It appears we should add the University of Chicago to schools hacked by Carbonic. And yes, chalk it up to another SQLi vulnerability. In a statement to DataBreaches.net, @MarxistAttorney reported that they got payroll information, employee IDs and a “substantial amount of information they didn’t publicize.” A copy of the url vulnerable to SQLi exploit was…
Wyoming Senate committee tackles data privacy bills
Wow. The Wyoming Senate has really been busy considering a number of data breach and privacy bills. James Chilton reports: Legislators began discussing Thursday two bills designed to force businesses affected by data breaches to inform consumers and respond in specific ways. Senate Files 35 and 36 aim to create new, 21st century definitions of…
Another lawsuit filed under CMIA fails
One of the larger breaches in 2014 involved a Los Angeles County contractor, Sutherland Healthcare Solutions. The theft of some of their computer equipment with unencrypted patient identity and clinical information was disclosed in March 2014, and within days, a potential class action lawsuit had been filed. The breach impacted approximately 3420,000 patients of the Los Angeles…
Privacy concerns over Healthcare.gov prompt reversal
Jack Gillum and Ricardo Alonso-Zaldivar report: Bowing to privacy concerns, the Obama administration reversed itself Friday, scaling back the release of consumers’ personal information from the government’s health insurance website to private companies with a commercial interest in the data. The administration made the changes to HealthCare.gov after The Associated Press reported earlier this week that…
SG: Hacker ‘Messiah’ pleads guilty to 39 computer misuse charges
Kelly Ng reports: Hacker James Raj Arokiasamy, who goes by the moniker “Messiah”, has pleaded guilty to 39 charges of computer misuse for hacking into the web servers of Fuji Xerox, a fan site of popstar Sun Ho and government-related websites in 2013. Read more on Today.
Ex-Air Force sergeant pleads guilty to stealing credit cards, personal ID at San Diego bases
How… dishonorable. The AP reports: A retired Air Force senior master sergeant who stole credit cards and identification from dozens of military members in the San Diego area has pleaded guilty to wire fraud and aggravated identity theft. Christopher Underwood entered the pleas on Thursday. He could face more than 20 years in federal prison….