The Public Ledger of Corruption
Air Canada, the flag carrier and the largest airline of Canada, disclosed a cyber security incident this week in which hackers “briefly” obtained limited access to its internal systems. According to the airline, the incident resulted in the theft of a limited amount of personal information of some of its employees and “certain records.” Customer data…
more “Air Canada discloses data breach of employee and ‘certain records’” »
Credit reporting firm TransUnion has denied claims of a security breach after a threat actor known as USDoD leaked data allegedly stolen from the company’s network. The Chicago-based company’s over 10,000 employees provide their services to millions of consumers and more than 65,000 businesses from 30 countries. “Immediately upon discovering these assertions, we partnered with…
more “TransUnion denies it was hacked, links leaked data to 3rd party” »
The Microsoft AI research division accidentally leaked dozens of terabytes of sensitive data starting in July 2020 while contributing open-source AI learning models to a public GitHub repository. Almost three years later, this was discovered by cloud security firm Wiz whose security researchers found that a Microsoft employee inadvertently shared the URL for a misconfigured Azure…
more “Microsoft leaks 38TB of private data via unsecured Azure storage” »
The University of Sydney (USYD) announced that a breach at a third-party service provider exposed personal information of recently applied and enrolled international applicants. The public university started operations in 1850 and has nearly 70,000 students and about 8,500 academic and administrative personnel. It is considered one of Australia’s most important educational institutes. In…
more “University of Sydney data breach impacts recent applicants” »
Last July, we noted how media reform activists had petitioned the FCC to revoke Fox News’ local broadcast license in Philadelphia. More specifically, the group argued that Fox News’ rampant election fraud propaganda technically violated the “character clause” embedded in the Communications Act the FCC is supposed to use to determine whether an organization should hold…
more “Push To Strip Fox’s Broadcast License Over Election Lies Gains New Momentum” »
The two founders behind Tornado Cash, a Russian cryptocurrency mixing service, have been charged by the U.S. Attorney’s Office for the Southern District of New York, according to a statement on Wednesday. Roman Storm and Roman Semenov were officially charged with conspiracy to commit money laundering, conspiracy to commit sanctions violations and conspiracy to operate…
more “Two founders behind Russian crypto mixer Tornado Cash charged by U.S. federal courts” »
from the haphazardly-thinking-of-the-children dept We’ve done all we can we’re willing to do to make schools safer. We’ve added more cops, something that sounds like safety but just means we’ve offloaded school discipline to people trained in the art of violence. We’ve locked more doors, added more machinery, and opened up our students to all…
more “Safety Last: AI Weapons Scanners Sold To US Schools Routinely Fail To Detect Knives” »
A joint operation between Interpol and cybersecurity firms has led to an arrest and shutdown of the notorious 16shop phishing-as-a-service (PhaaS) platform. Phishing-as-a-service platforms offer cybercriminals a one-stop-shop to conduct phishing attacks. These platforms typically include everything you need, including email distribution, ready-made phishing kits for well-known brands, hosting, data proxying, victim overview dashboards, and…
more “Interpol takes down 16shop phishing-as-a-service platform” »
Students rights are limited on school grounds. But they don’t cease to exist. And what they do off-campus is subject to even fewer limitations. These are long-held facts backed by years of court precedent, the most famous of which is the Supreme Court’s 1969 Tinker decision. This is the baseline for school-student interactions when it…
more “Tennessee teen sues school for suspending him after he posted memes mocking principal” »
Researchers have discovered a new and powerful transient execution attack called ‘Inception’ that can leak privileged secrets and data using unprivileged processes on all AMD Zen CPUs, including the latest models. Transient execution attacks exploit a feature present on all modern processors named speculative execution, which dramatically increases the performance of CPUs by guessing what…
more “New Inception attack leaks sensitive data from all AMD Zen CPUs” »