From the Information Commissioner’s Office: A former company director found guilty of illegally obtaining people’s personal data and selling it to solicitors chasing personal injury claims, has been fined for breaches of data protection and issued with a confiscation order under the Proceeds of Crime Act 2002. David Cullen of Middleton Road, Manchester, was the…
Category: Business Sector
AWS S3 server leaks data from Fortune 100 companies: Ford, Netflix, TD Bank
Catalin Cimpanu reports: Attunity, an Israeli IT firm that provides data management, warehousing, and replication services for the world’s biggest companies, has exposed some of its customers’ data after it left three Amazon S3 buckets exposed on the internet without a password. The leaky AWS S3 buckets contained information on Attunity’s own operations, but also…
5 million personal records belonging to MedicareSupplement.com exposed to public
Paul Bischoff writes: An online database of more than 5 million records apparently belonging to MedicareSupplement.com was left open and accessible to the public. On May 13, 2019, Comparitech worked alongside security researcher Bob Diachenko to uncover the publicly available MongoDB instance that appears to be part of the website’s marketing leads database. MedicareSupplement.com is…
Breach at Cloud Solution Provider PCM Inc.
Brian Krebs reports: A digital intrusion at PCM Inc., a major U.S.-based cloud solution provider, allowed hackers to access email and file sharing systems for some of the company’s clients, KrebsOnSecurity has learned. El Segundo, Calif. based PCM [NASDAQ:PCMI] is a provider of technology products, services and solutions to businesses as well as state and federal…
ASIC: 19-153MR Computer hacker Steven Oakes jailed for unauthorised access and insider trading
JUNE 25: IT consultant Steven Oakes has today been sentenced in the County Court at Melbourne to a total effective sentence of three years imprisonment, and ordered that he be released after serving 18 months of the term of imprisonment, on his own recognisance to be of good behaviour for 18 months, after pleading guilty…
Kenya telecoms giant sued over ‘data breach’
BBC reports: Kenya’s biggest mobile service provider Safaricom is being sued for allegedly violating the data privacy of its 11.5 million consumers. A subscriber has accused the telecom giant of exposing his sports betting history and biodata, according to a legal petition filed at the High Court in the capital, Nairobi. Read more on Newsday…