Ran Bar-Zik reports what sounds like a situation where a cybersecurity student who engaged in responsible disclosure after finding a leak at the scholarship application website of the American Joint Distribution Committee (“the Joint”) felt pressured and anxious by the Joint trying to get him to sign a statement afterwards. And so far, he hasn’t…
Mozilla finds mental health apps fail ‘spectacularly’ at user security, data policies
Charlie Osborne reports: An investigation into mental health and prayer apps has revealed a disturbing lack of concern surrounding user security and privacy. On Monday, Mozilla released the findings of a new study into these types of apps, which often deal with sensitive topics including depression, mental health awareness, anxiety, domestic violence, PTSD, and more,…
Another Weekend Another Hack: DeFi Lender Fei Protocol Suffers $80M Security Breach
Chimamanda Marcel reports: Fei protocol, an Ethereum-based decentralized exchange, has suffered an extensive security breach a year after it merged with RAri Capital, a lending and borrowing protocol, smart contract analysis firm Blocksec reported on Saturday. According to Blocksec, multiple pools related to Fei Protocol and RAri Capital were exploited and more than $80 million worth of…
Class cancelled at Kellogg Community College following ransomware attack
Fox17 reports from Michigan: Kellogg Community College announced on May 1 that the technology issues that started days before were caused by a ransomware attack. Due to the ongoing attack, all KCC campuses are closed until further notice. Read more at Fox17. DataBreaches has not seen any report as to who might be responsible for…
Google fights doxxing with updated personal info removal policy
Sergiu Gatlan reports: Google has expanded its policies to allow doxxing victims to remove more of their personally identifiable information (PII) from search engine results starting earlier this week. Removing doxxing content (contact info shared online with malicious intent) aims to protect the victims’ privacy and substantial risks of identity theft, financial fraud, and, in…
Hacking Russia was off-limits. The Ukraine war made it a free-for-all.
Joseph Menn reports: ….. the third month of war finds Russia, not the United States, struggling under an unprecedented hacking wave that entwines government activity, political voluntarism and criminal action. Digital assailants have plundered the country’s personal financial data, defaced websites and handed decades of government emails to anti-secrecy activists abroad. One recent survey showed…