Collaborate Disseminate
“Mother, May I?” UK entities may need permission to make ransom payments. Alexander Martin reports: Officials in Britain are set to propose a major overhaul of how the country responds to ransomware attacks by requiring all victims to repor… Continue reading UK to propose mandatory reporting for ransomware attacks and licensing regime for all payments
YLE News reports: The perpetrator of a major hacking of the City of Helsinki’s education division’s database could have accessed the personal information of all compulsory school aged children in the capital, as well as their parents or gua… Continue reading Fi: Hacker could have personal information of every schoolkid in Helsinki, City says
Financial and insurance organizations have been under increasing attack by Scattered Spider. Now there is more guidance for entities. Hunton Andrews Kurth notes: On May 14, 2024, the UK National Cyber Security Centre (“NCSC”) and three major UK insuran… Continue reading UK NCSC and Insurance Associations Publish Guidance on the Approach to Ransom Payments
Connor Jones reports: Emotional intelligence was at the heart of the British Library’s widely hailed response to its October ransomware attack, according to CEO Roly Keating. The British Library’s (BL) ransomware attack last year was one of… Continue reading British Library’s candid ransomware comms driven by ’emotional intelligence’
Daniel Jeffrey reports: Electronic prescription provider MediSecure has fallen victim to a “large scale” data breach, potentially putting Australians’ private medical information at risk and sparking a national approach from the feder… Continue reading Au: Electronic prescription provider MediSecure victim of ‘large-scale’ data breach, ‘personal and health information’ at risk
Robert Lemos writes: Lawmakers in Singapore updated the nation’s cybersecurity regulations on May 7, giving more power to the agency responsible for enforcing the rules, adopting definitions of computer systems that include cloud infrastructure, … Continue reading Singapore Cybersecurity Update Puts Cloud Providers on Notice
Seen at GPDP: Telemarketing: the Privacy Guarantor sanctions Enel Energia The company had not protected its databases from access by abusive touts The Privacy Guarantor has imposed a fine of over 79 million euros on Enel Energia for serious shortcoming… Continue reading Telemarketing: the Privacy Guarantor sanctions Enel Energia. The company had not protected its databases from access by abusive brokers
Bill Toulas reports: Have I Been Pwned has added the information for 26,818,266 people whose data was leaked in a recent hack of The Post Millennial conservative news website. The Post Millennial is a conservative Canadian online news magazine belongin… Continue reading Post Millennial hack leaked data impacting 26 million people
Zak Wheeler reports: Hackers have cracked a popular mortgage lender’s servers and gained access to the personal information of its clients. Firstmac, an Australian non-bank mortgage lender, sent out a round of emails to customers this week alerti… Continue reading Au: Shock for customers as personal details leaked in worrying breach
Purvi Khemani reports: A Reddit user recently shared a troubling experience on the platform. They claimed they were fired from TCS (Tata Consultancy Services) after reporting a security issue. Using the handle @Personal_Stage4690, they posted on the ‘D… Continue reading TCS Employee Suspended After Reporting a Security Incident, Reddit Post Goes Viral