2015 and Education - Information Management Today

NCSC warns of a surge in ransomware attacks on education institutions

Security Affairs

SEPTEMBER 20, 2020

National Cyber Security Centre (NCSC) has issued an alert about a surge in ransomware attacks targeting education institutions. National Cyber Security Centre (NCSC), has issued an alert about a surge in ransomware attacks against education institutions. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Education

Education Ransomware Phishing Encryption

Experts warn of surge in DDoS attacks targeting education institutions

Security Affairs

SEPTEMBER 15, 2020

Experts warn of a surge in the DDoS attacks against education institutions and the academic industry across the world. The DDoS attacks are causing severe issues to the targeted education institutions such as temporarily takedown of the network and online classes. Most of the attacks targeted educational institutions in the U.S.,

Education

Education Ransomware Security IT

Online education site EduCBA discloses data breach and reset customers? pwds

Security Affairs

MAY 24, 2020

The online education portal EduCBA discloses a data breach and is resetting customers’ passwords in response to the incident. Online education website EduCBA discloses a data breach, it has started notifying customers that in response to the incident it is resetting their passwords. Source BleepingComputer. Pierluigi Paganini.

Data breaches

Data breaches Education Passwords Phishing

Webinars

Automation, Evolved: Your New Playbook For Smarter Knowledge Work

MORE WEBINARS

Google sued by New Mexico attorney general for collecting student data through its Education Platform

Security Affairs

FEBRUARY 23, 2020

New Mexico sues Google for allegedly using the Google for Education platform to gather personal and private data from children. Google is facing a new lawsuit for allegedly using the Google for Education platform to gather personal and private data from students with an age of less than 13 years. Pierluigi Paganini.

Education

Education IT Privacy Access

SamSam Ransomware operators earned more than US$5.9 Million since late 2015

Security Affairs

JULY 31, 2018

The researchers that have tracked Bitcoin addresses managed by the crime gang discovered that crooks behind the SamSam ransomware had extorted nearly $6 million from the victims since December 2015 when it appeared in the threat landscape. Million since late 2015. Million since late 2015 appeared first on Security Affairs.

Ransomware

Ransomware Encryption Marketing Data breaches

SecurityAffairs awarded as Best European Cybersecurity Technical Blog

Security Affairs

JUNE 2, 2020

Yvonne Eskenzi said: “The European Cybersecurity Blogger Awards celebrate the brilliant bloggers, vloggers and podcasters that inform and educate our industry. “In Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. The awards were organized by Eskenzi PR and sponsored by Qualys. Pierluigi Paganini.

Cybersecurity

Cybersecurity Education Security

Guy Fawkes Day – LulzSec Italy hit numerous organizations in Italy

Security Affairs

NOVEMBER 9, 2018

Italian Military Personnel and National Association of Professional Educators. Italian Military Personnel and National Association of Professional Educators. National Association of Professional Educators. Brian Dunn is a writer & researcher formally working as a content specialist for AnonHQ throughout 2015-2016.

Passwords

Passwords Archiving Mining Education

Chegg discloses the third data breach in the last two years

Security Affairs

APRIL 30, 2020

The American education technology firm Chegg discloses a security breach, it already sent notifications to its employees. The US education technology company Chegg discloses a security breach that took place in early April, the firm already sent notifications to its employees. Pierluigi Paganini. SecurityAffairs – Chegg, hacking).

Data breaches

Data breaches Education Cybersecurity Security

TrueDialog database leaked online tens of millions of SMS text messages

Security Affairs

DECEMBER 1, 2019

Millions of SMS messages have been leaked by a database run by TrueDialog, a business SMS provider for businesses and higher education providers. TrueDialog focuses on providing several different SMS programs including mass text messaging, marketing SMS options, urgent alerts, an Education SMS solution, and more. Pierluigi Paganini.

