“Personal financial records of ordinary people are being indiscriminately pumped into a huge database, access to which is given to almost any police officer who wants it,” said Nathan Fried Wessler, ACLU Project Deputy Director for Speech, Privacy and Technology. WSJ. “This program should never have run and should be closed now.”
A security researcher has discovered a version of the United States’ controversial “no-fly list” on an insecure server operated by CommuteAir, a regional airline based in Ohio. The list, which contains more than 1.5 million entries, is much larger than previously reported and includes the names of individuals who are banned from flying to the United States.
CommuteAir confirmed the authenticity of the document to Daily Dot, which first reported the leaked list.
The list includes the names of several well-known figures, including convicted Russian arms dealer Viktor Bout, according to the Daily Dot. The Biden administration sent Bout back to Russia in exchange for WNBA star Britney Greener, who returned to the US in December. The data, which was released to WIRED on Thursday evening, included about 30 entries for people born after 2010.
According to CNNThe US Transportation Security Administration is investigating the incident.
After an eight-month investigation, the U.S. Supreme Court was unable to determine who leaked the draft decision to repeal Rowe vs. Wade, according to the report released by the court on Thursday. Unprecedented leak in Politico More than a month passed before the final conclusion was released last spring, prompting nationwide protests.
During the investigation into the leak, the court questioned 97 court employees and brought in forensic experts to examine call logs, printer logs and fingerprints. According to the report, apart from nine judges, 80 people had access to the draft opinion.
“No one has admitted to publicly disclosing the document, and none of the available forensic or other evidence has led to the identification of any person as the source of the document,” the report says. “It is not possible to establish the identity of any person who may have disclosed the document, or how the draft opinion came to be Politico“.
The report does not say whether the judges were interviewed.
According to PayPal security incident notification, attackers gained unauthorized access to the accounts of thousands of users between December 6 and 8, 2022 using a credential spoofing attack. Credential stuffing is when hackers, usually with the help of a bot, try to gain access to accounts using lists of leaked password and username pairs.
Within two days, the hackers gained access to the full names of account holders, dates of birth, postal addresses, social security numbers and individual tax identification numbers. According to PayPal, the incident affected 34,942 users.
Affected users will receive a free two-year identity monitoring service from Equifax.