Doug Levin has a write-up on the Total Registration data security incident first reported by this site. Doug raises a number of important issues and comments, and I hope his commentary gets wider coverage and discussion. I’m still mulling over the fact that a few of the school districts that this site attempted to notify…
Lithuanian watchdog issues first GDPR fine
Sam Clark reports: Lithuania’s data protection authority has fined a payments processing company for breaching three provisions of the GDPR. The State Data Protection Inspectorate has levied a €61,500 fine against fintech company MisterTango for inappropriate data processing, disclosing personal data and failing to report a breach, it said today. The authority said that the…
Oregon Construction Contractors Board reports data breach
KTVZ reports: The Oregon Construction Contractors Board said Friday it has discovered a security breach involving 8,013 online contractor accounts. Unauthorized individuals gained access to some contractors’ usernames and related password information. The incident occurred between Oct. 27 and Oct. 29, 2018, and was discovered on April 12, 2019, during a routine audit conducted by…
After breach, Stack Overflow says some user data exposed
Zack Whittaker reports: After disclosing a breach earlier this week, Stack Overflow has confirmed some user data was accessed. In case you missed it, the developer knowledge sharing site confirmed Thursday a breach of its systems last weekend, resulting in unauthorized access to production systems — the front-facing servers that actively power the site. The…
TeamViewer Confirms Undisclosed Breach From 2016
Sergiu Gatlan reports: TeamViewer confirmed today that it has been the victim of a cyber attack which was discovered during the autumn of 2016, but was never disclosed. This attack is thought to be of Chinese origins and utilized the Winnti backdoor. The company behind the highly popular TeamViewer remote desktop software told German publisher Der Spiegel that…
Unsecured Survey Database Exposes Info of 8 Million People
Lawrence Abrams reports: An unsecured database has exposed the personal information of 8 million people from the U.S. who participated in online surveys, sweepstakes, and requests for free product samples. […] Sanyam Jain, an independent security researcher and member of the GDI Foundation, discovered an unsecured Elasticsearch database that exposed the personal information of 8 million people who…