Education

Education Marketing Archiving Passwords

Shiny Hunters group is selling data from 11 companies on the Dark Web

Security Affairs

MAY 10, 2020

million $1,200 Minted 5 million $2,500 Styleshare 6 million $2,700 Ggumim 2 million $1,300 Mindful 2 million $1,300 StarTribune 1 million $1,100 ChatBooks 15 million $3,500 The Chronicle Of Higher Education 3 million $1,500 Zoosk 30 million $500. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Data breaches

Data breaches Passwords Cybersecurity Education

Thinkful forces a password reset for all users after a data breach

Security Affairs

SEPTEMBER 23, 2019

The online education platform for developers Thinkful suffered a security breach and is notifying the incident to its customers requiring them to reset their passwords. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. ” continues the notification. Pierluigi Paganini.

Data breaches

Data breaches Passwords Education Access

Experts found critical flaws in 3 popular e-Learning WordPress Plugins

Security Affairs

APRIL 30, 2020

The 3 plugins are installed on more than 100,000 different educational platforms used by several universities such as the University of Florida, University of Michigan, University of Washington as well as hundreds of online academies. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. million times.

Education

Education Cybersecurity Security IT

TOKOPEDIA e-commerce hacked, 91 Million accounts available on the darkweb

Security Affairs

MAY 3, 2020

Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. ZDNet confirmed the authenticity of the leaked data. Tokopedia is currently investigating the security breach, it notified the users asking them to reset their account passwords. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

Passwords

Passwords Sales Data breaches Marketing

China-linked APT41 group exploits Citrix, Cisco, Zoho flaws

Security Affairs

MARCH 25, 2020

The group hit entities in several industries, including the gaming, healthcare, high-tech, higher education, telecommunications, and travel services industries. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. concludes the report. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

Healthcare

Healthcare Education Manufacturing Government

CIRWA Project tracks ransomware attacks on critical infrastructure

Security Affairs

SEPTEMBER 14, 2020

According to the summary findings related to the period 2013-2020, the most targeted critical infrastructures are government facilities, followed by education and healthcare. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

Ransomware

Ransomware Data collection Education Security

Expert released DOS Exploit PoC for Critical Windows RDP Gateway flaws

Security Affairs

JANUARY 24, 2020

PoC (Denial-of-Service) for CVE-2020-0609 & CVE-2020-0610 Please use for research and educational purpose only. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. link] pic.twitter.com/R43AHUwGV0 — ollypwn (@ollypwn) January 23, 2020. Pierluigi Paganini. SecurityAffairs – RDP Gateway, hacking).

Education

Education Authentication Access Security

Cloud computing provider Blackbaud paid a ransom after data breach

Security Affairs

JULY 21, 2020

Blackbaud is a cloud computing provider that serves the social good community — nonprofits, foundations, corporations, education institutions, healthcare organizations, religious organizations, and individual change agents. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Data breaches

Data breaches Cloud Ransomware Education

Decathlon Spain data leak exposed Spanish employees’ data & more

Security Affairs

FEBRUARY 25, 2020

Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. “Our research team was only able to confirm that the database belonged to Decathlon Spain, with a strong possibility of Decathlon United Kingdom information included as well.”

Archiving

Archiving Passwords Retail Education

ShinyHunters leaked over 386 million user records from 18 companies

Security Affairs

JULY 28, 2020

million $1,200 Minted 5 million $2,500 Styleshare 6 million $2,700 Ggumim 2 million $1,300 Mindful 2 million $1,300 StarTribune 1 million $1,100 ChatBooks 15 million $3,500 The Chronicle Of Higher Education 3 million $1,500 Zoosk 30 million $500. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Passwords

Passwords Archiving Education Authentication

Meal delivery service Home Chef discloses data breach

Security Affairs

MAY 21, 2020

million $1,200 Minted 5 million $2,500 Styleshare 6 million $2,700 Ggumim 2 million $1,300 Mindful 2 million $1,300 StarTribune 1 million $1,100 ChatBooks 15 million $3,500 The Chronicle Of Higher Education 3 million $1,500 Zoosk 30 million $500. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Data breaches

Data breaches Passwords Education Sales

UCSF paid a $1.14 Million ransom to decrypt files after Ransomware attack

Security Affairs

JUNE 29, 2020

“This incident reflects the growing use of malware by cyber-criminals around the world seeking monetary gain, including several recent attacks on institutions of higher education. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. the statement concludes.

