Jonathan Shorman and Hunter Woodall report: Partial Social Security numbers for nearly 1,000 Kansas voters were released publicly by Florida after Secretary of State Kris Kobach’s office provided the data as part of a program that looks for double voter registrations. Kobach called the disclosure unfortunate but defended the program, called Crosscheck, as key to…
Category: U.S.
Infant Social Security numbers are for sale on the dark web
Selena Larson reports: Cybercriminals claim to be selling the Social Security numbers of babies on the dark web. The personal details of children — including dates of birth and mother’s maiden names — have been sought after for years. Now, researchers have found an ad on a forum for the sale of data claiming to…
Monticello Central School District notifying almost 2,600 of phishing attack last year
When I saw that Monticello Central School District in New York had submitted a breach notification to the Vermont Attorney General’s Office and it mentioned phishing, I thought we might have our very first W-2 phishing incident of 2018. But no, it seems that the school district is reporting a phishing incident that they believe…
Pedes Orange County notifying patients after doctor found accessing EMR without authorization
Pedes Orange County, Inc. in California shares their medical facility with another medical group that conducts surgical procedures. To coordinate, it seems that they share a scheduling tool with other medical professionals in their building. Somehow – and it’s not yet clear to me how this happened in terms of access controls – a physician…
Corovan Corporation & Employer Leasing notifying 1,500 California residents of data breach
It was one of those deja vu experiences I’m increasingly likely to have these days. I read a breach notification template that involved health insurance information, made a note of it in my compilation worksheet for Protenus, and was going about my other work when I read another notification template that was identical – except…
Idaho school works to recover data weeks after cyberattack
Julie Wootton-Greener reports that Jerome School District in Idaho is still working on recovering from a ransomware attack that they discovered on December 11. Readers may recall that at the time, the ransom amount was the equivalent of USD $65,000 and the district decided not to pay it as they felt they could recover from…