Beth Kassab and Leslie Postal report: The troubled Florida Virtual School should get a new governor-appointed board, new ethics standards for employees and a new inspector general inside the school to oversee internal audits and investigations, according to a report released Friday by the Florida Department of Education. And some of the criticism relates to…
NordVPN users’ passwords exposed in mass credential-stuffing attacks
Dan Goodin reports: As many as 2,000 users of NordVPN, the virtual private network service that recently disclosed a server hack that leaked crypto keys, have fallen victim to credential-stuffing attacks that allow unauthorized access to their accounts. In recent weeks, credentials for NordVPN users have circulated on Pastebin and other online forums. They contain the…
The Guidance Center notifies 1,235 patients after discovering insider wrongdoing
What havoc and costs a rogue insider/employee can cause. Here’s another example — this one from a new disclosure by external counsel for The Guidance Center in Long Beach, California. The Guidance Center (TGC) provides comprehensive mental health treatment to disadvantaged youth and their families. In their lawyer’s words: In late March of 2019, TGC…
Desjardins data breach much larger than first estimated, affecting ALL 4.2 million members
Frédéric Tomesco reports: All of Mouvement Desjardins’ individual members, 4.2 million people, have had their personal information compromised as a result of the actions of a single employee, who has since been fired, chief executive officer Guy Cormier said Friday. That’s about 56 per cent more than the total that Desjardins first disclosed June 20. With Sûreté du…
More victims of yet another Click2Gov breach this week
Yet another report of a data breach involving Click2Gov software by Central Square Technology. Previous coverage of the publicly disclosed breaches from 2017, 2018, and 2019 are linked from here. Also see research reports by FireEye, Gemini Advisory, and RBS for additional background. The latest victim to come forward — at least the most recent…
Update: One or more Paterson students were allegedly responsible for district data breach
Jayed Rahman provides an update to a breach previously covered on DataBreaches.net: One or more students were allegedly responsible for the massive data breach that struck the district late last year, according to sources briefed on a preliminary investigation conducted by a firm contracted by the district. Superintendent Eileen Shafer’s administration won’t make the findings…