IBT reports: For last the few years, Indian Railways Catering & Tourism Corporation (IRCTC) has made headlines for wrong reasons particularly related customer data leaks on its websites and how slow it takes time to fix it. And yet, the state-run firm seems to have learnt any lessons, as a new report has emerged that…
Category: Government Sector
Pompano Beach warned nearly 4,000 residents of data breach involving Click2Gov
Wayne K. Roustan reports: A data breach at a company that handles the billing for municipal water service has Pompano Beach city officials working to minimize the potential damage. Hackers gained unauthorized access to credit or debit card data stored with software company CentralSquare and used for one-time online water bill payments made through the…
Delhi Citizens Data Leak
Bob Diachenko writes: On Feb 19, 2019, I have discovered a MongoDB that required no password. The database was located in an India region which (along with other data) also contained highly sensitive information collected on 458,388 individuals located in Delhi. A 4.1GB-sized database had been indexed by Shodan and was left unattended for public…
IRS employee charged with unlawful disclosure of SARs: Analyst Provided Information to a Los Angeles Attorney and a New York Reporter
SAN FRANCISCO – A federal criminal complaint, filed on February 4, 2019, was unsealed in San Francisco today, charging John C. Fry with unlawful disclosure of Suspicious Activity Reports, announced United States Attorney David L. Anderson and United States Department of the Treasury, Treasury Inspector General for Tax Administration (TIGTA), Special Agent in Charge Rod…
PA: Malware breach strikes Chester County computers
Michael P. Rellahan reports: A breach of Chester County government’s computer system via an internet bug led to intense work by county computer specialists over the Presidents Day weekend, but apparently has not led to any compromise of users’ information, a county spokesperson said Tuesday. Chester County’s Department of Computing and Information Services (DCIS) detected…
India’s state gas company leaks millions of Aadhaar numbers
Zack Whittaker reports: Another security lapse has exposed millions of Aadhaar numbers. This time, India’s state-owned gas company Indane left exposed a part of its website for dealers and distributors, even though it’s only supposed to be accessible with a valid username and password. But the part of the site was indexed in Google, allowing…