Although no details can be found online yet, it appears that Dripping Springs ISD in Texas notified the Texas Attorney General’s Office of a breach affecting 367 Texans. The breach reportedly involved the names of individuals, Address; Social Security Number Information; Driver’s License number; Medical Information; and Health Insurance Information. Notice to the state was…
Son of Conti: Ransomware tries its hand at politics
Dina Temple-Raston and Sean Powers report: It has been a busy spring for the Russian-speaking ransomware group Conti. After an unprecedented leak of its internal chat logs earlier in the year that had experts predicting the group’s demise, Conti, or at least some subset of it, came back with a vengeance. In April it attacked Costa Rica, hacking…
Illuminate breach victims are still first being notified
Spotted today: a notification by the Renton School District in Washington that they notified 20,509 Washington residents on June 17 dues to a breach that sounds like the Illuminate breach (based on the dates reported by Renton): https://agportal-s3bucket.s3.amazonaws.com/databreach/BreachM13493.pdf
Ransomware attack caused ongoing Napa Valley College internet and phone system outage
Edward Booth and Howard Yune report: The Napa Valley College website and network systems were knocked offline as the result of a ransomware attack roughly two weeks ago, a spokesperson for the school has confirmed. Napavalley.edu was still dark as of Saturday afternoon, as NVC continued an investigation that began shortly after the site vanished…
Politically motivated cyberattacks by different groups hit Iran steel company and Lithuanian networks
It’s easy to lose track of news elsewhere when every day brings new dramatic headlines here n the U.S., but there have been cyberattacks of note in both Iran and Lithuania this week. Both attacks have been attributed to politically motivated groups, although the attributions have not yet been confirmed: a group calling itself “Gonjeshke…
Dangerous Ruling Says If Someone Goes Onto Your Openly Shared Google Drive, You Can Sue Them For Unauthorized Access
Mike Masnick writes: If you accidentally leave your Google Drive accessible to anyone with the URL, and someone goes there and deletes stuff, is that “unauthorized access” and a violation of the CFAA? To me, the answer should be absolutely not. But in this recent ruling the judge went the other direction (first noted by Evan Brown). So,…