Rachel Yonkunas reports: Multiple investigations are underway after a contact tracing data breach exposed personal health information of 72,000 Pennsylvanians. The unsecured information was collected by employees of Insight Global—the company paid around $30 million in taxpayer money to perform contact tracing in the state. “You could see people’s phone numbers, how many kids they…
Category: Government Sector
Presque Isle police data leaked by threat actors — somewhat
Kathleen Phalen Tomaselli reports: The ransom time clock on the Presque Isle Police Department’s ransomware attack ran out Wednesday at about 9:30 p.m. in a dramatic red-numbered countdown of minutes and seconds racing toward zero on the hacker’s dark web site. But it looks like the unidentified criminals have not yet made their next move…
UK: HMRC outlines late-filing penalty notices data breach
ICAEW [ Institute of Chartered Accountants in England and Wales] members in practice have been among thousands of agents who have received late-filing penalty notices which are not for their clients. HMRC has investigated and provided an update on what went wrong. […] The total number of individual penalty notices sent to the wrong agent…
Sekurak blog interviewed Babuk about Metropolitan DC Police attack
A blogger from Sekurak (a Polish blog) conducted a great interview with Babuk yesterday. You can read the write-up here. Here’s a snippet from it: sekurak : How did you get to the police infrastructure in Washington? Babuk : 0-day VPN. We can’t say anything else, it’s 0-day after all. sekurak : When did the Washington Police realize that…
Dutch government pauses coronavirus app over data leak fears
AP reports: The Dutch government has temporarily disabled its coronavirus warning app amid data privacy concerns for people who have the app installed on phones using the Android operating system. Health Minister Hugo de Jonge announced late Wednesday that the CoronaMelder app will stop sending warnings for 48 hours while the government checks if users’ data is…
Ransomware gang leaks court and prisoner files from Illinois Attorney General Office
Catalin Cimpanu has an update to a situation first reported on DataBreaches.net last week. The operators of the DopplePaymer ransomware have leaked a large collection of files from the Illinois Office of the Attorney General after negotiations have broken down and officials refused to pay a ransom demand, The Record has learned. Perhaps the most interesting…