Joseph Cox reports: A series of popular apps using an outdated piece of code owned by Twitter are exposing their users’ location data. In total, the apps have been downloaded nearly 10 million times. The news highlights the continued role of software development kits (SDKs), small bundles of code that developers often add to their…
Barnes & Noble confirms cyberattack, ransomware group leaks allegedly stolen data
There’s an update to the B&N attack noted last week. Lawrence Abrams reports that the bookseller has confirmed that they were the victim of an attack on October 10 and that the Egregor ransomware group has claimed responsibility for the attack, although their “proof” does not really prove that they exfiltrated any financial or sensitive…
Probe ordered after phone data theft
Yiannis Souliotis reports: The telephone data of thousands of Greek citizens have reportedly been stolen in a massive hacking operation that took place from September 1 to 5 through the OTE telecommunications network. The Athens Court of First Instance has ordered a preliminary probe and asked the cybercrime unit of the Hellenic Police (ELAS) to draft a case file….
NY: Yorktown, Croton-Harmon schools suffer cybersecurity attacks
Sophie Grosserode reports: Two Westchester school districts were targeted by a cyber security attack on school-based desktops and laptops that kept students learning at home. The Yorktown and Croton-Harmon districts both fell victim to a security breach on Monday that took days to iron out. In a communication to district families, Croton-Harmon Superintendent Deborah O’Connell said the incident…
IA: OCSD, KCSD report data security breach of student info at Medicaid billing service
Emily Hawk reports on what has the makings of a significant breach: A contractor used by the Oskaloosa Community School District and the Knoxville Community School District has experienced a data security incident that resulted in a breach of personal student information. Timberline Billing Services, Inc. provides Medicaid billing and reimbursement services to both districts,…
OSF Healthcare notifying patients of the Blackbaud incident
OSF HealthCare System (“OSF”) is mailing letters to its patients advising them of the Blackbaud ransomware incident that has already impacted more than 10 million other patients. OSF’s statement doesn’t reveal when Blackbaud first notified them, but they report that On August 20, 2020, OSF’s investigation and review of the Blackbaud database involved in the…