Ransomware

Ransomware Encryption Education IT

Records for 7.5 million users of the digital banking app Dave leaked online

Security Affairs

JULY 26, 2020

million $1,200 Minted 5 million $2,500 Styleshare 6 million $2,700 Ggumim 2 million $1,300 Mindful 2 million $1,300 StarTribune 1 million $1,100 ChatBooks 15 million $3,500 The Chronicle Of Higher Education 3 million $1,500 Zoosk 30 million $500. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Education

Education Phishing Encryption Passwords

Mysterious open database included ‘BreedReady’ status for 1.8 Million Women

Security Affairs

MARCH 12, 2019

The database also contained GPS coordinates, URLs to photos, ID numbers, marital status, political and education related details, and a ‘HasVideo’ field. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. In China, they have a shortage of women. Pierluigi Paganini.

Archiving

Archiving Education Security Data breaches

Ransomware infected systems at Xchanging, a DXC subsidiary

Security Affairs

JULY 6, 2020

The company has customers in many industries, including financial services, automotive, education, healthcare, manufacturing and aerospace and defense, DXC Technology files an 8-K form with the U.S. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Securities and Exchange Commission (SEC).

Ransomware

Ransomware Insurance Financial Services Manufacturing

Decrypting HiddenTear Ransomware for free with HT Brute Forcer

Security Affairs

DECEMBER 17, 2018

In 2015, the Turkish security researchers Utku Sen published the HiddenTear ransomware, the first open source ransomware, for educational purposes. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Ransomware

Ransomware Encryption Education Cybersecurity

Crooks target US universities with malware used by nation-state actors

Security Affairs

APRIL 26, 2020

‘This campaign delivered over 150,000 messages to over 60 different industries, with 45% focused on education, colleges, and universities,” Proofpoint concluded. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

Phishing

Phishing Education Access Cybersecurity

Security Affairs newsletter Round 253

Security Affairs

MARCH 1, 2020

Google sued by New Mexico attorney general for collecting student data through its Education Platform. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. A new round of the weekly newsletter arrived! The best news of the week with Security Affairs. Pierluigi Paganini.

Security

Security Ransomware Military Data breaches

FBI issued a flash alert about Netwalker ransomware attacks

Security Affairs

AUGUST 2, 2020

and foreign government organizations, education entities, private companies, and health agencies by unidentified cyber actors.” Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. “As of June 2020, the FBI has received notifications of Netwalker ransomware attacks on U.S. ” reads the alert.

Ransomware

Ransomware Encryption Passwords Government

Researchers received $288,500 for 32 out of 55 issues reported to Apple

Security Affairs

OCTOBER 12, 2020

The experts discovered how to fully compromise the Apple Distinguished Educators Program via Authentication and bypass authorization and hot to fully compromise the DELMIA Apriso Application via authentication bypass. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. ” reported the experts.

Authentication

Authentication Education Access Security

Is Gelsemium APT behind a targeted attack in Southeast Asian Government?

Security Affairs

SEPTEMBER 25, 2023

The previous campaigns associated with this group targeted government, education, and electronic manufacturers in East Asia and the Middle East. The experts noticed that one of the AspxSpy web shells employed by Gelsemium was reportedly used by Iron Taurus (aka APT 27) for the operation Iron Tiger in 2015.

