David Bernal recently had an update on the FocaLeaks incident previously covered by this site and DDoSecrets. On September 22, Bernal reported that Mauricio Arriaza Chicas, director of the National Civil Police (PNC), confirmed that they were conducting an internal investigation into FocaLeaks and a second with the Attorney General’s Office to find the perpetrators….
Category: Government Sector
QR codes temporarily removed from Sask. COVID-19 vaccine records due to ‘privacy breach’
Kelly Skjerven reports: QR codes are being temporarily removed from residents’ COVID-19 vaccination records due to a situation that eHealth Saskatchewan is treating as a privacy breach. A Saskatchewan government release said they were alerted to an issue downloading patient QR codes. “IT has identified that the COVID-19 vaccination records of up to 19 residents have the potential of…
Police investigating City of Helsinki data breach involving over 140 victims
The Helsinki Times reports: Helsinki police have begun a preliminary investigation into the actions of an employee of the City of Helsinki, who violated data privacy regulations by accessing the personal information of several individuals in the healthcare system without permission. In July, the City revealed that the employee, who worked in the social services and…
State-sponsored hacking group targets Port of Houston using Zoho zero-day
Catalin Cimpanu reports: A suspected state-sponsored hacking group has attempted to breach the network of the Port of Houston, one of the largest port authorities in the US, using a zero-day vulnerability in a Zoho user authentication appliance, CISA officials said in a Senate hearing today. Port officials said they successfully defended the attack, and “no…
UK: Second MOD data breach uncovered putting safety of Afghan interpreters at risk
Lizzy Buchan reports that there was a second email gaffe that exposed additional Afghan interpreters. Once again, it seems, email addresses were visible to all addressees instead of being in the blind-copied fields. Some 55 people’s details were revealed, according to the BBC. The disastrous blunder comes after Defence Secretary Ben Wallace was forced to…
Illinois discloses breach involving access control to Illinois Integrated Eligibility System
KHQA reports that ten months after a data breach involving the Illinois Integrated Eligibility System (IES), the state is now disclosing the incident. But as I read the notice below, it seems like it was first discovered 10 months ago. When did this breach actually begin? From the state’s notice, republished on KHQA: Pursuant to…