From the ICO: The Information Commissioner’s Office (ICO) has fined a London-based pharmacy £275,000 for failing to ensure the security of special category data. Doorstep Dispensaree Ltd, which supplies medicines to customers and care homes, left approximately 500,000 documents in unlocked containers at the back of its premises in Edgware. The documents included names, addresses,…
Category: Commentaries and Analyses
Henry County spends $650K to restore its computer network affected in a data breach
Cyware reports: Henry County, Georgia, was forced to pull out typewriters and switch to paper forms after it’s computer network was affected in a ransomware attack that occurred in July 2019. This tireless manual process appeared to have extended for the next couple of weeks until the affected systems were restored. Read more on Cyware
SonyLIV Fixes leaky Elasticsearch in record time
Once again, a service owned and control by a division of official Sony Entertainment has slipped up. This time, their error exposed a elasticsearch server leaking log entries that feed into a third-party tool. Sony is no stranger when it comes to reports of poor infosecurity and hacking incidents, but it is not often we…
China Citizen Watch (Finally) Secures 150TB of Leaking Data
China Citizen Watch, the official Chinese division of the Japanese watch giant Citizen, and Bulova Watch Company (a Citizen brand in the U.S.) have both been affected because China Citizen Watch or its hosting company left an unsecured RSYNC server online with more than 150TB of files. Cursory skimming of the files, necessitated by Citizen…
‘Incredibly sensitive’ data is open to cyberattack at Mass. tax-collection agency, audit report says
Colin A. Young reports: The state auditor has determined that the Department of Revenue has not done enough to defend sensitive taxpayer data like Social Security numbers and payment histories from cyberattacks, and the agency is working to bolster its strategic planning and training. The audit did not unearth new instances in which sensitive data…
Researcher Releases Data on 100,000 Phishing Attempts to Teach You How to Not Get Hacked
Lorenzo Franceschi-Bicchierai reports: A security researcher who specializes in tracking government hacking attempts published 25GB of data on 100,000 phishing attacks on Monday. […] Claudio Guarnieri, who works at Amnesty International and has been tracking targeted attacks against dissidents and activists for almost a decade, published the dataset to help other researchers track hackers, and…