Catalin Cimpanu reports: A vulnerability in the Dell SupportAssist utility exposes Dell laptops and personal computers to a remote attack that can allow hackers to execute code with admin privileges on devices using an older version of this tool and take over users’ systems. Dell has released a patch for this security flaw on April…
Seattle University laptop containing 2,000 Social Security numbers lost
Asia Fields reports: Seattle University is warning that the names and Social Security numbers of more than 2,000 people could be exposed after a university-issued laptop was lost last month. Files containing information for 2,102 current and former faculty, staff and their dependents are accessible from the unencrypted laptop, which a university employee lost on…
Charles River Laboratories discloses a breach, but details are lacking
From their SEC filing: On April 30, 2019, Charles River Laboratories International, Inc. (the “Company” or “Registrant”) notified clients of unauthorized access into portions of its information systems. Promptly upon detection of unusual activity in its information systems in mid-March, the Company commenced an investigation into this incident, coordinated with U.S. federal law enforcement, and engaged…
TalkTalk hacker Daniel Kelley became ‘ruthless’ cyber criminal after being rejected from college computer course
Emily Pennink reports: A teenager rejected from a college computer course became a “ruthless” online criminal who took part in the huge TalkTalk hack and blackmailed the company’s former chief executive. Disgruntled student Daniel Kelley, from Llanelli, turned to “black hat” hacking when he failed to get the necessary GCSE grades to get into a…
Job recruitment site Ladders exposed 13 million user profiles
Zack Whittaker reports: Ladders, one of the most popular job recruitment sites in the U.S. specializing in high-end jobs, has exposed more than 13.7 million user records, following a security lapse. The New York-based company left an Amazon -hosted Elasticsearch database exposed without a password, allowing anyone to access the data. Sanyam Jain, a security…
Hackers Snatch and Try Unsuccessfully to Ransom Data from IT Service Provider; CityComp’s Big Clients Impacted
Joseph Cox reports: Hackers have broken into an internet infrastructure firm that provides services to dozens of the world’s largest and most valuable companies, including Oracle, Volkswagen, Airbus, and many more as part of an extortion attempt, Motherboard has learned. The attackers have also released data from all of those companies, according to a website…