A blog post by Graham Cluley really resonated here this week. It begins: The Plymouth Herald reports on what appears to be an easy-to-avoid gaffe. An eagle-eyed passer-by spotted a password on clear display at Her Majesty’s Passport Office in Ebrington Street, scrawled on a flipchart leaning against an upper window. The paper contacted the UK Home Office,…
Category: Government Sector
Argentina exposes COVID-19 health data in error
Another elastic search instance, it seems. Tim Sandle reports: Argentina’s health officials have apparently exposed personal medical data relating to some 115,000 COVID-19 quarantine exemption applicants, in what represents a major health sector data breach. Read more on Digital Journal.
Personal details of staff released in Social Protection IT breach
Mick Clifford reports: Personal files of staff and former staff members at the Department of Employment Affairs and Social Protection were leaked in a data breach of one of the department’s IT systems. A malfunction in the system led to confidential information being shared with a wide number of staff in the department, the Irish Examiner has…
Pakistan Army identifies major cyber attack by India targeting mobile phones of govt, military officials
The News reports: Pakistani intelligence agencies have tracked a major security breach by Indian hackers whereby phones and other gadgets of government officials and military personnel were targeted, the military’s media wind said Wednesday. According to a statement by the Inter-Services Public Relations (ISPR), the cyber-attack by Indian intelligence agencies involved “a range of cyber…
Argentina exposes COVID-19 health data in error
Tim Sandle reports: Argentina’s health officials have apparently exposed personal medical data relating to some 115,000 COVID-19 quarantine exemption applicants, in what represents a major health sector data breach. […] An Elasticsearch database containing personal information of more than 115,000 Argentinians who applied for COVID-19 circulation permits was exposed on the web without a password…
Second Data Breach at Kentucky Unemployment System
Sarah Coble reports: Kentucky’s unemployment system appears to have suffered its second data breach in four months after a claimant reported being able to view another claimant’s personal data. The reporter of the alleged breach logged on to the Office of Unemployment Insurance’s (OUI) online system on July 27 to work on their unemployment application. While trying…