Sep 182018

Lisa Vaas reports:

Iranian hackers have reportedly breached top British universities – including Oxford and Cambridge – to steal what the Telegraph says are “millions” of papers and academic research documents that they then put up for sale via WhatsApp and websites.

The publication reported on Friday that much of the subject matter is bland, but some of the papers covered topics including nuclear development and computer encryption.

Whoever stole the papers is reportedly selling them on Farsi language websites in addition to the end-to-end encrypted WhatsApp messaging app, where they’re going for as little as £2 (USD $2.63).

Read more on Naked Security.

Sep 172018

Austin Howard reports:

The North Dakota Information Technology Department said there were malware attacks on one-third of North Dakota schools in February 2018. The hackers behind the attacks were from different international locations including North Korea and the malware was downloaded from multiple access points.

According to ITD’s Director of Security Sean Wiese, hackers used DoublePulsar malware that easily gives “bad actors” the ability to infiltrate other systems.

Wiese says this malware can infect a computer if a user simply clicks on something they weren’t supposed to click on.

Read more on InfoRum.

Sep 152018

This news story appeared on August 30, but I am first seeing it now.  Jack Quann reported:

The Students’ Union at University College Dublin (UCD) has suspended selling Student Leap Cards, after they say they uncovered that personal information was at risk.

The information used in the student version of the card is different to regular cards.

The union claims the information it takes is in breach of General Data Protection Regulation (GDPR).

Personal information available to Student Leap Card agents includes a photo, address, mobile phone number and e-mail.

Read more on NewsTalk.

Sep 142018

Gwen Filosa reports:

The Monroe County School District has been forced to shut down its computer system for nearly three days due to a cyberattack.

An employee working on payroll work Sunday noticed some problems with the computer system and put in a request with the district’s IT department, administrators said. The tech team contacted the district’s internet security provider, Symantec, which advised securing the system.

“They brought it all down on Sunday,” said Pat Lefere, executive director of operations and planning for the district.

The culprit was ransomware called “GandCrab.”

Read more on Miami Herald.