A Pakistani web site, urdugalaxy.com, has reportedly been breached, according to a data dump posted on Pastebin. The database, which has not been confirmed by the web site as theirs, contains data on registered site users’ first and last names, city, country, cellphone number, profession, email address, date of birth, password (in plaintext), and ID (although…
Category: Non-U.S.
Dk: Statoil Fuel & Retail closes three customer portals as result of data breach (update)
On Tuesday 28 June, Statoil Fuel & Retail closed down its customer portals in Norway, Sweden and Denmark after becoming aware that their information may have been compromised as a result of a data breach. The company has also notified the Data Protection Agency of the situation. “There are indications that client data may have…
AU: Mosman Municipal Council hacked by Anonymous?
Hamish Barwick reports: Sydney’s Mosman Municipal Council website has suffered a security breach that made the details of nine council staff available for download. However, according to a statement on the Council’s website no ratepayer information from the internal systems had been accessed. The hack was made via an SQL injection exploit on a subsidiary…
(follow-up) Sydney Uni ‘breached student privacy’
An investigation has found the University of Sydney failed in its obligations by not securing students’ private details on its website. A section of the university’s website was shut down in January after it was found sensitive information could be obtained by entering a student’s identification number. No password was required to access the name…
Groupon leaks entire Indian user database
Patrick Gray writes: The entire user database of Groupon’s Indian subsidiary Sosasta.com was accidentally published to the Internet and indexed by Google. The database includes the e-mail addresses and clear-text passwords of the site’s 300,000 users. It was discovered by Australian security consultant Daniel Grzelak as he searched for publicly accessible databases containing e-mail address…
Man’s ‘horror’ at NHS web privacy leak
Rhianne Pope reports: A jobseeker has said he is “horrified” after logging on to an NHS job site and seeing other people’s data. The 62-year-old from Bicester, who wished to remain anonymous, said he visited Jobs.nhs.uk to look for a new maintenance job. But after registering his name on the site last Monday, he realised…