Howard Monroe reports on what sounds like yet another hack involving Naviance. We first read about a Naviance hack by a student last week involving the Montgomery County Public Schools in Maryland. Now it’s the Downingtown Area School District in Pennsylvania, it seems. A student prank went too far after personal information belonging to dozens…
SC: Ransomware attack may be affecting 911, emergency dispatch in Jasper Co.
Kristen Rary reports: Earlier this week it was confirmed Jasper County had a cyber attack on their countywide systems, including email and emergency response systems. At that time, county officials said 911 and emergency dispatch services were not having any issues as a result of the cyberware attack. Now, that may not be the case….
Mishandling of Veterans’ Sensitive Personal Information on VA Shared Network Drives — Audit by Veterans Affairs OIG
VA OIG 19-06125-218 | October 17, 2019 From the Executive Summary: The OIG team found that veterans’ sensitive personal information was left unprotected on two shared network drives, where it was accessible to VSO officers who did not represent those veterans. Senior Office of Information and Technology (OIT) representatives told the team that other authenticated…
Universiti Malaya: No data compromised in E-Pay portal hack
Angelin Yeoh and Christina Chin report: No data or information was compromised after the Universiti Malaya (UM) E-Pay Cashless Payment and Records portal was hacked, according to the university. The portal, which was inaccessible since late Thursday night after it was defaced with a message that included hashtags #NoRasis and #UndurVC, is expected to be…
Recruitment Sites Exposes 250,000 Resumes Online
CISO Mag reports: Around 250,000 American and British-based job seekers’ personal information has been exposed after two recruiting sites misconfigured their databases. The exposed information included candidates’ names, addresses, contact information, and work experience. The data leak occurred when recruitment sites Authentic Jobs and Sonic Jobs failed to set their cloud storage as private. Read…
Zappos data breach settlement: users get 10% store discount, lawyers get $1.6m
Long-time readers will remember the 2012 Zappos breach that impacted 24 million of their online customers. The breach and its resulting litigation have been covered on this site previously, including Zappos’s failure in March of this year to get the Supreme Court to hear their appeal of a Ninth Circuit decision that had allowed the…