Elsa Maishman reports: An investigation has been launched by Police Scotland after the medical records of more than 150 NHS Lothian staff members were “inappropriately accessed” by a colleague, the Scotsman reported. After a delay in searching for a record of the incident, due to NHS Lothian being unable to provide certain details over fears…
Category: Insider
Could an ex-employee be planting ransomware on your firm’s network?
We’ve all seen too many instances where vengeful former employees have tried to sabotage their former employer’s network. Even when their employers remember to revoke access for the individual, they often find other ways in — like using a former colleague’s credentials or having previously created another user on the system with credentials. But would…
Yandex suffers data breach after sysadmin sold access to user emails
Ionut Ilascu reports: Russian internet and search company Yandex announced today that one of its system administrators had enabled unauthorized access to thousands of user mailboxes. The company discovered the breach internally, during a routine check of its security team. The investigation revealed that the employee’s actions led to the compromise of almost 5,000 Yandex…
WeChat Data Leak Leads To Arrest Of Tencent Executive Zhang Feng
Cullen Paradis reports: Zhang Feng, an executive at China’s most valuable public company Tencent Holdings, has been detained by authorities in connection to a data leak and corruption scandal. According to the Wall Street Journal, Zhang is accused of sending user data from the messaging app juggernaut WeChat to Sun Lijun, the former vice public security minister now…
Employee Confidentiality and Data Theft: Recent UK Developments
Christopher Walter, Helena Milner-Smith, Louise Freeman, Dan Cooper, Mark Young, and Mark Welch of Covington and Burling write, in part: Unauthorized Access to Personal Data was an Offence under the Computer Misuse Act The ICO recently published details of its prosecution of a motor industry employee who, during her employment, compiled and transferred road traffic…
Contractor for USAO Southern District of Iowa Provided Sensitive, Non-Public Info on Criminal Investigations to a Friend; Informants Wound Up “Outed” Online
An Iowa woman pleaded guilty today for unlawfully using a former Department of Justice contractor’s government computer to access government records and to obtain sensitive, non-public law enforcement information, announced Acting Assistant Attorney General Nicholas L. McQuaid of the Justice Department’s Criminal Division. According to admissions made in connection with her guilty plea, Rachel Manna,…