Matthew Stone reports: A state agency displayed confidential information about patients of Maine mental health and addiction treatment agencies and group home residents on a public website, a Bangor Daily News review found. At least 20 documents on the Maine government website contained names and, in some cases, addresses, dates of birth and phone numbers,…
Category: U.S.
No need to hack when it’s leaking, Wednesday edition: Wyoming Department of Health
From the Wyoming Department of Health, a report involving another GitHub leak: Exposure of Laboratory Test Result Data Described April 27, 2021 The Wyoming Department of Health (WDH) is announcing a mistaken exposure of laboratory test result data involving the health information of thousands of Wyoming residents and others, as well as describing its plan…
Reverb discloses data breach exposing musicians’ personal info
Lawrence Abrams reports: Popular musical instrument marketplace Reverb has suffered a data breach after an unsecured database containing customer information was exposed online. Reverb is the largest online marketplace devoted to selling new, used, and vintage musical instruments and equipment. Today, Reverb customers began receiving data breach notifications stating that customer information was exposed, including…
OR: Centennial schools to close for 2 days after hackers breach school technology systems
Update of May 6: the district confirmed this as a ransomware attack. Their computers are still offline. Original post: Jayati Ramakrishnan reports: A Portland-area school district has canceled Tuesday and Wednesday classes as staffers work to fix a ransomware attack that may have affected the district’s technology systems. Centennial School District staff discovered Monday that certain…
Developing — Babuk claims to have hacked Metropolitan D.C. Police
Update 8:30 pm: The police have now confirmed unauthorized access to their server. The FBI is investigating. The threat actors known as Babuk have added the Metropolitan Police D.C. to their leak site, adding, “We will not comment this time: Even such an organization has huge security gaps, we advise them to get in touch…
School Nutrition Vendor Sued for Compromise of 867,209 K-12 Student Records
Linn Freedman of Robinson + Cole writes: PCS Revenue Control Systems, Inc. (PCS) was hit with a proposed class action lawsuit last week alleging that it discovered a data breach from a hacking attack in December 2019 but failed to notify the affected students until March of 2021. According to the lawsuit, student information was…