MIX reports: Oh, sweet irony: the Dutch Data Protection Authority – where registered companies are required to report breaches in data – has accidentally leaked the names of some of its employees in over 800 public documents, local outlet NU.nl reports. The discovery comes from Dutch cybersecurity firm NFIR. Pauline Gras from the Dutch Data…
Month: March 2018
OAIC received 31 notifications in the first three weeks of data breach scheme
Asha McLean reports: The Office of the Australian Information Commissioner (OAIC) has told ZDNet there has been 31 notifications provided to the office led by Timothy Pilgrim since Australia’s Notifiable Data Breaches (NDB) scheme came into effect on February 22, 2018. The NDB scheme requires agencies and organisations in Australia that are covered by the…
DocuTrac medical software is a breach risk, warns Rapid7
Warwick Ashford reports on what seems to me to be yet another case of hard-coded credentials creating a critical vulnerability in protecting patient data, and I, of course, have questions. Ashford reports: The QuicDoc & Office Therapy suite of software produced by DocuTrac contains security vulnerabilities that could allow attackers to gain control of patient…
Nampa School District investigating cyber security breach
Steve Bertel reports: The Nampa School District Thursday informed its employees of a potential security issue involving personally identifiable information. “The district discovered an individual had gained unauthorized access to a school district e-mail account, which contained information about 3,983 of its current and past employees,” said Nampa School District spokeswoman Kathleen Tuck. “The breach…
Citing “irreparable damage,” Panama Papers law firm Mossack Fonseca will close
It doesn’t happen often, but sometimes a breach does sound a death knell for a firm. Cat Rutter Pooley and Barney Thompson report: Mossack Fonseca, the law firm at the centre of the Panama Papers scandal, will close at the end of March, according to a statement from the firm obtained by the International Consortium of Investigative…
Svitzer employee details stolen in data breach affecting almost half of its Australian employees
Ariel Bogle reports: The shipping company Svitzer has suffered a significant data breach affecting almost half its Australian employees. It is among the first incidents to be disclosed under Australia’s new notifiable data breaches scheme. For almost 11 months, emails from three Australian employee email accounts were secretly auto-forwarded outside the company. The perpetrator has…