DATA SECURITY: Recent K-12 Data Breaches Show That Students Are Vulnerable to Harm GAO-20-644: Published: Sep 15, 2020. Publicly Released: Oct 15, 2020. Schools and school districts collect and store a lot of personal information about their students. But are K-12 institutions adequately securing student data? We found: Thousands of K-12 students had their personal information…
British Airways Fined $26 Million in U.K. Probe Over 2018 Data Attack
British Airways has been fined £20m (U.S. $26 million) by the U.K.’s Information Commissioner’s Office for a 2018 breach that impacted more than 400,000 customers. That penalty is significantly less than what the ICO had indicated it intended to do. In a press statement accompanying the monetary penalty notice, the ICO stated: An ICO investigation…
More details emerge on Hall County, Georgia ransomware attack
As reported previously on this site, Hall County, Georgia had revealed a ransomware attack on October 7, but until now, we didn’t know who attacked them. Now the threat actors known as DoppelPaymer have added Hall County to their dedicated leak site. In their updates, the county had reported: At this time, there is no…
Florida Resident Sentenced To 2 Years Probation after Previously Pleading Guilty To Accessing a Protected Computer without Authorization and Recklessly Causing Damage
NEW ORLEANS – U.S. Attorney Peter G. Strasser announced that CARLOS DAVID IRIAS, age 47, a resident of Cutler Bay, Florida, was sentenced to two (2) years probation by United States District Judge Eldon E. Fallon after previously pleading guilty to a one-count bill of information charging him with intentionally accessing a protected computer without authorization…
Privacy nightmare for Toledo Public Schools: Hackers dumped student and employee data
By mid-September, it was clear that school districts were under increased threat of ransomware attacks. In fact, when Clark County School District (CCSD) in Las Vegas and Fairfax County Public Schools (CFPS) in Virginia were added to the Maze cartel’s leak site, it seemed to portend potentially big data dumps. Since that dump, Maze dumped…
Twitter hackers trick employees by posing as IT workers, NY probe finds
Noah Manskar reports: A simple phone scam was the key first step in a Twitter hack that took over dozens of high-profile accounts this summer, New York regulators say. The hackers responsible for the July 15 attack called Twitter employees posing as company IT workers and tricked them into giving up their login credentials for the social network’s internal tools, the state’s Department of…