Today’s reminder of the insider threat was reported by Tribune News Service: The cybercrime cell here has registered an FIR against Divyanshu Jain, Director of Divrit Consultancy Pvt Ltd, and Aaina Gupta, a former compliance assistant at a Chandigarh-based chartered accountancy firm, for allegedly conspiring to steal sensitive data of over 2,000 clients and misusing…
Category: Non-U.S.
NDPC, Health Ministry Partner to Boost Data Protection in Healthcare
Voice of Nigeria reports: The Nigeria Data Protection Commission (NDPC) has announced a collaboration with the Federal Ministry of Health and Social Welfare to establish a robust data protection framework within the healthcare sector. This was revealed in a statement issued on Thursday in Abuja by Mr. Itunu Dosekun, Head of the NDPC Media Unit….
British law firm fined after ransomware group publishes confidential client data
Alexander Martin reports: A British law firm has been fined £60,000 ($80,000) after cybercriminals accessed the company’s case management system and published sensitive information on the dark web, something the company only learned about after being contacted by the National Crime Agency. DPP Law, based in Bootle, was found to have breached the United Kingdom’s…
Hacking group Anonymous targets Russia, releases Trump files
Update: As predicted previously, this one has been debunked already, it seems. See https://www.dailydot.com/debug/anonymous-10tb-leak-russia-trump-debunk/ Thanks to the reader who sent in this link. Original post: The Express Tribune reports: Hacking group Anonymous has claimed responsibility for a large-scale cyberattack on Russian networks, releasing what it says is 10 terabytes of leaked data containing sensitive information…
South Africa Introduces Mandatory e-Portal Reporting for Data Breaches
Dan Cooper, Benjamin Haley, Deon Govender, Ahmed Mokdad, and Mosa Mkhize of Covington and Burling write: On April 7, 2025, South Africa’s Information Regulator announced a new requirement for organizations to report data breaches—referred to under local law as “security compromises”—via an online eServices Portal. The announcement marks a significant procedural shift in how companies must comply with…
Queensland has a new breach notification law going into effect July 1, 2025
Claire Doneley reports: On 4 December 2023, the Queensland Parliament gave assent to the Information Privacy and Other Legislation Amendment Act 2023 (Qld) (Act), with privacy reforms to the Information Privacy Act 2009 (Qld) (IP Act) to commence 1 July 2025. You can read more about that here. In Queensland it has not been compulsory for agencies to notify the…