As seen on the European Data Protection Board website, a decision that reminds us how broad the definition of “personal information” is in the GDPR. The monetary penalty is not large by U.S. standards (slightly more than $12,100.00), but it’s the point and notification required. Background information Date of final decision: 6 July 2022 National…
Category: Exposure
Change of Heart? OptusData says they won’t leak or sell more data
After leaking more than 10,000 records from Optus earlier today, “OptusData” appears to have had a change of heart. Their original post was deleted and one hour ago, they posted: Optus Data will not be sold or leaked Too many eyes. We will not sale data to anyone. We cant if we even want to:…
Optus Under $1 Million Extortion Threat in Data Breach
Jeremy Kirk has done a terrific job of investigating and reporting on what we know so far about the Optus data leak and extortion attempt. He reports: Early Saturday, a person going by the nickname “Optusdata” published two samples of the purported stolen data on a well-known data leak forum. The attacker writes that Optus…
Ca: Yukon education department accidentally leaks student data
Chris Windeyer reports: A few errant keystrokes by an education department worker exposed the data of more than 500 Yukon students, according to a notification obtained by CBC News. “[T]he breach involves a risk of significant harm to your privacy,” reads the letter to affected students. The letter says names, phone numbers, email addresses, dates…
UK: Email blunder sees school send details of vulnerable children to all pupils
David Hannant reports: Parents are calling for an investigation into a Norfolk school after an email containing confidential details of students’ mental health was mistakenly sent to all pupils. Wymondham High Academy has confirmed a staff member accidentally sent a message containing information about children who were referred to its wellbeing services with anxiety to the entire school. Read more at…
“Computer hacker steals sensitive information from 20,000 Christchurch hot pools customers” — NO. That’s NOT what happened.
There is a highly misleading news report on Stuff today. Permit DataBreaches to set the record straight by quoting some statements from the news story and responding. Liz McDonald reports: Personal information about as many as 20,000 members of the public has been stolen in a data breach at Christchurch City Council’s He Puna Taimoana hot pools….