Data Privacy & Security Service
Issue 8
RECENT EVENTS
Data Privacy and Security Service Digital Digest Spring 2017
A Not so Funny Accidental Order
Recently, owners of Amazon’s Echo have been sur- prised to find orders at their doorstep that they do not recall ordering. As it turns out, the order was placed on their account, though they did not place it. Their Ama- zon Echo actually placed the order on their behalf. How does this happen?
The Amazon Echo has the ability to place orders on its owners behalf with only a simple command “Alexa order me...” The good news is that you can turn off this unfortunate feature by disabling voice purchasing or by requiring a confirmation code before every order. While the stories related to the Echo are entertaining and relatively harmless, these stories do show that storing all your information in one location , while con- venient, can have unintended consequences. Sometimes an extra step or two is worth the extra few seconds it takes to complete a purchase or to login to a web- site.
For further information contact your local RIC. Click here to find your local RIC contact.
Read the full report here .
For Subscribers to Service:
Recent Data Breaches
Digests & Archived Digests
Chicago Public Schools notifies families of student data breach
Digital Debriefs
Chicago Public Schools (CPS) notified the families of approximately 30,000 students that personally
Inventory Tool
identifiable information containing students’ names, addresses, grade levels and current ele- mentary schools was inadvertently released to a charter school and used by the charter school in an unsolicited postcard advertising campaign. The breach was a violation students’ privacy and district policy.
Information Security Online PD for Teachers
Digital Blasts
For more information click here .
New York District Targeted by Phishing Attack
A district in Nassau County was targeted by a phishing attack in early February. The users in the district recognized that the e-mail was questionable and did not re- spond to the e-mail. After receiving the e-mail, they followed their notification pro- cess and notified the appropriate staff in district. This e-mail can be used as an ex- ample with district staff of what a potential phishing attack looks like.
Summer Digest:
Data Privacy in the Age of the Internet of Things
Find the contents of the e-mail that was sent to users in the district here .
5
Made with FlippingBook flipbook maker