When Vice Society threat actors added Butler Community College in Kansas to their leak site, DataBreaches.net began digging into the data dump, only to discover that it was not the Kansas community college that had been attacked at all, but rather, it was Butler County Community College (“BC3”) in Butler, Pennsylvania that they had attacked….
In change, Army to allow file downloads for Army 365 email on personal devices
Davis Winkie reports: After months of soldiers complaining that security features on the Army’s new email platform were preventing them from doing basic tasks, the Army’s top IT official announced a change to the Army 365 download policy in a Monday LinkedIn post. Army Times previously reported the frustration that some soldiers were experiencing because the new email…
School’s out as cyberattack forces Albuquerque Public Schools to cancel classes
Olivier Uytterbrouck and Jessica Dyer report: A cyberattack against Albuquerque Public Schools prompted the state’s largest district to cancel all classes districtwide on Thursday and possibly Friday. APS Superintendent Scott Elder said the attack was discovered Wednesday morning “when teachers tried to log onto our student information system and were unable to gain access to…
Ransomware puts New Mexico prison in lockdown: Cameras, doors go offline
Thomas Claburn reports: Bernalillo County, New Mexico, has been unable to comply with the settlement terms of a 27-year-old lawsuit over prison conditions because of a ransomware attack last week that saw prisoners back under manual control. County officials on January 6, 2022, filed a notice [PDF] with the New Mexico District Court overseeing the…
The RIPTA Data Breach May Provide Valuable Lessons About Data Collection and Retention
Joseph J. Lazzarotti of JacksonLewis writes: Efforts to secure systems and data from a cyberattack often focus on measures such as multifactor authentication (MFA), endpoint monitoring solutions, antivirus protections, and role-based access management controls, and for good reason. But there is a basic principle of data protection that when applied across an organization can significantly…
Hackers Raided Panasonic Server for Months, Stealing Personal Data of Job Seekers
Graham Cluley writes: Tech giant Panasonic has confirmed that one of its servers suffered a data breach which saw the personal information of job applicants accessed by an unauthorised party. The security breach, which saw hackers illegally access a Panasonic file server located in Japan via an overseas subsidiary, began on June 22 2021, and only ended…