Government

Government Manufacturing Education Access

Thousands Zoom credentials available on a Dark Web forum

Security Affairs

APRIL 12, 2020

“An analysis of the database revealed that aside from personal accounts, there were many corporate accounts belonging to banks, consultancy companies, educational facilities, healthcare providers, and software vendors, amongst others. ” ~ Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Phishing

Phishing Archiving Passwords Data breaches

Three Italian universities hacked by LulzSec_ITA collective

Security Affairs

FEBRUARY 13, 2020

As for motivation, they confirmed to me they have always had an interest in Italian education. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. They explained that after 9 years since the first attacks against the universities, nothing has changed from the cyber security perspective. Pierluigi Paganini.

Data breaches

Data breaches GDPR Education Passwords

Shade Ransomware gang shut down operations and releases 750K decryption keys

Security Affairs

APRIL 27, 2020

Moth of the victims belongs to high-tech, wholesale and education sectors. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Researchers from Kaspersky Lab confirmed that the decryption keys are valid and are including them in the company RakhniDecryptor ransomware decryption tool. Pierluigi Paganini.

Ransomware

Ransomware File names Education Encryption

Hackers breach 62 US colleges by allegedly exploiting Ellucian Banner Web flaw

Security Affairs

JULY 21, 2019

US Department of Education warned that hackers have breached at least 62 college and university networks by exploiting a vulnerability in the Ellucian Banner Web Tailor module of the Ellucian Banner ERP. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Education

Education Authentication Access Security

Experts found a new TrickBot module (rdpScanDll) built for RDP bruteforcing operations

Security Affairs

MARCH 19, 2020

” The module appears to be under development, but experts pointed out that threat actors already used it to target organizations, mostly in telecoms, education, and financial services sectors. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Financial Services

Financial Services Education Communications IT

Cyber Defense Magazine – April 2019 has arrived. Enjoy it!

Security Affairs

APRIL 2, 2019

GARY BERMAN AND HIS TEAM BELIEVE THAT INFOSEC KNOWLEDGE IS POWERFUL – TAKE YOUR AVERAGE EMPLOYEE AND MAKE THEM A CYBER HERO – YOU WILL EMPOWERED THEM AGAINST THE LATEST SPEAR PHISHING ATTACKS AND RANSOMWARE, IN A FUN EDUCATIONAL WAY. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

IT

IT Libraries Education Phishing

Steelcase office furniture giant hit by Ryuk ransomware attack

Security Affairs

OCTOBER 28, 2020

Steelcase is a US-based furniture company that produces office furniture, architectural and technology products for office environments and the education, health care and retail industries. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. It is the largest office furniture manufacturer in the world.

Ransomware

Ransomware Computer and Electronics Manufacturing Mining

60 Million records of LinkedIn users exposed online

Security Affairs

APRIL 21, 2019

Records include LinkedIn public profile information, including IDs, profile URLs, work history, education history, location, listed skills, other social profiles, and the last time the profile was updated. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Data breaches

Data breaches Archiving Privacy Education

Capital One hacker suspected to have breached other 30 companies

Security Affairs

AUGUST 17, 2019

Attorney’s Office in Seattle said servers found in Thompson’s bedroom contained data stolen from more than 30 unnamed companies, educational institutions and other entities.” Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. 22, the U.S. ” reported the AP agency. Pierluigi Paganini.

Data breaches

Data breaches Education Access Security

Hacker is auctioning a database containing details of 92 million Brazilians

Security Affairs

OCTOBER 6, 2019

Email address, profession, education level, possible relatives, neighbors, license plates, vehicle, ID card, driver’s license) simply providing a full name, taxpayer ID, or phone number. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. ” continues BleepingComputer. Pierluigi Paganini.

