The San Francisco Unified School District recently notified families of current and former Buena Vista Horace Mann (BVHM) students about an incident in which student data was shared with some BVHM community members. An unsigned letter dated April 22nd from the district’s department of technology described what had transpired: On April 10, 2019, an electronic…
Sensitive patient records found on Cork city street
Catherine Shanahan reports: Documents with sensitive patient data identifying children and adults, details of surgical procedures, and reasons for missing appointments have been found on a busy city-centre street in Cork. The highly personalised information relating to patients attending Cork University Hospital (CUH) for plastic surgery was discovered by Luke Field, a Labour Party local…
Hong Kong gov’t dental clinic loses personal information of nearly 400 patients
Holmes Chan reports: A government-run dental clinic has lost an appointment book that contains the personal information of about 383 patients. The Department of Health revealed the incident on Thursday, saying that the Li Po Chun Dental Clinic in Tai Kok Tsui had lost information related to bookings made from January to June 2015. The…
A Mysterious Hacker Group Is On a Supply Chain Hijacking Spree
Andy Greenberg reports: A software supply chain attack represents one of the most insidious forms of hacking. By breaking into a developer’s network and hiding malicious code within apps and software updates that users trust, supply chain hijackers can smuggle their malware onto hundreds of thousands—or millions—of computers in a single operation, without the slightest…
Was WallStreet Market seized by German authorities or is this just another part of the exit scam? [UPDATE: it’s real]
Did a darkweb marketplace known as WallStreet Market wind up seized by German authorities after its moderators pulled an exit scam? Or is what may be intended to look like a seizure by German authorities just another part of the exit scam? Today’s drama on the darkweb started after what appeared to be a seizure…
Energy companies under attack
Zack Whittaker reports: A denial-of-service attack launched against an energy company providing power in several western U.S. states was enough to report “interruptions of electrical system operations” to the government’s energy authority. The “cyber event” lasted almost 10 hours on March 5, according to an electric emergency and disturbance report filed with the Department of…