According to its website, Grand Valley State University (GVSU) in Michigan currently has 19,239 undergraduate students and 3,027 graduate students. The university offers 141 undergraduate and graduate degrees and employs 1,760 faculty members and 2,050 support staff members. Almost all of their students get some kind of financial aid. Those are some commendable statistics. But…
Daycare Apps Are Dangerously Insecure
Alexis Hancock writes: Last year, several parents at EFF enrolled kids into daycare and were instantly told to download an application for managing their children’s care. Daycare and preschool applications frequently include notifications of feedings, diaper changes, pictures, activities, and which guardian picked-up/dropped-off the child—potentially useful features for overcoming separation anxiety of newly enrolled children…
Four ransomware attacks on non-U.S. medical entities: Did anyone get notified?
So far, 2022 is not turning out to be a better year than 2021 when it comes to ransomware attacks on the healthcare sector. In its recent report, “The State of Ransomware in Healthcare 2022,” Sophos reports that ransomware attacks in the healthcare sector almost doubled from 2020 to 2021 and that while the ransom…
Flagstar Bank discloses data breach impacting 1.5 million customers
Bill Toulas reports: Flagstar Bank is notifying 1.5 million customers of a data breach where hackers accessed personal data during a December cyberattack. Flagstar is a Michigan-based financial services provider and one of the largest banks in the United States, having total assets of over $30 billion. Read more at Bleeping Computer.
Voicemail phishing emails steal Microsoft credentials
Jeff Burt reports: Someone is trying to steal people’s Microsoft 365 and Outlook credentials by sending them phishing emails disguised as voicemail notifications. This email campaign was detected in May and is ongoing, according to researchers at Zscaler’s ThreatLabz, and is similar to phishing messages sent a couple of years ago. This latest wave is…
Data allegedly from “Georgia Board of Education” up for sale on a forum?
Some data allegedly from the Georgia Board of Education was offered for sale on a hacking-related forum last week. But were they really from the state board of education? After DataBreaches started asking questions, the listing seems to have been removed. Last week, DataBreaches.net spotted a listing on a hacking-related forum that offered what was…