Richard Read reports: University of Oregon officials have placed two employees on leave after the “unlawful release” of 22,000 pages of records from the president’s office, including confidential information on faculty, staff and students. Interim UO President Scott Coltrane sent out an email Tuesday night, addressed to colleagues, saying an investigation was underway. Although no Social Security numbers, financial…
Category: U.S.
Ex-tax franchise store owner in Virginia sentenced for ID theft
AP reports: A former Eastern Shore tax franchise store owner will spend two years in prison for aggravated identity theft. U.S. Attorney Dana J. Boente says 41-year-old Sherry R. Kelley of Exmore used about 20 clients’ identity information to obtain 30 lines of credit from H&R Block Bank. Read more on Times Union.
Two Plead Guilty in New York Identity Theft Case
Colin Wilhelm reports: Two defendants in an alleged identity theft ring that targeted banks in New York City and Westchester County have pleaded guilty. Tyrone Lee and Anthony Davis admitted on Tuesday to orchestrating thefts of customer information using bank tellers at branches. Using data gained from tellers who cooperated in the ring, Lee stole…
MN: St. Francis police officer subject of criminal investigation over possible data breach
Shannon Prather reports: In what could be one of the first tests of the state’s new tougher data practices laws, the police chief in St. Francis recently initiated a criminal investigation into one of his own officers on allegations that he illegally accessed private data. The officer is accused of viewing recordings of candidates interviewing…
C’mon, folks, you really need to acknowledge breach notifications, Monday edition
I haven’t kept strict statistics, but in general, most entities that I try to notify of a breach fail to respond at all. Others may respond that they’re looking into claimed hacks, but then fail to get back to me with a definitive answer or statement. Here’s another case in point: On January 10, I…
Metropolitan State U. disclosed breach, but what about other .edu targets of Abdilo?
On December 31, a self-described teenage hacker from Australia who calls himself “Abdilo” claimed to have hacked into dozens of education entities by exploiting SQLi vulnerabilities. Metropolitan State University acknowledged they were breached, but what is going on with the other educational entities that were allegedly hacked, too? Abdilo claims that he started attacking .edu sites back in…