Data Privacy & Security Service Digital Digest Spring 2017

Data Privacy & Security Service

Issue 8


Data Privacy and Security Service Digital Digest Spring 2017

A Not so Funny Accidental Order

Recently, owners of Amazon’s Echo have been sur- prised to find orders at their doorstep that they do not recall ordering. As it turns out, the order was placed on their account, though they did not place it. Their Ama- zon Echo actually placed the order on their behalf. How does this happen?

The Amazon Echo has the ability to place orders on its owners behalf with only a simple command “Alexa order me...” The good news is that you can turn off this unfortunate feature by disabling voice purchasing or by requiring a confirmation code before every order. While the stories related to the Echo are entertaining and relatively harmless, these stories do show that storing all your information in one location , while con- venient, can have unintended consequences. Sometimes an extra step or two is worth the extra few seconds it takes to complete a purchase or to login to a web- site.

For further information contact your local RIC. Click here to find your local RIC contact.

Read the full report here .

For Subscribers to Service:

Recent Data Breaches

Digests & Archived Digests

Chicago Public Schools notifies families of student data breach

Digital Debriefs

Chicago Public Schools (CPS) notified the families of approximately 30,000 students that personally

Inventory Tool

identifiable information containing students’ names, addresses, grade levels and current ele- mentary schools was inadvertently released to a charter school and used by the charter school in an unsolicited postcard advertising campaign. The breach was a violation students’ privacy and district policy.

Information Security Online PD for Teachers

Digital Blasts

For more information click here .

New York District Targeted by Phishing Attack

A district in Nassau County was targeted by a phishing attack in early February. The users in the district recognized that the e-mail was questionable and did not re- spond to the e-mail. After receiving the e-mail, they followed their notification pro- cess and notified the appropriate staff in district. This e-mail can be used as an ex- ample with district staff of what a potential phishing attack looks like.

Summer Digest:

 Data Privacy in the Age of the Internet of Things

Find the contents of the e-mail that was sent to users in the district here .


Made with FlippingBook flipbook maker