File this in your “You did WHAT?!” file. Lorenzo Franceschi-Bicchierai reports that after a cybersecurity audit mistakenly reset everyone’s password, Oak Park and River Forest High School in Illinois did a global replace, changing all students’ passwords to “Ch@ngeme!” to prompt them to change their password. What could possibly go wrong if you now know…
Category: U.S.
Lawyer censured for using TeamViewer to snoop on former firm’s business activity
Here’s your reminder for today about the insider threat. Debra Cassens Weiss reports: A lawyer in Cherry Hill, New Jersey, has been censured after acknowledging that he “fell into stupid” and accessed his former law firm’s computer system to monitor his former partner’s business activity. The New Jersey Supreme Court censured lawyer Justin L. Scott…
Pilot Applicant Information for American, Southwest Hacked
Nate Nelson reports: Hackers breached a database maintained by Pilot Credentials, a recruiting company based in Austin, Texas, resulting in the theft of personal information from more than 8,000 pilot applicants for American Airlines and Southwest Airlines. The compromised data includes names, birth dates, Social Security and passport numbers, as well as driver- and pilot-license…
Ransomware attack at Chattanooga State affects data of 1,244 people
Ellen Gerst reports: A ransomware attack discovered at Chattanooga State Community College in May compromised the personal information of 1,244 people, according to the college. The majority of the people affected had taken the GED test at the college’s testing center in 2012 and 2013, the college said in a news release Tuesday. Read more…
‘No credible evidence,’ Formal complaint filed against local doctor at center of alleged cyber attack
There’s a troubling follow-up to an alleged cyberattack reported in May. Katelyn Ogle of KFOR reports: The Oklahoma State Medical Board has filed a complaint against a local doctor who claims her clinic was the target of a cyber attack, leaving former patients unable to get their medical records. “It just makes me sick, what…
National Student Clearinghouse notifies schools of MOVEit breach
On June 24, DataBreaches reported that the National Student Clearinghouse was one of the victims of the MOVEit breach by Clop, In that report, DataBreaches stated that the clearinghouse’s statements to date had not indicated whether they had paid any ransom demand, but DataBreaches had learned that their name had been removed from Clop’s leak…