Jess Malcolm reports: The NSW government has deliberately failed to inform tens of thousands of people that their personal information was stolen in a cyber security attack on Service NSW employee emails, as the agency says it has no obligation to notify affected customers. Documents obtained by The Australian show Service NSW decided not to…
Category: Government Sector
Vermont Health Connect had 10 data breaches last winter
Katie Jickling reports that there were 10 instances where individuals saw other individuals’ information when connecting to Vermont Health Connect. I wouldn’t call that 10 data breaches. It sounds more like one problem that happened to 10 people. In any event, she reports: Andrea De La Bruere, executive director of the Agency of Human Services,…
BR: The National Library website falls victim to a ransomware attack and goes offline
Wellington Arruda reports (translation): Last Sunday [April 11], the National Library website was the target of a ransomware attack and needed to be taken down. The agency, linked to the Special Secretariat for Culture, opted to shut down the servers to alleviate the potential problems caused and new invasions. However, last Tuesday [April 13] the site was activated again, and…
NL: A hard disk with data of 30,000 people stolen from the Amsterdam tax office
Jeffrey Clark reports: A hard drive was stolen from a computer used to scan incoming mail items from Municipal Tax Service buildings in Amsterdam. Alderman Victor Everhardt (Finance) wrote this in a letter to City Council (pdf). The hard drive contains document scans sent by nearly 30,000 taxpayers from July 2020 to March 2021. Read…
Cyber attacks on the municipalities of Brescia, Caselle Torinese and Rho: first stolen data published
Marco A. De Felice has an update on some Italian municipalities hit by DoppelPaymer ransomware. This site has previously reported that Brescia and Rho had been hit, but now De Felice reports that DoppelPaymer operators have started dumping data from Brescia, Caselle Torinese, and Rho: The three municipalities decide not to pay the ransom requested…
DOL Issues Cybersecurity Best Practices for ERISA Covered Retirement Plans
Joseph J. Lazzarotti of JacksonLewis writes: Today, the U.S. Department of Labor’s Employee Benefits Security Administration (EBSA) issued much anticipated cybersecurity guidance for employee retirement plans. This comes more than four and a half years after the ERISA Advisory Council, a 15-member body appointed by the Secretary of Labor to provide guidance on employee benefit plans, shared with the…