BBC reports that Beijing authorities have arrested 160 on charges of stealing personal information and have shut down 13 sites allegedly involved in trading stolen personal information. This is in addition to the 1,700 arrested last month. Read more on BBC.
Category: Non-U.S.
UK: Contract catering firm signs undertaking to improve data protection
Without fanfare, the ICO has published an undertaking signed by Holroyd Howe Independent Ltd in Reading. The gist of the breach is that in response to a request for a copy of an ex-employee’s payslip (requested by the ex-employee), the data processor mailed a document disclosing the relevant month’s payslips for all of the contract catering firm’s…
AU: Hackers hit Telstra site (updated)
Ben Grubb reports: Telstra has been hit by a “hacking attack” affecting 35,000 customers, just a week after one of its IT staff told a security conference the telco was reviewing how it secured and stored customer information. The hacking attack occurred on the servers of a third party company that runs Telstra BigPond’s GameArena and Games Shop websites, the telco…
WHMCS victim of social engineering; over 500,000 client records stolen, deleted from server, and dumped publicly
Why hack when you can socially engineer employees into giving you the keys to the kingdom? Client management billing platform WHMCS reports that hacker group UGNazi successfully socially engineered their web hosting firm into providing the hackers with admin credentials. The hackers then proceeded to acquire their data, delete it, and dump it. The attack…
UK: Personal details of Army snipers found in trunk of a second-hand car
This morning’s “Oh FFS!” breach: details of 28 snipers were found in the trunk of a used car purchased last August. The documents included “the names of personnel from a number of regiments, including one currently operating in Afghanistan, as well as details of a snipers’ training course.” And if that didn’t make it easy…
Telstra privacy breach was ‘one little oops’
Andrew Colley reports: It was “one little oops” that led Telstra to expose over 800,000 customer records on the web last December. That was the way Telstra’s security operations specialist Scott McIntyre described the mystery cause of the massive privacy breach at an IT security event on Wednesday, getting in ahead of a heavily delayed…