Bloomberg reports: Sony Pictures Entertainment Inc. lawyers have sent a letter asking news organizations to stop writing articles based on stolen documents released by hackers seeking to interrupt the release of the comedy “The Interview.” The letter, dated Sunday, was sent by attorney David Boies to news organizations including Bloomberg and The New York Times….
Category: Exposure
Rex Mundi reportedly leaking employee info
Belsec Blog has more details, but it looks like Tobasco.be and Z-Staffing.org are having their data leaked because they didn’t meet Rex Mundi’s demands. The data leak reportedly does not include national registry numbers, but the hackers are believed to be in possession of bank account numbers that have not (yet?) been leaked. Belsec Blog…
UK: Red faces at Cornwall Council as salary and personal information sent to wrong staff
The Packet reports: A ‘transfer error’ has been blamed for a large breach in data protection at Cornwall Council, with personal information, details of staff salaries and payouts for redundancy sent to the wrong people. The council has admitted that “approximately” 50 employees were sent the letters relating to colleagues in the education health and social welfare directorate. The…
AliExpress WebSite Vulnerability Exposes Millions of Users’ Private Information (Updated)
The Hacker News reports: A critical, but easily exploitable personal information disclosure vulnerability has been discovered in the widely popular online marketplace AliExpress website that affects its millions of users worldwide.. […] Amitay Dan, an Israeli application security researcher working at Cybermoon.cc, reported the vulnerability to The Hacker News after providing full disclosure of the flaw to the AliExpress…
AU: AFP mistakenly names two people involved in criminal investigation
Paul Farrell reports: The Australian federal police have inadvertently disclosed the identity of two people involved in a criminal investigation, the second accidental publication of material about investigations this year. The identities of the two were disclosed in documents released by the AFP under freedom of information laws. Read more on The Guardian.
IE: Teachers’ data breached on O2 web portal
Mark Tighe reports: The Office of the Data Protection Commissioner (DPC) has begun an investigation into a data breach affecting more than 1,000 teachers who signed up for a phone scheme offered by O2. Last week a member of the scheme, who wishes to remain anonymous, contacted The Sunday Times to express concern that O2’s web…