RTHK reports:
The Office of the Privacy Commissioner for Personal Data says a data breach incident by ImagineX has led to nearly 128,000 people’s information being compromised.
Failing to delete temporary accounts in a timely manner and the use of end-of-support operating systems were the main factors leading to the breach, the Office of the Privacy Commissioner for Personal Data (PCPD) said on Monday.
The privacy watchdog said in May it received a report from ImagineX Management, a brand management company, about a ransom note related to stolen personal data.
After an investigation, the office found that the hacker had exploited a temporary user account and then used it to access the company’s intranet.
Read more at RTHK.hk
Related: Data Breach Incident of ImagineX Management Company Limited Investigation Findings