Collaborate Disseminate
The Information Commissioner’s Office (ICO) has today announced it has reprimanded South Tees Hospitals NHS Foundation Trust for a data breach which resulted in a disclosure containing sensitive information to a unauthorised family member. In November … Continue reading UK: South Tees Hospitals NHS Foundation Trust reprimanded for “serious, harmful” data breach
Bryant Hevesi reports: St Vincent’s Health has declared that no evidence has been uncovered that sensitive personal information was stolen by hackers last month. The healthcare provider, which operates 10 hospitals and 26 aged-care facilities acr… Continue reading Au: St Vincent’s Health says there is ‘no evidence’ sensitive personal information was stolen by hackers in cyber attack
The UT investigated the decision-making process of victims who had to pay ransoms during ransomware attacks. UT researcher Tom Meurs and his colleagues analyzed 481 ransomware attacks, data from the Dutch police and a Dutch incident response party. Org… Continue reading University of Twente Maps Decision-Making Process for Ransomware Victims
Cybersecurity Researcher, Jeremiah Fowler, discovered and reported to vpnMentor about a non-password protected database that contained nearly 1.3 million records, which included COVID-19 testing information and personally identifiable information such … Continue reading COVID Test Data Breach: 1.3 Million Patient Records Exposed Online
Kristof Van Quathem of Covington and Burling writes: In December 2023, the Dutch SA fined a credit card company €150,000 for failure to perform a proper data protection impact assessment (“DPIA”) in accordance with Art. 35 GDPR for its “identification … Continue reading Dutch SA Sanctions Credit Card Company for Failure to Perform Data Protection Impact Assessment
Heloise Vyas reports: The Australian government have cracked down on a Russian cybercriminal believed to behind a Medibank Private breach in 2022 which marked the “single most devastating attack” in the country’s history. In a joint p… Continue reading Federal government slaps targeted sanctions on Russian cybercriminal behind 2022 Medibank Private cyber attack
21 January 2024 [UPDATED: 10:45 CET, January 21] One of Tietoevry’s several datacenters in Sweden was partially subject to a ransomware attack during the night of Jan 19-20. While overall recovery has progressed, services for the customers in scope rem… Continue reading UPDATE: Ransomware attack affecting Tietoevry’s services for some customers in Sweden
Claire Harrison reports: A Coventry school has been reprimanded for data breaches after its IT system was ‘hacked three times’. In doing so, the Information Commissioners Office has said that Finham Park Multi Academy Trust did not have ade… Continue reading UK: Coventry school reprimanded for data breach after IT system ‘hacked three times’
Over on Infosec.Exchange, Will Palant posted: Yellow Flag @WPalant@infosec.exchange German law is making security research a risky business. Current news: A court found a developer guilty of “hacking.” His crime: he was tasked with looking into a softw… Continue reading German security researchers at risk of prosecution for “hacking” because of a plain text hardcoded password?
CKXS reports: The fallout continues following last year’s ransomware attack that resulted in a massive data breach at five southwestern Ontario hospitals. The Tilbury District Family Health Team (TDFHT) has confirmed that its patient health information… Continue reading Tilbury District Family Health Team confirms patient data impacted by October ransomware attack