LATEST POST
PowerSchool Sued Over December Breach of Student, Teacher Data
24 hours. That’s the gap between PowerSchool’s disclosure of a hacking incident affecting teacher and student data and the filing of the first potential class-action lawsuit. Bloomberg Law reports on three potential class-action lawsuits that were filed on January 8th and 9th against the provider of cloud-based education software for K-12 schools: The complaints bring […]
RIBridges has many lines of defense. How was the system breached?
This article by Alexander Castro originally appeared in Rhode Island Current on January 10, 2025 and is republished here under Creative Commons License. Rhode Island’s online public benefits system appears to be a fortress with many defenses, including 15 different kinds of security and monitoring software, state documentation shows. Despite those shields, a glut of […]
Hackers Claim Massive Breach of Location Data Giant, Threaten to Leak Data
Last month, the Federal Trade Commission announced that it was taking action against Gravy Analytics Inc. and its subsidiary Venntel Inc. for unlawfully tracking and selling sensitive location data from users, including selling data about consumers’ visits to health-related locations and places of worship. Under a proposed order, Gravy Analytics and Venntel will be prohibited from […]
Russian ISP confirms Ukrainian hackers “destroyed” its network
Bleeping Computer reports: Ukrainian hacktivists, part of the Ukrainian Cyber Alliance group, announced on Tuesday they had breached Russian internet service provider Nodex’s network and wiped hacked systems after stealing sensitive documents. “The Russian internet provider Nodex in St. Petersburg was completely looted and wiped. Data exfiltrated, while the empty equipment without backups was left […]
Meta fined $263M over 2018 security breach that affected ~3M EU Facebook users
Another big monetary penalty for Meta. Well, it would be big for most of us, but…. TechCrunch reports: Meta has been fined €251 million (around $263 million) in the European Union for a Facebook security breach that affected millions of users, which the company disclosed back in September 2018. The penalty, issued on Tuesday by Ireland’s […]
Washington AG Ferguson files lawsuit against T-Mobile for massive data breach
In September 2024, T-Mobile settled Federal Communications Commission charges stemming from four data breaches. Details of the four breaches, including a 2021 incident, were included in the consent decree. To settle the FCC’s investigations, T-Mobile agreed to pay a civil penalty of $15,750,000 andcommitted to spending an additional $15,750,000 over the next two years to […]
How Chinese Hackers Graduated From Clumsy Corporate Thieves to Military Weapons
China’s spokespeople keep denying claims by U.S. officials, but U.S. officials have not retracted or backed off at all on their claims about Chinese espionage and cyberattacks. The Wall Street Journal reports: The message from President Biden’s national security adviser was startling. Chinese hackers had gained the ability to shut down dozens of U.S. ports, […]
Tick Tock: You now have less than 30 days from discovery of a breach to notify New Yorkers
New York’s Governor Hochul signed two bills into law in December that modify New York’s breach notification law. One that has already gone into effect replaces the “in the most expedient time” type of language with an actual deadline of 30 days from discovery of a breach but retains an exception for the legitimate needs […]