Ofir Dor reports: In early 2021, a team from Sygnia was called in to deal with an intrusion into the systems of a US technology company that develops and manufactures Wi-Fi equipment, and that has a $15 billion market cap. The company received an anonymous email demanding a ransom payment of 50 Bitcoins (about $1.9…
Category: Insider
UK: Cop appears at Hamilton Sheriff Court on trial over data protection breach
A police officer is on trial for accessing records related to an investigation into her alleged driving offenses. Rory Cassidy reports: A police officer has gone on trial accused of illegally accessing her own case file. Acting Sergeant Victoria Robb is said to have logged on to a computer and looked at details of driving offences she allegedly committed. Robb, 31, went…
Za: Absa data leak — more customers affected
Jan Vermeulen reports: Absa has sent a notice to several new clients found to be affected by a November 2020 data leak, when a former employee gave people’s personal information to a platform that sold it to third parties. The former Absa staff member behind the leak was a credit analyst who had access to risk modelling systems…
North Shore University Hospital notifies 7,614 patients of unauthorized access to personal information
The following is not a new incident. It is just a newly disclosed incident because of a law enforcement-requested delay in disclosure. North Shore University Hospital (NSUH) issued a notice on February 1, 2022 concerning insider-wrongdoing. The notice begins: NSUH learned that a former employee who worked at a medical office may have improperly accessed…
Sg: Ex-deputy lead of MOH data unit jailed for leaking daily Covid-19 case numbers in 2020
Low Youjin reports from Singapore: Despite having signed an undertaking to safeguard official information, a former deputy lead from a data management unit of the Ministry of Health (MOH) chose to leak classified Covid-19 information to members of a chat group on multiple occasions before it was officially announced to the public. Zhao Zheng’s attitude towards…
Michigan Medicine notifies 269 patients after discovering a snooping employee
Here’s a good example of how monitoring and logs can detect a problem and prevent even more problems. Michigan Medicine detected an employee accessing patient records without legitimate need. The improper access began in December, 2021, and continued until it was caught by monitoring on January 25, 2022. Access was cut off on January 27…