On December 28, PowerSchool discovered that its Student Information System (SIS) program had been compromised. Since then, more and more schools in the U.S. and Canada have been notifying parents and students that student information stored in the system — including a lot of historical data on former students — was involved in the breach. […]
PayPal’s Cybersecurity Failures Led to the Exposure of Customers’ Social Security Numbers January 23, 2025 New York State Department of Financial Services Superintendent Adrienne A. Harris today announced that PayPal, Inc. (PayPal) will pay a $2 million penalty to New York State for violations of DFS’s Cybersecurity Regulation. An investigation determined PayPal failed to use qualified […]
What third party, you wonder? They don’t say. Recorded Future reports: A recent outage affecting the government technology contractor Conduent was due to a cyberattack that compromised the company’s operating systems. A Conduent spokesperson told Recorded Future News the company recently “experienced an operational disruption due to a third-party compromise” of one of their operating […]
Deloitte has already been sued over the breach involving Rhode Island benefits recipient data. But now there’s a bigger suit. GOLOCAL/Prov Rhode Island reports: The law firm that negotiated the $246 billion settlement with big tobacco is now suing Deloitte over the recent massive data breach in Rhode Island. In a 65-page complaint filed this week in […]
The PowerSchool breach that is giving school districts throughout the U.S. major headaches also affected school districts in Canada. The Toronto Star reports: Toronto’s public school board says personal information of its students dating back to 1985 may have been breached during a recent cybersecurity incident that affected many districts across North America. … The […]
Now we are first finding out how scary the Snowflake breach was for FBI agents and informants whose information may have been caught up in the AT&T downstream attack. Bloomberg reports: FBI leaders have warned that they believe hackers who broke into AT&T Inc.’s system last year stole months of their agents’ call and text logs, setting off […]
MSN reports an update on a breach first reported by The Record. Confidential personal data of more than 240,000 people may have been stolen last year when a South Carolina credit union was hacked by a group called “Nitrogen,” according to a consumer affairs public disclosure notice. Ten lawsuits against the SRP Federal Credit Union […]
Law firm Wolf Haldenstein Adler Freeman & Herz LLP is notifying more than 3.4 million individuals that their personal information was compromised in a December 2023 data breach. Security Week reports: According to the firm, it discovered the incident after detecting suspicious activity on its network. Its investigation revealed that a threat actor accessed certain […]
The Cl0p gang that previously successfully attacked file transfer software platforms by exploiting zero-day vulnerabilities is now starting to leak data from yet another campaign targeting file transfer software. This time, it’s CLEO. Cybersecurity Dive reports: Blue Yonder said it is investigating a threat after Clop listed the supply chain management company among nearly 60 […]
Proposed order will prohibit GoDaddy from misleading customers about its security protections and require it to establish a robust information security program The following is a press release from the Federal Trade Commission:
