If you don’t respond and respond appropriately quickly when people attempt responsible disclosure, don’t be surprised when your security problem is aired publicly on Twitter. Security researcher Devin Stokes has disclosed a vulnerability in Eskom’s information systems that is leaking customer data. Stokes said that he took the decision to go public after Eskom failed…
Month: February 2019
NZTA again forced to contact the Privacy Commissioner after another privacy breach
Jason Walls reports: The New Zealand Transport Agency is embroiled in yet another privacy saga, after accidentally revealing the private email addresses of almost 900 people in a mass traffic update email. This comes not long after the agency was forced to notify the Privacy Commissioner after it lost an unencrypted USB drive containing the…
Possibility of data breach with mySalam health insurance scheme, Perkasa claims
Ida Nadirah Ibrahim reports: The government-run health insurance scheme for the bottom 40 per cent of workers raises the concern of data breach by Singaporean insurance company Great Eastern Takaful Berhad, Perkasa claimed today. Its information chief Nasrul Ali Hasan Abdul Latif said this is because the Finance Ministry has allowed Great Eastern Takaful to…
Huddle House payment card breach could potentially impact 300,000 customers – researchers
Georgia-based Huddle House opened in Decatur, Georgia, in 1964. Over the years, they have cultivated their brand as the kind of place where customers can get a good meal any time of the day, with their breakfast menu having become a big favorite. Huddle House currently has more than 350 franchises across the country. Last Friday,…
“Team Orangeworm” claims to be dumping CarePartners’ data from 2018 breach
In June, 2018, CarePartners, a home care service provider to Ontario’s Local Health Integration Networks (LHINs) and an Ontario-based community health care agency, revealed that they had been breached. The following month, after being contacted by the hackers, CBC News provided more details and reported that there was an extortion demand made by the hackers….
Outdated software left municipal worker information exposed in 200 towns
Anne Wallace Allen reports: An outdated software that is used by about 200 Vermont municipalities and the Vermont Tax Department has long contained flaws that exposed sensitive information including Social Security numbers, according to an IT consultant and the software company’s founder. New England Municipal Resource Center, or NEMRC, is software that cities and towns…