Hacktivism is not dead, although it hasn’t been in the news quite as much as financially driven ransomware incidents these past few years. Lucas Ropek reports: In an apparent bid to stop a Russian arms build-up near the Ukrainian border, a “pro-democracy” hacktivist group claims to have hacked the Belarusian railway system—allegedly one of the conduits for tanks and…
Category: Government Sector
Sacramento County: Hundreds of personal records exposed in data breach
Jose Fabian provides details on a Sacramento County phishing incident reported to HHS last month: Hundreds of records containing personal information of Sacramento County residents were exposed in a phishing attack last year, the county said. Sacramento County said 2,096 protected health information and 816 personal identifiable records were exposed during a cyber attack on June…
IRS Will Soon Require Selfies for Online Access
Brian Krebs reports: If you created an online account to manage your tax records with the U.S. Internal Revenue Service (IRS), those login credentials will cease to work later this year. The agency says that by the summer of 2022, the only way to log in to irs.gov will be through ID.me, an online identity verification service that…
Thousands of Indians’ Covid-19 related data leaked online (Updated to include NHA’s denial that it came from Co-WIN)
PTI reports: Personal data of thousands of people in India has been leaked from a government server which includes their name, mobile number, address and Covid test result, and these information can be now be accessed through an online search. The leaked data has been put on sale on Raid Forums website where a cyber…
UK: Gloucester Council cyber attack linked to Russian hackers
BBC reports: A cyber attack which has knocked out parts of a council website has been linked to the work of Russian hackers. Gloucester City Council became aware that its IT systems had been affected on 20 December last year. Since then, the council’s online revenue and benefits, planning and customer services have been affected….
South Africa’s new traffic fine system exposed personal data
Jan Vermeulen reports: An online interface set up for the Administrative Adjudication of Road Traffic Offences (Aarto) system exposed the personal information of every South African who received an infringement notice under the new law. Personal data contained in the leak included full names, ID numbers, residential or business addresses, phone numbers, vehicle registration information,…