Robert Scammell reports: A hacker stole the personal data of 1,000 employees of the Ordnance Survey, the government-owned mapping agency for Britain, Verdict can reveal. The agency, which produces digital and paper maps for businesses and consumers, confirmed the breach to Verdict but was unable to go into detail about the type of personal details that were compromised. Read…
Month: February 2020
Advocate Aurora’s HR system breached in email phishing campaign
Lauren Anderson reports: The personal information of some current and former Advocate Aurora Health employees, including their Social Security numbers and bank accounts, might have been compromised in an email phishing campaign. The Milwaukee- and Downers Grove, Illinois-based health system said the early January breach gave an unauthorized individual temporary access to a human resource…
UK: Samsung’s website error exposes UK customer data
Sabina Weston reports: Samsung’s UK website has suffered a data breach resulting in the leak of private information of around 150 customers, the company has confirmed. Samsung said that the error exposed names, telephone numbers, postal and email addresses and previous orders, according to a statement seen by Reuters. Samsung emphasised that credit card information was not exposed. Read more on IT…
Gadsden ISD has shut down its internet system due to ransomware
KTSM reports: Gadsden Independent School District (GISD) shut down its internet and communication systems, affecting all schools and support service locations, after identifying a virus that may have infected the system yesterday. According to a news release, the disruption has been connected to a virus or ransomware identified as RYUK. Read more on KTSM.
FTC Releases 2019 Privacy and Data Security Update
The Federal Trade Commission today released its annual privacy and security update for 2019, highlighting a record year for enforcement actions aimed at protecting consumer privacy and data security. For example, the Commission levied a $5 billion penalty—the largest consumer privacy penalty ever—against Facebook for violating its 2012 FTC privacy order and imposed new restrictions on the…
DoppelPaymer Ransomware Launches Site to Post Victim’s Data
First Maze Team did it. Now DoppelPaymer threat actors have followed suit. Lawrence Abrams reports: The operators of the DoppelPaymer Ransomware have launched a site that they will use to shame victims who do not pay a ransom and to publish any files that were stolen before computers were encrypted. Read more on BleepingComputer.