Catalin Cimpanu reports: Russian authorities have arrested a man suspected of writing and distributing ransomware. The suspect, whose name hasn’t been released yet, goes by the nickname of Pornopoker. […] According to police, Pornopoker had created ransomware that locks users’ computers with a message perpetrating to be from Russian authorities, such as the police (MIA),…
NaMo app non-hack is a small fry; tech security on govt apps is even worse
Srinivas Kodali writes: In the wee hours of December 1, 2016, Javed Khatri, a 22-year-old programmer (note: not a hacker) discovered a common security vulnerability/bug in the Narendra Modiapp. Khatri was able to access the personal information of every registered user of the application through this vulnerability. After sending out a tweet (below) to Modi to report…
VA: Chesapeake Public Schools notifying employees of theft of their information
S. Cline reports that Chesapeake Public Schools in Virginia is notifying 10,827 employees after an employee’s laptop with unencrypted information was stolen. The information on the laptop included names, social security numbers and bank account numbers of some past and present employees. The employees are being offered some protective services. The media report does not reveal whether…
Employee error exposed San Jose Evergreen Community College District student info
The San Jose Evergreen Community College District (SJECCD) is notifying some of their students of a breach that occurred due to an employee error. On November 7, the district learned that an SJECCD employee had inadvertently uploaded a file containing the personal information of certain SJECCD students to a publicly accessible folder on the SJECCD website. The file…
USOC notifying participants in 100-Days Out event of vendor breach
The U.S. Olympic Committee (USOC) recently notified individuals who participated in the 100-Days Out event in April 2016 that their personal information was acquired by an unauthorized individual who gained access to the email account of a contractor who ran security clearances for the event. According to their notification, on November 18, USOC learned that an…
Bank of Russia disclaims reports hackers steal 2B rubles from its correspondent accounts
The Bank of Russia (central bank) has disclaimed the reports hackers stole two billion rubles ($30.8 million) from its correspondent accounts. “The reports about stolen two billion rubles from the Bank of Russia’s correspondent accounts in a hacker attack are not true to life,” the regulator’s press service told TASS on Saturday. “The review of…