James Walker reports: HURR Collective, a UK-based fashion rental company, has notified around 400 users of a data security incident that resulted in their email addresses being exposed, The Daily Swig has learned. A misconfigured plugin on the HURR website meant that users’ email addresses could be obtained simply by clicking ‘View Source’ on certain web pages….
NYS Comptroller releases two more school district IT audits
By now, regular readers may wonder why I continue to post IT audits of New York school districts when the results have generally been so poor. Where’s the good news, you wonder? There really has been none or extremely little. Which is exactly why I will continue to post these — until people wake up…
Over 267 million Facebook users had their names, phone numbers, and profiles exposed thanks to a public database, researcher says
Kevin Webb reports: Cybersecurity researchers said on Thursday that more than 267 million Facebook users had their personal data exposed in an online database that collected their names, Facebook IDs, and phone numbers. The database was available online without a password to anyone who accessed it for about two weeks, according to Comparitech, a tech website,…
UK: Ex-employee of ICT contractor jailed for Jet2 cyber attacks
A disgruntled ex-employee has been jailed after he admitted carrying out cyber attacks against Jet2 which took down their computer systems for more than 12 hours. NCA investigators proved that 27-year-old Scott Burns from Morley, Leeds, illegally accessed a domain operated by Dart Group and their subsidiary, Jet2, on two separate occasions in January 2018….
UK: Information Commissioner’s Office takes enforcement action against pharmacy
From the ICO: The Information Commissioner’s Office (ICO) has fined a London-based pharmacy £275,000 for failing to ensure the security of special category data. Doorstep Dispensaree Ltd, which supplies medicines to customers and care homes, left approximately 500,000 documents in unlocked containers at the back of its premises in Edgware. The documents included names, addresses,…
AZ: Ex-workers at Tempe financial firm accused of theft, computer tampering
Nicole Garcia reports: Two former employees of a financial firm in Tempe are arrested in what police are calling a multi-million dollar case of fraud. Officers booked Dria Carr and Eric Hernandez, both of Phoenix, on felony counts of theft and computer tampering. According to detectives, while working at “Freedom Financial Network” in Tempe, Carr sent…