Karunjit Singh reports: In an inadvertent data leak, the country’s insolvency regulator has put out the Aadhaar and Permanent Account Number (PAN) details of the workmen of multiple companies undergoing insolvency proceedings in the public domain. Officials aware of developments admitted to the “mistake”, which happened as the Insolvency and Bankruptcy Board of India (IBBI)…
Author: Dissent
Bits ‘n Pieces
Aultman Health Foundation Notifying Patients of Insider-Wrongdoing The Ohio foundation is notifying approximately 7,000 patients that a former employee accessed their records without business need. HOYA Optical Labs of America Notifying Patients of Ransomware Incident As first reported by HealthITSecurity, the Japanese-headquartered firm notified 3,259 U.S. patients of a ransomware incident. The incident occurred in…
Mercedes-Benz data breach exposes SSNs, credit card numbers
Ax Sharma reports: Mercedes-Benz USA has just disclosed a data breach impacting some of its customers. The company assessed 1.6 million customer records which included customer names, addresses, emails, phone numbers, and some purchased vehicle information to determine the impact. It appears the data breach exposed credit card information, social security numbers, and driver license numbers of…
Microsoft says SolarWinds hacking group has breached three new victims
Catalin Cimpanu reports: Microsoft said on Friday that it discovered new cyberattacks carried out by Nobelium, the codename the company has assigned to the Russian state-sponsored hacking group responsible for the SolarWinds hack last year. In a recent campaign, Microsoft said the group used password spraying and brute-force attacks in an attempt to guess passwords and gain access to…
UK: Sepa recovery from ransomware attack could take years
BBC reports: Scotland’s environmental watchdog has said it could take years to fully recover from a cyber attack. The Scottish Environment Protection Agency (Sepa) had more than 4,000 digital files stolen by hackers on Christmas Eve. Chief executive Terry A’Hearn revealed it is now building a new IT system from scratch. Sepa said it had backup…
HSE seeks order to help find who uploaded or downloaded files stolen in cyberattack
Ann O’Loughlin reports: Over 20 people either uploaded or downloaded confidential information stolen in last month’s cyberattack on the HSE onto a web service provided by a Google-owned internet security firm, the High Court has heard. Mr Justice Tony O’Connor was told on Friday that late last month approximately 27 files stolen from the HSE…