Education, Information Security and Security - Information Management Today

Pennsylvania State Education Association data breach impacts 500,000 individuals

Security Affairs

MARCH 20, 2025

A data breach at the Pennsylvania State Education Association exposed the personal information of over 500,000 individuals. The Pennsylvania State Education Association (PSEA) suffered a data breach that impacted 517,487 individuals. PSEA is affiliated with the National Education Association (NEA).

Education

Education Data breaches Passwords Insurance

Alabama State Department of Education suffered a data breach following a blocked attack

Security Affairs

JULY 7, 2024

Alabama’s education superintendent disclosed a data breach following a hacking attempt on the Alabama State Department of Education. The Alabama State Department of Education announced it had thwarted a ransomware attack on June 17, however, threat actors accessed some data and disrupted services before the attack was stopped.

Education

Education Data breaches Ransomware Access

Colorado Department of Higher Education (CDHE) discloses data breach after ransomware attack

Security Affairs

AUGUST 6, 2023

The Colorado Department of Higher Education (CDHE) finally disclosed a data breach impacting students, past students, and teachers after the June attack. In June a ransomware attack hit the Colorado Department of Higher Education (CDHE), now the organization disclosed a data breach.

Education

Education Data breaches Ransomware Access

Webinars

Automation, Evolved: Your New Playbook For Smarter Knowledge Work

MORE WEBINARS

Experts warn of a surge in NetSupport RAT attacks against education and government sectors

Security Affairs

NOVEMBER 21, 2023

Experts warn of a surge in NetSupport RAT attacks against education, government, and business services sectors. The most impacted sectors are education, government, and business services. NetSupport RAT is a remote control and desktop management software developed by NetSupport Ltd.

Education

Education Government Business Services Archiving

Bl00dy Ransomware Gang actively targets the education sector exploiting PaperCut RCE

Security Affairs

MAY 12, 2023

CISA and FBI warned of attacks conducted by the Bl00dy Ransomware Gang against the education sector in the country. The FBI and CISA issued a joint advisory warning that the Bl00dy Ransomware group is actively targeting the education sector by exploiting the PaperCut remote-code execution vulnerability CVE-2023-27350.

Education

Education Ransomware Encryption Communications

Notorious hacker behind 40+ cyberattacks on strategic organizations arrested

Security Affairs

FEBRUARY 6, 2025

“ At the international level, there has been collaboration with EUROPOL and the Homeland Security Investigations (HSI) of the USA.” ” The International Civil Aviation Organization (ICAO) is investigating a significant data breach that has raised concerns about the security of its systems and employees data.

Data breaches

Data breaches Information Security Government Access

Cryptocurrencies and cybercrime: A critical intermingling

Security Affairs

APRIL 26, 2024

Indeed, while anonymity provides privacy and security for transactions, it can also be exploited by criminals for illicit activities, such as money laundering , drug trafficking, illegal arms sales, and terrorist financing. Prevention comes through educating users and taking robust security measures to protect their digital assets.

Education

Education Mining Encryption Cybersecurity

Unmasking 2024’s Email Security Landscape

Security Affairs

FEBRUARY 28, 2024

Analyzing the Email Security Landscape and exploring Emerging Threats and Trends. VIPRE Security Group’s latest report, “Email Security in 2024: An Expert Insight into Email Threats,” delves into the cutting-edge tactics and technologies embraced by cybercriminals this year. million as malicious.

Security

Security Phishing Communications Financial Services

Security Affairs newsletter Round 474 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

JUNE 2, 2024

Every week the best security articles from Security Affairs are free for you in your email box. A new round of the weekly SecurityAffairs newsletter arrived! Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Data breaches

Data breaches Security Ransomware Phishing

Quishing, an insidious threat to electric car owners

Security Affairs

SEPTEMBER 5, 2024

“New e-car drivers who are not yet familiar with public charging stations are particularly at risk,” IT security expert Eddy Willems told to LifePR website. He is also the author of the book “La Gestione della Cyber Security nella Pubblica Amministrazione”. Education improves awareness” is his slogan.

