Education Sector, Data Breach News
March 21, 2025
253 views 46 secs 0

Former University of Michigan football coach indicted for hacking accounts, downloading ‘intimate’ photos

ABC News reports: The former co-offensive coordinator for the University of Michigan’s football team has been charged with hacking into thousands of athlete and alumni accounts and downloading private data, including “intimate” photos, over an eight-year span, according to federal investigators. Matthew Weiss, 42, who was also the team’s quarterbacks coach, allegedly gained unauthorized access […]

Data Breach News, News
March 20, 2025
820 views 7 secs 0

Elon Musk-hating hackers doxx every Tesla owner in the U.S., exposing names, addresses and phone numbers in massive anti-Musk cyberattack, if you own a Tesla do take note

Some may call it “hacktivism.” Some call it “domestic terrorism.” The Economic Times reports: Tesla owners across the United States are on high alert following a shocking cyberattack that revealed their personal information. With a terrifying symbol, the hackers responsible for the breach, who oppose Elon Musk, have shared an interactive map containing the owners’ […]

Data Breach News
March 20, 2025
710 views 49 secs 0

Attackers swipe data of 500k+ people from Pennsylvania teachers union

The Register reports: The Pennsylvania State Education Association (PSEA) says a July 2024 “security incident” exposed sensitive personal data on more than half a million individuals, including financial and health info. The nonprofit, which represents more than 178,000 education professionals in the US state of Pennsylvania, confirmed data was stolen during a July 6 attack. […]

Data Breach News, Legal News, News
March 19, 2025
802 views 42 secs 0

Australia Sues FIIG Investment Firm in Cyber ‘Wake-Up Call’

Data Breach Today reports that Australia’s financial regulator has filed a lawsuit against FIIG Securities over cybersecurity failures that enabled a threat actor to steal confidential personal information of 18,000 customers: The Australian Securities and Investments Commission said it decided to sue Brisbane-headquartered FIIG Securities in Federal Court after observing the company’s “systemic and prolonged cybersecurity failures” […]

Data Breach News, News, Vendor News
March 18, 2025
1048 views 2 mins 0

Over 50 U.S. school districts impacted in retirement service provider breach

In December 2024, EdTech vendor PowerSchool was hit with a major attack that reportedly affected more than 60 million students and employees throughout the country. But that wasn’t the only major attack affecting an education sector vendor in December. Teiss reports that a retirement services vendor was also the victim of an attack: About 50 […]

Data Breach News, News
March 18, 2025
822 views 25 secs 0

GitHub Action Compromise Risks Data Leaks for 23,000 Repositories

DevOps reports: A popular GitHub Action used in more than 23,000 code repositories has been compromised in a supply chain attack by attackers who introduced a malicious commit aimed at leaking secrets like passwords held in public repositories. In the compromise, which is being tracked as CVE-2025-30066, bad actors modified the code in GitHub Actions tj-actions/changed-files […]

Data Breach News
March 17, 2025
707 views 53 secs 0

Over a thousand of Colorado Veterans’ Personal Information Leaked in Email Mistake

KOAA in Colorado reports: The personal information of over 1,000 veterans in Colorado may be at risk after a data leak. The Veterans Affairs Eastern Colorado Health Care System accidentally sent an email containing personal details about veterans to 75 recipients. The email, which was sent in January, included a spreadsheet with veterans’ full names, the last […]

Data Breach News, Legal News, News
March 15, 2025
766 views 53 secs 0

Judge Calls for Change Healthcare Data Breach Lawsuits in State and Federal Courts To Be Coordinated

About Lawsuits reports that all the state and federal lawsuits against Change Healthcare should be coordinated: The U.S. District Judge appointed to preside over all Change Healthcare data breach lawsuits brought throughout the federal court system has issued an order, outlining a plan to coordinate the pretrial proceedings in the federal multidistrict litigation (MDL) with claims pending […]

Critical Infrastructure, Cyberattack, Data Breach News
March 13, 2025
782 views 55 secs 0

China’s Volt Typhoon Hackers Dwelled in US Electric Grid for 300 Days

SecurityWeek reports that Dragos has published an interesting case study about an attack by the Chinese threat actors known as Volt Typhoon on the electric grid. The target was Littleton Electric Light and Water Departments (LELWD), a small public power utility in Massachusetts that serves Littleton and Boxborough. The utility had been in the process […]

Data Breach News
March 13, 2025
753 views 7 secs 0

Cybersecurity Advisory: Medusa Ransomware

From CISA.gov, a #StopRansomware advisory: Medusa is a ransomware-as-a-service (RaaS) variant first identified in June 2021. As of February 2025, Medusa developers and affiliates have impacted over 300 victims from a variety of critical infrastructure sectors with affected industries including medical, education, legal, insurance, technology, and manufacturing. The Medusa ransomware variant is unrelated to the MedusaLocker variant […]