Education

Education Authentication Security IT

Unprotected Elasticsearch DB exposed 33 Million job profiles in China

Security Affairs

MARCH 17, 2019

The expert discovered the Elasticsearch database using the Shodan search engine, the 57GB archive included a username, gender, age, current city, home address, email address, phone number, marriage status, job history, education history, and salary history. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Archiving

Archiving Education Security Data breaches

New XORDDoS, Kaiji DDoS botnet variants target Docker servers

Security Affairs

JUNE 24, 2020

XORDDoS, also known as XOR.DDoS , first appeared in the threat landscape in 2014 it is a Linux Botnet that was employed in attacks against gaming and education websites with massive DDoS attacks that reached 150 gigabytes per second of malicious traffic. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

IoT

IoT Education Security Communications

WinRAR CVE-2018-20250 flaw exploited in multiple campaigns

Security Affairs

MARCH 28, 2019

This campaign was carried out by threat actors impersonating an educational accreditation council to hit users in the United States. The attackers used decoy documents apparently coming from the Council on Social Work Education (CSWE), a US association representing social work education. ” concludes FireEye.

Archiving

Archiving File names Education Libraries

DePriMon downloader uses a never seen installation technique

Security Affairs

NOVEMBER 21, 2019

The group is very sophisticated and used zero-day exploits and complex malware to conduct targeted attacks against governments and organizations in almost every industry, including financial, energy, telecommunications, and education, aerospace. ” ~ Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Communications

Communications Encryption Education Authentication

NCSC warns of a surge in ransomware attacks on education institutions

Experts warn of surge in DDoS attacks targeting education institutions

Webinars

Trending Sources

Online education site EduCBA discloses data breach and reset customers? pwds

Webinars

Google sued by New Mexico attorney general for collecting student data through its Education Platform

SamSam Ransomware operators earned more than US$5.9 Million since late 2015

SecurityAffairs awarded as Best European Cybersecurity Technical Blog

Guy Fawkes Day – LulzSec Italy hit numerous organizations in Italy

Chegg discloses the third data breach in the last two years

TrueDialog database leaked online tens of millions of SMS text messages

Shiny Hunters group is selling data from 11 companies on the Dark Web

Thinkful forces a password reset for all users after a data breach

Experts found critical flaws in 3 popular e-Learning WordPress Plugins

TOKOPEDIA e-commerce hacked, 91 Million accounts available on the darkweb

China-linked APT41 group exploits Citrix, Cisco, Zoho flaws

CIRWA Project tracks ransomware attacks on critical infrastructure

Expert released DOS Exploit PoC for Critical Windows RDP Gateway flaws

Cloud computing provider Blackbaud paid a ransom after data breach

Decathlon Spain data leak exposed Spanish employees’ data & more

ShinyHunters leaked over 386 million user records from 18 companies

Meal delivery service Home Chef discloses data breach

UCSF paid a $1.14 Million ransom to decrypt files after Ransomware attack

Records for 7.5 million users of the digital banking app Dave leaked online

Mysterious open database included ‘BreedReady’ status for 1.8 Million Women

Ransomware infected systems at Xchanging, a DXC subsidiary

Decrypting HiddenTear Ransomware for free with HT Brute Forcer

Crooks target US universities with malware used by nation-state actors

Security Affairs newsletter Round 253

FBI issued a flash alert about Netwalker ransomware attacks

Researchers received $288,500 for 32 out of 55 issues reported to Apple

Is Gelsemium APT behind a targeted attack in Southeast Asian Government?

Thousands Zoom credentials available on a Dark Web forum

Three Italian universities hacked by LulzSec_ITA collective

Shade Ransomware gang shut down operations and releases 750K decryption keys

Hackers breach 62 US colleges by allegedly exploiting Ellucian Banner Web flaw

Experts found a new TrickBot module (rdpScanDll) built for RDP bruteforcing operations

Cyber Defense Magazine – April 2019 has arrived. Enjoy it!

Steelcase office furniture giant hit by Ryuk ransomware attack

60 Million records of LinkedIn users exposed online

Capital One hacker suspected to have breached other 30 companies

Hacker is auctioning a database containing details of 92 million Brazilians

Unprotected Elasticsearch DB exposed 33 Million job profiles in China

New XORDDoS, Kaiji DDoS botnet variants target Docker servers

WinRAR CVE-2018-20250 flaw exploited in multiple campaigns

DePriMon downloader uses a never seen installation technique

Stay Connected