Phishing

Phishing Education Personal data Risk

Port of Seattle ‘s August data breach impacted 90,000 people

Security Affairs

APRIL 5, 2025

The ransomware gang hit organizations in multiple industries, including education, healthcare, manufacturing, information technology, and government sectors. Please visit our cyberattack webpage for additional information.” The Rhysida ransomware group has been active since May 2023. — Seattle-Tacoma Intl.

Data breaches

Data breaches Ransomware Manufacturing Education

Fortinet warns about Critical flaw in Wireless LAN Manager FortiWLM

Security Affairs

DECEMBER 19, 2024

ai security researcher Zach Hanley (@hacks_zach) reported this vulnerability to Fortinet. “While we found it to be popular with State, Local, and Education (SLED) and healthcare focused customers, luckily the internet exposure is fairly limited to around 15 instances.” ” reads the advisory published by the vendor.

Authentication

Authentication Education Access IT

MSI confirms security breach after Money Message ransomware attack

Security Affairs

APRIL 7, 2023

Multinational IT corporation MSI (Micro-Star International) confirms security breach after Money Message ransomware gang claimed the hack. Today MSI confirmed the security breach, it confirmed that threat actors had access to some of its information service systems.

Ransomware

Ransomware Security Manufacturing Cybersecurity

Credential Flusher, understanding the threat and how to protect your login data

Security Affairs

SEPTEMBER 18, 2024

To protect against attacks like Credential Flusher, it is essential to adopt a series of security measures: Use updated antivirus software: Ensure that your security software is always up to date to detect and block the latest threats. He is also the author of the book “La Gestione della Cyber Security nella Pubblica Amministrazione”.

Passwords

Passwords Authentication Education Phishing

Russian Phobos ransomware operator faces cybercrime charges

Security Affairs

NOVEMBER 19, 2024

“According to the indictment, Ptitsyn facilitated the worldwide use of a dangerous ransomware strain to target corporations and various organizations, including government agencies, healthcare facilities, educational institutions, and critical infrastructure.

Ransomware

Ransomware Education Sales Government

Cybersecurity, why a hotline number could be important?

Security Affairs

OCTOBER 6, 2023

While the phone number for physical emergencies is already time-tested, the absence of a similar hotline for cybercrimes is a significant gap in our digital security. Statistics show a steady increase in cyber attacks targeting citizens and businesses, causing financial, security and privacy damage.

Cybersecurity

Cybersecurity Computer and Electronics Education Information Security

Security Affairs newsletter Round 479 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

JULY 7, 2024

Every week the best security articles from Security Affairs are free in your email box. GootLoader is still active and efficient Hackers stole OpenAI secrets in a 2023 security breach Hackers leak 170k Taylor Swift’s ERAS Tour Barcodes Polyfill.io A new round of the weekly SecurityAffairs newsletter arrived!

Data breaches

Data breaches Security Mining Education

Security Affairs newsletter Round 445 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

NOVEMBER 11, 2023

Every week the best security articles from Security Affairs are free for you in your email box. A new round of the weekly SecurityAffairs newsletter arrived! Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Security

Security Ransomware Data breaches Marketing

ChaChi, a GoLang Trojan used in ransomware attacks on US schools

Security Affairs

JUNE 24, 2021

. “These actors are utilizing advanced knowledge of enterprise networking and security misconfigurations to achieve lateral movement and gain access to the victim’s environments.” The malware was recently employed in attacks against large US schools and education organizations. . Pierluigi Paganini.

Ransomware

Ransomware Education Cybersecurity Government

German BSI warns of 17,000 unpatched Microsoft Exchange servers

Security Affairs

MARCH 30, 2024

The German Federal Office for Information Security (BSI) warned of thousands of Microsoft Exchange servers in the country vulnerable to critical flaws. The BSI urges operators running vulnerable instances to install available security updates and configure them securely. reads the advisory published by Microsoft.

Information Security

Information Security Cybersecurity Education Authentication

SAP April 2023 security updates fix critical vulnerabilities

Security Affairs

APRIL 12, 2023

SAP April 2023 security updates include a total of 24 notes, 19 of which are new vulnerabilities. The complete list of the notes is reported in the latest security bulletin : SAP administrators are urged to apply the available security patches as soon as possible.

