There is a follow-up to an incident involving exposed Los Angeles County 211 call logs. The misconfiguration had been discovered by UpGuard and was reported in May. Now the County has submitted its report to the California Attorney General’s Office. It states, in part: Our investigation determined that the incident was caused by an employee…
Category: U.S.
WI: Manitowoc County data breach affected personal health, medical information
Alisa M. Shafer reports: Manitowoc County officials have released more information about a data breach of a Manitowoc County email account in January. The press release from June 22 states: “On or around January 14, 2018, an unauthorized party was able to gain access to a Manitowoc County email account most likely through what is called…
Former Brownsville Fire Chief Facing Security Breach Charges
KRGV reports: The former Brownsville fire chief is facing more charges. Carlos Elizondo was indicted by a grand jury in an 11-count case of computer security breach charges. He’s accused of logging into a computer network on 11 occasions to access the emergency reporting system portal for the Brownsville Fire Department without the city’s consent….
NY: North Colonie Central School District notifies retirees of data security breach
North Colonie Central School District in New York is notifying some retirees that their personal information was inadvertently exposed on the internet for a period of approximately six weeks. The breach occurred when a package of information the district made available to vendors to provide quotations on insurance services inadvertently failed to redact the names,…
University of Kansas computer hacker granted probation, ordered to apologize to professors
Sara Shepherd reports: A former University of Kansas student who hacked into the school’s computer system and changed his failing grades to A’s was granted probation for the resulting felony convictions. He also must write letters apologizing to the professors he fraudulently signed in as. As the prosecutor and his defense attorney had requested in…
Humana notifies members after credential stuffing attack on Humana.com and Go365.com
Health insurer Humana recently began notifying an unspecified number of health plan members after detecting and blocking a credential stuffing attack against Humana.com and Go365.com. The attacks took place on June 3 and June 4 from overseas IP addresses. In a notification letter dated June 21, Jim Theiss, Humana’s Chief Privacy Officer, writes: On June 3,…