Eileen Yu reports: Singapore’s government agencies will roll out several new “technical measures” for existing and new systems, including automated detection of emails containing sensitive data and stronger encryption for files. These are part of “interim” recommendations deemed necessary following a review of the public sector’s cybersecurity infrastructure and policies, which itself was carried out…
Category: Commentaries and Analyses
1.4 million student Social Security numbers found unencrypted in Maryland
Does anyone remember the massive data security incident involving the University of Maryland in 2014? Here’s a link to some of this site’s preliminary coverage of that breach. Hundreds of thousands impacted, lots of media coverage and analyses, and you’d hope that the state would have learned its lesson about storing and protecting student and…
Ca: RCMP sent confidential details of suicide attempt to wrong email chain: report
Catharine Tunney reports: The RCMP inadvertently sent an account of someone’s suicide attempt to the wrong email chain, leaving the details in the inboxes of more than 160 people, according to a report on the mishap. The email included the person’s name and date of birth, details of the suicide attempt, the injuries they sustained…
ROMANIA: Romanian Data Protection Authority issues fine for inappropriate TOMs
Andrei Stoica of DLA Piper writes: Just days after proudly announcing its first fine under the GDPR, the Romanian Data Protection Authority has done it again: World Trade Center Bucharest S.A. must pay 15,000 euro for breaching the provisions of Art. 32 para. (4) GDPR corroborated with Art. 32 paras. (1) and (2) GDPR. What…
Ransomware Attacks Create Dilemma For Cities: Pay Up Or Resist?
Wade Goodwyn reports: It’s been a bad summer so far for government information systems. Hackers have used ransomware to attack the data networks of Baltimore, the Georgia courts system and Lake City, Fla., to name a few. And the decision as to whether to pay the extortionists ransom is fraught. Pay them, get the decryption…
Quebec, federal Privacy Commissioners investigate Desjardins breach
From the Office of the Privacy Commissioner of Canada, an announcement concerning the alleged rogue insider breach at a financial institution that impacted the personal information of more than 2.9 million of its members, including 2.7 million individual members and 173,000 business members. On July 8, the Commissioner announced: The Commission d’accès à l’information du…