The Helsinki Times reports: Helsinki police have begun a preliminary investigation into the actions of an employee of the City of Helsinki, who violated data privacy regulations by accessing the personal information of several individuals in the healthcare system without permission. In July, the City revealed that the employee, who worked in the social services and…
Category: Government Sector
State-sponsored hacking group targets Port of Houston using Zoho zero-day
Catalin Cimpanu reports: A suspected state-sponsored hacking group has attempted to breach the network of the Port of Houston, one of the largest port authorities in the US, using a zero-day vulnerability in a Zoho user authentication appliance, CISA officials said in a Senate hearing today. Port officials said they successfully defended the attack, and “no…
UK: Second MOD data breach uncovered putting safety of Afghan interpreters at risk
Lizzy Buchan reports that there was a second email gaffe that exposed additional Afghan interpreters. Once again, it seems, email addresses were visible to all addressees instead of being in the blind-copied fields. Some 55 people’s details were revealed, according to the BBC. The disastrous blunder comes after Defence Secretary Ben Wallace was forced to…
Illinois discloses breach involving access control to Illinois Integrated Eligibility System
KHQA reports that ten months after a data breach involving the Illinois Integrated Eligibility System (IES), the state is now disclosing the incident. But as I read the notice below, it seems like it was first discovered 10 months ago. When did this breach actually begin? From the state’s notice, republished on KHQA: Pursuant to…
Tamil Nadu Public Department comes under ransomware attack
S. Vijay Kumar reports: A ransomware attack is said to have encrypted certain sensitive documents of the Tamil Nadu Public Department since Friday morning. Some of the files encrypted relate to VIP visits, their programmes and related arrangements made by State Protocol officials, official sources said. While the suspect has demanded payment of 1,950 USD…
FocaLeaks claims to have hacked El Salvador Police, gained access to records on civilians, agents, and criminal investigations
Hacktivists known as FocaLeaks claim to have hacked and exfiltrated data on 37,000 agents of Policía Nacional Civil de El Salvador (PNC). The information can allegedly be used to access government records on all citizens and to access criminal investigations. Ransomware attacks on police departments have made headlines a number of times over the past…