Happy Friday! Let’s dive into the cybersecurity news you may have missed this week.
Officials of the Cherokee County School District in South Carolina urged students and staff to avoid connecting to the district’s network or using district technology systems after a network security incident.
The district took swift action once the incident was discovered and has begun working with the FBI, SLED, and local authorities for investigation.
(–Source: FOX Carolina News on MSN
Read More: Computer systems impacted by network security incident, Upstate school district says )
A popular automation project code used by more than 23,000 GitHub repositories has been compromised after attackers altered the code sometime earlier this month.
The hackers’ edits to the code cause projects with publicly available logs to leak information such as API keys, passwords, and access tokens, into build logs. Experts investigating the attack have advised project maintainers to take an immediate response to ensure the security of data.
(–Source: The Register on MSN
Read More: GitHub supply chain attack spills secrets from 23,000 projects )
California Cryobank, a top sperm bank in California and one of the largest in the United States, confirmed that an unauthorized party infiltrated the company’s IT environment in April of last year, gaining access to files that contained the personal information of their customers.
In a notification letter sent out to affected customers, the organization stated that any potentially affected devices were isolated from the network, but following a year-long investigation, concluded that personal data belonging to customers was exposed.
Customers who had specific pieces of information leaked are being offered a year’s worth of credit monitoring services.
(–Source: TechRadar on MSN
Read More: Top California sperm bank suffers embarrassing leak )
National class-action law firm, Edelson Lechtzin LLP, has announced the investigation of a security incident at Smart ERP, an IT and software business with services tailored to ERP systems, that occurred in July of 2024.
Customers’ personal information may have been compromised during this incident, and Edelson Lechtzin LLP is investigating a class action lawsuit to seek damages for affected individuals.
(–Source: TMCnet
Read More: DATA BREACH ALERT: Edelson Lechtzin LLP Is Investigating Claims On Behalf Of Smart ERP Solutions, Inc. Customers Whose Data May Have Been Compromised )
The Pennsylvania State Education Association (PSEA) experienced a data breach in July 2024 and has confirmed that the attackers stole files from their systems containing personal information of over 500,000 individuals.
While there has been no evidence found that the information is being used for fraud, PSEA is providing affected individuals with one year of free credit monitoring and identity restoration services. The Rhysida ransomware gang took credit for the attack in September of 2024, demanding 20 Bitcoin in exchange for the stolen information.
(–Source: SecurityWeek
Read More: 500,000 Impacted by Pennsylvania Teachers Union Data Breach – SecurityWeek )
