Anna Isaac reports: “The software we use is older than me, and some of the hardware is older than my dad,” says Siddharth*. He is one of a team fighting a daily battle to sustain ancient IT infrastructure at Thames Water. Sometimes the defences are breached. Thames, the UK’s largest water and waste treatment company,…
Category: Non-U.S.
Turkey fines Amazon’s Twitch 2 million lira for data breach
Canan Sevgili of Reuters reports: Turkey’s Personal Data Protection Board (KVKK) has fined Amazon.com’s gaming platform Twitch 2 million lira ($58,000) over a data breach, the official Anadolu Agency reported on Saturday. KVKK launched an investigation after a 125 GB data leak. It found that Twitch had failed to take adequate security measures beforehand, addressing…
Authority: Up to 300k people impacted in City of Helsinki’s massive data breach
YLE News reports: The Safety Investigation Authority of Finland (Otkes) is continuing an investigation of a massive data breach that targeted the City of Helsinki last spring. Otkes said investigators have already collected more than 90 percent of the data involved in the exceptionally large-scale breach. The City first announced news of the breach in the spring….
Hackers now sending physical malicious letters, Swiss authorities warn
Ernestas Naprys reports: Is there anything threat actors won’t do to gain initial access? Swiss authorities are warning about a new sophisticated cybersecurity threat – malicious counterfeit letters. Cyber bandits have launched a malicious campaign across Switzerland using counterfeit letters that appear to be from MeteoSwiss (the Federal Office of Meteorology and Climatology). The victims…
Ransomware attack on Bucharest: data of hundreds of thousands of citizens involved
The following is an automated machine translation. Matthew Garvey reports: The data of approximately 200,000 citizens of Sector 5 (such as CNP, first and last name, address, among others) were put up for sale by the hackers who launched a cyber attack on the City Hall at the end of October. The attackers also gained…
Germany drafts law to protect researchers who find security flaws
Bill Toulas reports: The Federal Ministry of Justice in Germany has drafted a law to provide legal protection to security researchers who discover and responsibly report security vulnerabilities to vendors. When security research is conducted within the specified boundaries, those responsible will be excluded from criminal liability and the risk of prosecution. “Those who want…