Security

Security Education Passwords Authentication

China’s Volt Typhoon botnet has re-emerged

Security Affairs

NOVEMBER 13, 2024

In the most recent campaign, the group targeted organizations in the communications, manufacturing, utility, transportation, construction, maritime, government, information technology, and education sectors. The APT group is using almost exclusively living-off-the-land techniques and hands-on-keyboard activity to evade detection.

e-Discovery

e-Discovery Communications Ransomware Government

“My Slice”, an Italian adaptive phishing campaign

Security Affairs

JANUARY 22, 2024

Organizations and individuals should be aware of adaptive phishing techniques and implement cybersecurity training to educate users on how to recognize and avoid online scams. He is also the author of the book “La Gestione della Cyber Security nella Pubblica Amministrazione”. Education improves awareness” is his slogan.

Phishing

Phishing Education Cybersecurity Data breaches

FBI: Compromised US academic credentials available on various cybercrime forums

Security Affairs

MAY 27, 2022

The FBI warns organizations in the higher education sector of credentials sold on cybercrime forums that can allow threat actors to access their networks. The FBI has observed incidents of stolen higher education credential information posted on publically accessible online forums or listed for sale on criminal marketplaces.

Sales

Sales Education Phishing Passwords

Insurance scams via QR codes: how to recognise and defend yourself

Security Affairs

MARCH 12, 2024

Credit: Truffe assicurative tramite QR code: come riconoscerle e difendersi About the author: Salvatore Lombardo ( Twitter @Slvlombardo ) Electronics engineer and Clusit member, for some time now, espousing the principle of conscious education, he has been writing for several online magazine on information security.

Insurance

Insurance Education Personal data Sales

Security Affairs newsletter Round 447 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

NOVEMBER 26, 2023

Every week the best security articles from Security Affairs are free for you in your email box. A new round of the weekly SecurityAffairs newsletter arrived! Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press. million patients in the U.S.

Security

Security Ransomware Data breaches Libraries

App used by hundreds of schools leaking children’s data

Security Affairs

NOVEMBER 24, 2023

The leaked data about minors could have dire consequences, as this information can put children at physical risk by revealing their daily whereabouts. It can also be used by someone with malicious intent to impersonate school officials or manipulate children and parents,” said Vincentas Baubonis, Information Security Researcher at Cybernews.

Risk

Risk Education Personal data Phishing

Save the Children confirms it was hit by cyber attack

Security Affairs

SEPTEMBER 12, 2023

The company disclosed the security incident after the ransomware gang BianLian listed the organization on its Tor leak site. The organization notified law enforcement agencies and is working with external cyber security experts to investigate the security breach.

IT

IT Ransomware Education Data breaches

Online job offers, the reshipping and money mule scams

Security Affairs

JUNE 17, 2024

About the author: Salvatore Lombardo ( Twitter @Slvlombardo ) Electronics engineer and Clusit member, for some time now, espousing the principle of conscious education, he has been writing for several online magazine on information security. Education improves awareness” is his slogan.

Marketing

Marketing Education Information Security IT

Storm-2372 used the device code phishing technique since August 2024

Security Affairs

FEBRUARY 16, 2025

Storm-2372s targets during this time have included government, non-governmental organizations (NGOs), information technology (IT) services and technology, defense, telecommunications, health, higher education, and energy/oil and gas in Europe, North America, Africa, and the Middle East.”

Phishing

Phishing Authentication Access Government

Exclusive: Researchers dumped Gigabytes of data from Agent Tesla C2Cs

Security Affairs

OCTOBER 6, 2021

To share knowledge and encourage information security researchers to combat malicious code, Resecurity’s HUNTER unit has prepared an educational video demonstrating the.NET reverse engineering and deobfuscation techniques used for the Agent Tesla analysis. . Follow me on Twitter: @securityaffairs and Facebook.

