In July, DataBreaches published a piece highlighting the increasing number of breaches and leaks affecting Indonesians showing up on marketplaces where personal data is shared or sold. “Growing risk to Indonesian citizens’ privacy as breaches and leaks appear on marketplaces” included several recent examples found on the popular forum, Breached.to (Breach Forums). Now a new…
Category: Commentaries and Analyses
Norwegian parliament fined
From the Norwegian Data Protection Authority: The Norwegian parliament – the Storting – had a data breach in late 2020. In January, the Data Protection Authority gave notice of a NOK 2 million fine for inadequate security. We have now considered the Storting’s comments and decided to maintain the fine. Norwegian parliament fined “Our conclusion…
HC3 Threat Profile: Evil Corp
The following is not a paragraph from a story about fictional cybercriminals called Evil Corp. The following paragraph is from a white paper released this week by the U.S. Department of Health & Human Services because there is a criminal enterprise known as Evil Corp that poses a serious threat to the healthcare sector. Typographical…
Insurers must rethink handling of cyber attacks on states
There have been a number of lawsuits addressing the issue of whether some cyberattacks should be excluded from cyberinsurance coverage as “acts of war.” Josephine Wolff, author of Cybersecurity Policy, writes: The invasion of Ukraine earlier this year drew considerable global attention to the possibility that Russia might combine its physical attacks on the country…
OH: Investigation reveals no evidence of data breaches within Newton Falls school’s network systems
Sydney Stalnecker reports: The investigation conducted on the Newton Falls Exempted Village School District and NEOMIN’s technology network systems revealed there is no evidence of any data breaches with either institution’s network systems. Earlier in August, the investigation began after the district informed students and parents of a possible security breach. The district disproved parents’…
New Golang Ransomware Agenda Customizes Attacks
Mohamed Fahmy, Nathaniel Gregory Ragasa, Earle Maui Earnshaw, Bahaa Yamany, Jeffrey Francis Bonaobra, and Jay Yaneza write: We recently discovered a new piece of targeted ransomware that was created in the Go programming language and that explicitly targeted one of our customers. This was evidenced by the specific email addresses and credentials the ransomware used. Malware written in…