Schools are off to a rough start this year. Apart from grappling with edtech and security issues in light of the increased use of virtual learning, school districts are being increasingly attacked by ransomware groups. These ransomware threat actors pose a double threat: they not only encrypt a district’s system(s) to make functioning impossible unless…
SunCrypt ransomware threat actors claim theft of University Hospital New Jersey files
Ax Sharma reports: University Hospital New Jersey (UHNJ) has suffered a massive data leak with over 48,000 documents floating on the dark web. An anonymous tip sent to BleepingComputer shows the different types of documents found in the leaked data dump. Read more on BleepingComputer, who provide a lot of redacted screenshots from a data dump…
Magento online stores hacked in largest campaign to date
Catalin Cimpanu reports: More than 2,000 Magento online stores have been hacked over the weekend in what security researchers have described as the “largest campaign ever.” The attacks were a typical Magecart scheme where hackers breached sites and then planted malicious scripts inside the stores’ source code, code that logged payment card details that shoppers…
Michigan Considers Enhanced Data Breach Notification Law
Joseph Lazzarotti and Maya Atrakchi of JacksonLewis write: Privacy and security continue to be at the forefront for legislatures across the nation, despite (or perhaps because of) the COVID-19 pandemic. In late May, with back-to-back amendments, Washington D.C. and Vermont significantly overhauled their data breach notification laws, including expansion of the definition of personal information,…
West County provides notice of data breach last year; no identity theft reported so far
Sarah Haas reports: West County School District announced on Friday that, although it had experienced a possible data breach between Oct. 6 and Nov. 20 last year, to date it’s had no reports from anyone affected by that unauthorized access of information on a computer server used for summer school. Read more on Daily Journal…
A bug in Joe Biden’s campaign app gave anyone access to millions of voter files
Zack Whittaker reports: A privacy bug in Democratic presidential candidate Joe Biden’s official campaign app allowed anyone to look up sensitive voter information on millions of Americans, a security researcher has found. The campaign app, Vote Joe, allows Biden supporters to encourage friends and family members to vote in the upcoming U.S. presidential election by uploading their phone’s…