Financial Services

Financial Services Retail Education Information Security

National Student Clearinghouse data breach impacted approximately 900 US schools

Security Affairs

SEPTEMBER 24, 2023

educational nonprofit organization National Student Clearinghouse disclosed a data breach that impacted approximately 900 US schools. The security breach resulted from a cyber attack exploiting a vulnerability in the MOVEit managed file transfer (MFT).-

Data breaches

Data breaches Education Ransomware Cybersecurity

Google researchers found multiple security issues in Intel TDX

Security Affairs

APRIL 25, 2023

Google Cloud Security and Project Zero researchers found multiple vulnerabilities in the Intel Trust Domain Extensions (TDX). Google Cloud Security and Project Zero researchers, working with Intel experts, discovered multiple vulnerabilities in the Intel Trust Domain Extensions (TDX). ” reads the report released by Google.

Security

Security Cloud Education Cybersecurity

Sophos patches three issues in the Sophos Web Security appliance, one of them rated as critical

Security Affairs

APRIL 10, 2023

All the above vulnerabilities were discovered and responsibly disclosed to Sophos by external security researchers via the Sophos bug bounty program. Sophos Web Appliance will reach end-of-life (EoL) status on July 20, 2023. The company recommends customers replace the appliances with Sophos Firewall.

Security

Security Education Cybersecurity IT

The first iPhone Rapid Security Response update released by Apple fails to install

Security Affairs

MAY 2, 2023

Apple has released its first Rapid Security Response update, but many iPhone users reported problems during the installation of the iOS Security Response. On June 2022, Apple announced that the Rapid Security Response feature would be available starting with iOS 16.4.1, ” “iOS Security Response 16.4.1 (a)

Security

Security Libraries Education Cybersecurity

CISA adds Microsoft Windows Print Spooler flaw to its Known Exploited Vulnerabilities catalog

Security Affairs

APRIL 25, 2024

Cybersecurity and Infrastructure Security Agency (CISA) added the CVE-2022-38028 Microsoft Windows Print Spooler Privilege Escalation vulnerability to its Known Exploited Vulnerabilities (KEV) catalog. National Security Agency and Microsoft addressed it with the release of Microsoft October 2022 Patch Tuesday security updates.

IT

IT Education Cybersecurity Risk

A zero-day in Atlas VPN Linux Client leaks users’ IP address

Security Affairs

SEPTEMBER 6, 2023

A Reddit user with the handle ‘Educational-Map-8145’ published a proof of concept exploit for a zero-day flaw in the Linux client of Atlas VPN. “The client does not connect via a local socket or any other secure means but instead it opens an API on localhost on port 8076. It does not have ANY authentication.

Education

Education Authentication Cybersecurity IT

Security Affairs newsletter Round 414 by Pierluigi Paganini – International edition

Security Affairs

APRIL 9, 2023

Every week the best security articles from Security Affairs are free for you in your email box. A new round of the weekly SecurityAffairs newsletter arrived! billion rubles.

Security

Security Computer and Electronics Ransomware Marketing

Hackers breached MDM firm Mobile Guardian and wiped thousands of devices

Security Affairs

AUGUST 6, 2024

The Ministry of Education (MOE) in Singapore confirmed that the incident heavily impacted students in the country. Some students who use iPads or Chromebooks as personal learning devices claimed they were unable to access their applications and information stored on their devices. ” reads a statement published by the company.

MDM

MDM Education Access Security

X will collect biometric data from its premium users

Security Affairs

SEPTEMBER 4, 2023

The social media site X announced that it will collect premium users’ biometric data for security and identification purposes. The social media platform X (formerly known as Twitter) has updated its privacy policy informing its premium users that the company will collect their biometric data to curb fraud and prevent impersonation.

IT

IT Privacy Education Government

Security Affairs newsletter Round 432 by Pierluigi Paganini – International edition

Security Affairs

AUGUST 13, 2023

Every week the best security articles from Security Affairs are free for you in your email box. A new round of the weekly SecurityAffairs newsletter arrived! Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Security

Security Data breaches Honeypots Artificial Intelligence

Phishing, the campaigns that are targeting Italy

Security Affairs

OCTOBER 12, 2023

Particularly very popular is so-called brand phishing, which occurs when criminals impersonate the official website of a well-known brand of a public or private entity using a domain name, URL, logos and graphics similar to the original website: This is a real threat that can have heavy repercussions on user privacy and device security.

