Cybersecurity

Two months after a cyber extortion group hacked San Benito Consolidated Independent School District's network and stole confidential information, impacted families are seeing their data on the dark web.

Nineteen percent of software scanned in the past year showed a “high or critical severity” security flaw, according to Veracode’s State of Software Security 2023 report. Issues also appear to be fixed less often in older software.

The Federal Aviation Administration blamed the outage on an issue with its Notice to Air Mission system, which is a crucial component of all U.S. civilian and military flights that alerts pilots to hazards or other issues.

Incoming CISO Steve Hodges hopes his face-to-face approach to relationship building will help give the security team a louder voice in more decisions. He says he is focused on bolstering trust and giving partners the support they need.

A group of hackers reportedly posted over 120,000 files from BART’s police department that include the names of children suspected of suffering abuse, driver’s license numbers and mental health evaluation forms.

The newly announced MD-ISAC aims to provide actionable cyber intelligence to counties, cities, towns and public schools to help them identify and head off potential cybersecurity threats.

Onondaga County, N.Y., clerk’s office is one of the local governments experiencing operational issues after a December cyber attack struck its third-party records management vendor Cott Systems Inc.

A survey of more than 800 district leaders and 3,000 teachers last fall found that 66 percent of administrators believed it was likely that a cyber attack would impact a school near them, versus 42 percent of teachers.

With the ever-growing list of uses for data in higher education, being an asset that touches all aspects of a university’s mission, comes a need for users to understand the big picture of data privacy and security.

Steve Hodges brings more than 21 years of information security experience with the state government to the role, recently serving as a senior IT security manager for Georgia’s revenue department.

The insurer posted additional information about the breach online and offered free ID theft and monitoring service for at least 12 months. SAIF said it has been unable to determine how many people the breach affected.

According to the Consortium for School Networking, legislators in 36 states introduced 232 school-related cybersecurity bills in 2022. They enacted 37, most of which focused on cybersecurity training requirements.

Gov. Mike Dunleavy issued a memorandum Friday prohibiting the use of the social media platform TikTok on state-owned devices. In doing so, Alaska follows in the footsteps of more than a dozen other states.

Broward prosecutors are probing whether three school district administrators acted improperly when they shared details about a ransomware attack with a private company after withholding it from the public.

There are dark clouds on the horizon as well as conflicting forecasts regarding cyber insurance in 2023 and beyond. Where will the insurance market go from here on cybersecurity coverage?

The Iowa Department of Transportation has delayed the launch of digital ID to make security improvements to its mobile ID app. The agency will be bringing the app in line with national and international standards, officials say.

The vendor supplying Lawrence County, Ohio’s records management system was hit with a cyber attack Dec. 26. The incident caused service disruptions when company systems were taken offline to identify the source of the attack.

The Housing Authority of the City of Los Angeles was reportedly the victim of a cyber attack by the ransomware group LockBit. In a Dec. 31 post on the dark web, the group claimed to have stolen more than 15 terabytes of agency data.