Catalin Cimpanu reports: An anonymous security researcher has published details about a zero-day in vBulletin, today’s most popular internet forum software. Because of this individual’s actions, security experts are now concerned that the publication of details about this unpatched vulnerability could trigger a wave of forum hacks across the internet, with hackers taking over forum…
UK: Unshredded NHS records were dumped in a town centre to weigh down scaffolding at art festival
We really need to have an “Oh, FFS!” category for breaches. Rob Pattinson reports: Medical records of hundreds of thousands of NHS patients were dumped in a town centre to weigh down scaffolding. They were meant to be shredded but instead used as ballast for an art festival structure. Read more on The Sun.
[CORRECTED] Peoples Injury Network Northwest notifies patients of ransomware incident
Like so many other ransomware incidents we’ve read about in the past year, investigators were not able to conclusively determine that patient data had not been accessed or exfiltrated. As a result, the Peoples Injury Network Northwest (PINN) of Washington recently notified 12,502 Washington residents that their data was potentially at risk from an April…
Wolcott school officials provide information on district wide cyber attack
Rebecca Cashman and Patricia Del Rio report on how the Wolcott, Connecticut school district is responding to the second cyberattack it has experienced in the past few months. The district declined to pay any ransom, and it’s not clear whether the two attacks are by the same hacker(s) or not. Read more on WFSB.
Mobile County Public Schools impacted by ransomware attack on vendor, back online now
You may have been a bit confused by the rapidly changing status involving Mobile County Public Schools in Alabama, who were impacted by a ransomware attack. Their site was down for about 24 hours, but is back up. The ransomware attack was against their vendor, SchoolinSITES.
California Passes Several Amendments to the California Consumer Privacy Act
Dorian Simmons of Alston & Bird writes: The California legislature passed several amendments to the California Consumer Privacy Act of 2018 (Cal. Civ. Code §§ 1798.100 to 1798.190) (the “CCPA”) on September 13, 2019. (See our previous blog posts here: Which CCPA Amendments Made the Cut? and Potential Changes to the CCPA; California Senate Considers…