A hacker and a vigilante hacked and defaced the now defuncted Utah Valley University (UVU) website learningstyles.uvu.edu in 2019 and 2020.
Continue readingCategory: Public Disclosure
Hackers infiltrated a website operated by the United States Ski and Snowboard Association (USSA) for the National Standard Race (NASTAR) but ultimately did not take any significant adverse actions.
Continue readingThe political election campaign of Tom Sakievich responded quickly to remove “malvertising” malware from their website this past week after I discovered and reported the hack.
Continue readingUniversity Of Utah Health announced Friday afternoon another data breach taking place at the height of the COVID-19 pandemic. This is their second health breach this year due to phishing.
Continue readingUtah Valley University (UVU) removed two websites with 17-year-old critical vulnerabilities after the UtahCyberCheck found and reported them.
Continue readingIn a feat of resiliency, the United States Ski and Snowboard Association (USSA) migrated a service then decommissioned a vulnerable server during the COVID-19 pandemic after the UtahCyberCheck project found a critical vulnerability.
Continue readingA US SKi and Snowboard Association’s misconfigured web server exposed the username and password of a source code management user, putting other USSA websites and data at risk. (UPDATED)
Continue readingThe UtahCyberCheck project found the US Ski and Snowboard Association (USSA) puts the data of tens of thousands of its members at risk and violates its terms of use and privacy policy by using software with critical vulnerabilities and running at least one hacked website. The association, despite multiple attempts to contact them, has ignored reports about these serious issues. (UPDATED to reflect new developments.)
Continue readingA hack of the Odyssey Charter School Website went unnoticed for possibly two-and-a-half years until the UtahCyberCheck project discovered the hack in December 2019.
Continue reading