Zoey Khalid reports: Former Colorado GOP Senate candidate Robert “Eli” Bremer is livid over the Air Force’s failure to notify him about the branch’s improper release of his military records, which he first learned about from a reporter who was covering the latest developments in the problematic story for the Defense Department. Speaking to Fox…
Director Easterly Announces New Members to Join CISA’s Cybersecurity Advisory Committee
As I posted earlier on infosec.exchange: Brilliant choice by #CISA to add @douglevin to their #cybersecurity advisory board. Doug is one of the most knowledgeable and thoughtful people I know when it comes to K-12 security and #EdTech. Read CISA’s press release of Monday to find out who else has been added.
NYC Special Needs Students’ Records Found Exposed on Web
Marianne Kolbasuk McGee reports: Tens of thousands of documents containing personal information of special education students within New York City’s public school system were held in an unsecured database exposed to the internet. Researcher Jeremiah Fowler of security services firm Security Discovery told Information Security Media Group he found the unsecured database in mid-February and…
Uncovering the unheard: Researchers reveal inaudible remote cyber-attacks on voice assistant devices
UTSA reports: Guenevere Chen, an associate professor in the UTSA Department of Electrical and Computer Engineering, recently published a paper on USENIX Security 2023 that demonstrates a novel inaudible voice trojan attack to exploit vulnerabilities of smart device microphones and voice assistants — like Siri, Google Assistant, Alexa or Amazon’s Echo and Microsoft Cortana —…
Attack on WB CTC targeted financial info in Skyward system
Update: BlackCat has claimed responsibility for the attack. There’s an update to the data breach affecting Wilkes-Barre Career and Technical Center, previously noted on this site. Mark Guydish reports: Guariglia said the FBI is still investigating and that there is no new information on what happened or who conducted the attack, which appeared to target…
McDonald’s Korea fined $532k for breach of customers’ personal data
Yonhap News reports: McDonald’s Korea was given a fine of 696 million won (US$532,110) on Wednesday after the personal data of 4.87 million customers was leaked to hackers due to the firm’s lax data management. The Personal Information Protection Commission handed out the fine to the Korean branch of the American fast food chain, along…