-based accounts after several recent successful attacks. According to an advisory published by CISA, an increasing number of attacks have succeeded as more employees have begun to work remotely with a variety…