Maximus, a company that administers government programs like Medicaid and Medicare, was swept up in the broad MOVEit hacking campaign in May that affected over 2,000 organizations.
Victims filed a proposed class action lawsuit against the company after the attack, which as TechCrunch noted saw the leak of social security and other sensitive health information for between 8 and 11 million people.
National Student Clearinghouse (NSC), a Virginia-based educational nonprofit, said in a sample data breach notice filed with the California Attorney General that it suffered a MOVEit-related cyber attack on May 30th, reported Bleeping Computer.
The NSC says in the letter that stolen data may include SSNs and other personal and school-related records. Bleeping Computer writes that 890 schools’ were affected. The organization acknowledges the breach and subsequent patch on its website.
[BleepingComputer]
Amazon has released a new Kindle app for macOS, reports Good e-Reader. The new app has been redesigned to look more like iOS and now supports new features like a reading ruler, more fonts, a full-screen view, and page-turn animations.
You had me at page-turn animations, Amazon.
[Good e-Reader]
ArsTechnica summarized research that documents a vulnerability in both integrated and discrete GPUs which lets a website pull pixels from another site through the use of iframes and the exploitation of side channels created by the GPU when it compresses data. The vulnerability hinges on accessing that side channel to reproduce what’s on screen, pixel by pixel.
Fortunately, the researchers don’t believe this is a true threat — and neither do Nvidia, Qualcomm, or Google, per statements published at Ars. However, according to Ars, some browsers, including Chrome and Edge, are technically vulnerable. Firefox and Safari are not.
Bloomberg reports that the CIA’s chatbot will help it “find the needles in the needle field” that is the growing collection of surveillance data it buys from tech companies. Bloomberg didn’t learn what model drives the bot, which the CIA will share with other, unspecified intelligence agencies soon.
Bloomberg quotes Randy Nixon, who directs the CIA’s Open-Source Enterprise division, as saying the agency’s data stores “grow and grow with no limitations other than how much things cost.” Agents will ask the bot questions to isolate info from all that data.
I’m sure we have nothing to worry about.
