Zack Whittaker reports: Homeland Security’s cybersecurity division is pushing to change the law that would allow it to demand information from internet providers that would identify the owners of vulnerable systems, TechCrunch has learned. Sources familiar with the proposal say the Cybersecurity and Infrastructure Security Agency (CISA), founded just less than a year ago, wants the…
Following flood of spam emails, more than 1,000 student accounts temporarily disabled
Samantha Kizner reports: Over 1,000 Boston University students were forced to change their account passwords after BU servers were flooded with spam emails from student accounts in late September, university officials said. The spam is believed to be a result of a 2018 breach of the educational site Chegg. [..] Over 1,000 Boston University students…
Waitematā DHB sent private mental health notes to wrong patient, inquiry launched
Hannah Martin reports: A mother who requested her son’s medical records claims she was also sent “fully identifiable” mental health notes about another patient. The Auckland woman, who Stuff has chosen not to name for privacy reasons, said Waitematā District Health Board’s error was a “completely unacceptable” breach of patient privacy. Read more on Stuff.
U.S. Intel Official Charged With Leaking Classified Info to Two Journalists
Betsy Swan reports: A U.S. intelligence official has been arrested and charged with leaking classified material to two journalists, the Justice Department announced on Wednesday afternoon. The official, Kyle Frese, appeared to be in a romantic relationship with one of the journalists, according to the Justice Department, citing social media pages. Zach Terwilliger, the U.S….
Defense Department to tighten data security after settlement with veterans group
Leo Shane III reports: The Defense Department will revamp its Servicemembers Civil Relief Act databases following charges the online information sites exposed millions of troops’ and veterans’ personal information to identity thieves and scammers, officials announced Thursday. Leaders from Vietnam Veterans of America, which filed a lawsuit against the department to force the changes, called…
Hackers breach Volusion and start collecting card details from thousands of sites
Catalin Cimpanu reports: Hackers have breached the infrastructure of Volusion, a provider of cloud-hosted online stores, and are delivering malicious code that records and steals payment card details entered by users in online forms. More than 6,500 stores are impacted, but the number could be even higher. In a press release published last month, Volusion…