There’s an update to the Herff Jones data breach previously noted on this site. According to TopClassActions: Herff Jones will pay $4.35 million to resolve claims it failed to protect its customers during a 2021 data breach. The settlement benefits individuals whose payment card information was exposed during the Herff Jones data breach. Included consumers…
“Alexa, hack yourself” – researchers describe new exploit that turns smart speakers against themselves
Graham Cluley reports: Researchers have discovered a novel way of exploiting Amazon Echo smart speakers to perform commands. They get the Amazon Echo speaker to say the commands to itself. In a technical paper, researchers from London’s Royal Holloway University in London and the University of Catania in Italy describe their findings, which exploits how an…
Nespresso data leak in South Africa
Jan Vermeulen reports: South African Nespresso distributor Top Coffee has sent a notice to clients informing them that their names, phone numbers, and email addresses may have been leaked. According to the notice, the personal information may have been temporarily exposed through a third-party supplier. The distributor doesn’t believe that any customer financial information was…
Cloudflare, CrowdStrike, and Ping Identity Join Forces to Strengthen U.S. Cybersecurity in Light Of Increased Cyber Threats
They deserve good press for this — here’s their full press release from today: Cloudflare, CrowdStrike, and Ping Identity Join Forces to Strengthen U.S. Cybersecurity in Light Of Increased Cyber Threats The Critical Infrastructure Defense Project will provide comprehensive, no-cost cyber protections for U.S. hospitals and water and power utilities SAN FRANCISCO — March…
Long delay before Cybersecurity NSW notified of Accellion hack
Anton Nilsson reports: NSW agencies may have delayed reporting a massive cyber attack to authorities for nearly a month, officials revealed on Monday. The breach of a software known as Accellion in December 2020 affected businesses and agencies worldwide, including Transport for NSW which had sensitive information stolen and posted on the dark web. Cybersecurity NSW…
OH: Hilliard City Schools evaluating protocols after releasing 4,200 names of students in public-information request
A. Kevin Corvo reports: Hilliard City Schools leaders are reviewing protocols related to public-information requests after learning Feb. 27 the district released the identity of students who were subject to disciplinary measures. “This was a mistake (and) we need to be better. … Steps are being taken to ensure that it won’t happen again,” Superintendent David…