Lavanya Sathyamurthy writes: Schools now depend on an average of 2,591 edtech tools in a single school year, according to one estimate. These tools can track private conversations between teachers and families and store comprehensive academic and personal records. Yet many companies do not clearly disclose how they collect and use student information. According to one nonprofit, 96% of apps used in…
NHS providers reviewing stolen Synnovis data published by cyber criminals
Jordan Sollof reports: Pathology supplier Synnovis is contacting NHS organisations which had data stolen and published online following a major cyber attack last year. The ransomware attack on 4 June 2024, which led to a patient death, caused widespread disruption to NHS services in London including thousands of delayed appointments at King’s College Hospital NHS Foundation Trust and Guy’s…
Gates Down: Third Circuit Says Breaking Employer Computer Access Policies Is Not Hacking
Daniel P. O’Meara, Jeffrey D. Coren, and Zachary V. Zagger of Ogletree, Deakins, Nash, Smoak & Stewart, P.C. write: The U.S. Court of Appeals for the Third Circuit recently ruled that violations of employers’ computer access policies do not constitute violations of the federal Computer Fraud and Abuse Act (CFAA) and that account passwords are…
Short-term renewal of cyber information sharing law appears in bill to end shutdown
Martin Matishak reports: A deal to reopen the U.S. government would also renew an expired cybersecurity information sharing law until the end of January. The Senate on Sunday advanced legislation to end a weeks-long shutdown stalemate that includes a provision to reauthorize the 2015 Cybersecurity Information Sharing Act through January 30. The law, which incentivizes…
Yanluowang ransomware IAB pleads guilty
Catalin Cimpanu reports: A Russian man has pleaded guilty to hacking US companies and selling access to ransomware groups. Aleksei Olegovich Volkov went online under the hacker name of chubaka.kor, and worked as an initial access broker (IAB) for the Yanluowang ransomware. Volkov used various techniques to breach a corporate employee’s account, escalate access to the employer’s…
Lawsuit Alleges Ex-Intel Employee Hid 18,000 Sensitive Documents Prior to Leaving the Company
Divya reports: Intel is pursuing legal action against a former software engineer who the company claims downloaded thousands of confidential files shortly after being fired in July. The incident highlights growing concerns about data security during workforce reductions and employee departures. “Growing concerns?” How many times over the past 15+ years have we reported on the insider…