The Gleaner reports a follow-up on an unsecured storage server exposing personal information and COVID-related information of travelers to Jamaica. The exposed bucket was first reported by Zack Whittaker of TechCrunch on February 17: The storage server, hosted on Amazon Web Services, was set to public. It’s not known for how long the data was…
Category: Government Sector
India’s cyber defenses breached and reported; govt. yet to fix it
John Xavier reports that India’s government has been slow to respond to a report by ethical hackers that had been shared with the U.S. Department of Defense Cyber Crime Center (DC3): which initiated contact with the India’s National Critical Infrastructure Information Protection Centre (NCIIPC). Following this, the security team shared its 34-page threat report to…
Malaysia arrests 11 suspects for defacing government sites
Catalin Cimpanu reports: Malaysian officials announced on Thursday the arrest of 11 suspects believed to be part of a hacktivist group that defaced government websites during late January. The group, calling itself Anonymous Malaysia, defaced 17 websites for local governments and universities, according to posts they made on a Facebook page earlier this month. Read more on ZDNet….
Update to Chatham County ransomware attack
There’s an update to a previously reported ransomware attack by DoppelPaymer threat actors on Chatham County, North Carolina. Read the update in Courier-Tribune. They report that the ransomware entered the county network through a phishing email with a malicious attachment. In related news, the News & Observer reports that the ransom demand had been worth…
Yuba County was the subject of a ransomware cyber attack
David Wilson reports: Yuba County was recently the subject of a ransomware cyber-attack, which infected some of the county computer systems with malware, according to county spokesperson Russ Brown. The malware encrypted the affected systems and the attacker demanded payment from the county in order to obtain a decryption key. The county did not make…
Norwegian DPA issues fine to Municipality of Indre Østfold
As seen on the European Data Protection Board (EDPB): The Norwegian Data Protection Authority has fined the Municipality of Indre Østfold EUR 20 000 (NOK 200,000) for a confidentiality violation. Personal data that should have been restricted was available to unauthorized persons. The Municipality of Indre Østfold, formerly the Municipality of Askim, published the records…