Phishing

Phishing Education Passwords Security

Iranian Agonizing Serpens APT is targeting Israeli entities with destructive cyber attacks

Security Affairs

NOVEMBER 7, 2023

Iran-linked Agonizing Serpens group (aka Agrius , BlackShadow , Pink Sandstorm , DEV-0022 ) has been targeting Israeli organizations in higher education and tech sectors with destructive cyber attacks since January 2023. Based on our telemetry, the most targeted organizations belong to the education and technology sectors.”

Education

Education Ransomware Security Access

Hackers are taking advantage of the interest in generative AI to install Malware

Security Affairs

MAY 3, 2023

In March, security experts at Meta found multiple malware posing as ChatGPT or similar AI tools. “Since March alone, our security analysts have found around 10 malware families posing as ChatGPT and similar tools to compromise accounts across the internet. ” reads the Meta’s Q1 2023 Security Reports.

Education

Education Information Security Cybersecurity Security

Pennsylvania State Education Association data breach impacts 500,000 individuals

Alabama State Department of Education suffered a data breach following a blocked attack

Webinars

Trending Sources

Colorado Department of Higher Education (CDHE) discloses data breach after ransomware attack

Webinars

Experts warn of a surge in NetSupport RAT attacks against education and government sectors

Bl00dy Ransomware Gang actively targets the education sector exploiting PaperCut RCE

Notorious hacker behind 40+ cyberattacks on strategic organizations arrested

Cryptocurrencies and cybercrime: A critical intermingling

Unmasking 2024’s Email Security Landscape

Security Affairs newsletter Round 474 by Pierluigi Paganini – INTERNATIONAL EDITION

Quishing, an insidious threat to electric car owners

Port of Seattle ‘s August data breach impacted 90,000 people

Fortinet warns about Critical flaw in Wireless LAN Manager FortiWLM

MSI confirms security breach after Money Message ransomware attack

Credential Flusher, understanding the threat and how to protect your login data

Russian Phobos ransomware operator faces cybercrime charges

Cybersecurity, why a hotline number could be important?

Security Affairs newsletter Round 479 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs newsletter Round 445 by Pierluigi Paganini – INTERNATIONAL EDITION

ChaChi, a GoLang Trojan used in ransomware attacks on US schools

German BSI warns of 17,000 unpatched Microsoft Exchange servers

SAP April 2023 security updates fix critical vulnerabilities

China’s Volt Typhoon botnet has re-emerged

“My Slice”, an Italian adaptive phishing campaign

FBI: Compromised US academic credentials available on various cybercrime forums

Insurance scams via QR codes: how to recognise and defend yourself

Security Affairs newsletter Round 447 by Pierluigi Paganini – INTERNATIONAL EDITION

App used by hundreds of schools leaking children’s data

Save the Children confirms it was hit by cyber attack

Online job offers, the reshipping and money mule scams

Storm-2372 used the device code phishing technique since August 2024

Exclusive: Researchers dumped Gigabytes of data from Agent Tesla C2Cs

National Student Clearinghouse data breach impacted approximately 900 US schools

Google researchers found multiple security issues in Intel TDX

Sophos patches three issues in the Sophos Web Security appliance, one of them rated as critical

The first iPhone Rapid Security Response update released by Apple fails to install

CISA adds Microsoft Windows Print Spooler flaw to its Known Exploited Vulnerabilities catalog

A zero-day in Atlas VPN Linux Client leaks users’ IP address

Security Affairs newsletter Round 414 by Pierluigi Paganini – International edition

Hackers breached MDM firm Mobile Guardian and wiped thousands of devices

X will collect biometric data from its premium users

Security Affairs newsletter Round 432 by Pierluigi Paganini – International edition

Phishing, the campaigns that are targeting Italy

Iranian Agonizing Serpens APT is targeting Israeli entities with destructive cyber attacks

Hackers are taking advantage of the interest in generative AI to install Malware

Stay Connected