Another city has reported a breach involving Click2Gov software by CentralSquare Technologies. WTVY reports Dothan, Alabama has joined more than four dozen other cities using Click2Gov that have experienced breaches involving payment card data of residents using online payment portals: “It has come to the City of Dothan’s attention that CentralSquare, the third-party processor of…
Port Neches-Groves ISD recovered access to files — but only after paying ransom
There’s an update to the ransomware attack on Port Neches-Groves ISD in Texas, previously noted on this site on November 12. Raegan Gibson reports that as of Monday, November 18, the district had regained access to its files — but it involved paying ransom, most of which was covered by the district’s insurance: The attackers…
MA: Chicopee school computers, servers hit by Ransomware
Ryan Trowbridge, Sarah Guernelli, and Andrew Masse report that Chicopee Public Schools in Massachusetts was hit with a ransomware attack — specifically, Ryuk ransomware. The attacker(s) have demanded $300,000, but the district says they are not paying it and have been working to deal with the situation since Monday morning. Read more on Western Mass…
Veterans Affairs put millions of people at risk of identify theft, audit finds
Eric Yoder reports: The Veterans Affairs Department, while responding to requests for records on veterans’ benefits claims, “put millions of people at risk of identity theft” by not deleting personally identifying information on other people from those records, an audit has found. That information included names and Social Security numbers of people such as other…
WeWork Developers Exposed Contracts and Customer Data on GitHub
Joseph Cox reports: WeWork developers exposed customer contracts, some of which contained bank account details, and the personal and contact information of other potential customers to the open internet. The issue impacts a subset of WeWork customers based in India, China, and Europe. The news comes after WeWork has essentially imploded, with its valuation tumbling and…
Target sues insurer for up to $74 million in 2013 data breach costs
Kavita Kumar reports: Target is suing its longtime insurance company for denying claims to reimburse Target for tens of millions of dollars it has paid out for new payment cards as part of settlements over the retailer’s 2013 data breach. The lawsuit against ACE American Insurance Co., based in Pennsylvania and now part of the…