Hamish McNeilly reports: An online loophole allowed a handful of users to access a veritable treasure trove of information at the University of Otago. The types of information, revealed to Stuff following an Official Information Act request, included phone numbers, addresses, passport details, exam results, police vetting lists, academic integrity investigation invitation letters, referee reports,…
Category: Non-U.S.
The Pope’s website taken offline in suspected hacker attack
Anugraha Sundaravelu reports: Hackers have targeted the headquarters of the Roman Catholic Church in an apparent cyberattack. The official Vatican website was taken offline on Wednesday following an apparent hacking attack, the Holy See said. ‘Technical investigations are ongoing due to abnormal attempts to access the site,’ Vatican spokesman Matteo Bruni said, without giving any…
De: Klinikum Lippe hospital decrypts data after “intensive negotiations” with ransomware attackers
The Klinikum Lippe describes itself as one of the largest municipal hospitals in Germany and part of the University Hospital OWL of the University of Bielefeld. On November 17, they detected a significant cyberattack that impacted all three of their locations: Detmold, Lemgo, and Bad Salzuflen. From its own statements, it appeared that the hospital…
Sandworm gang launches Monster ransomware attacks on Ukraine
Jeff Burt reports: The Russian criminal crew Sandworm is launching another attack against organizations in Ukraine, using a ransomware that analysts at Slovakian software company ESET are calling RansomBoggs. In a Twitter thread, the ESET researchers wrote that they had detected RansomBoggs deployed within the networks of “multiple organizations in Ukraine.” While some aspects of RansomBoggs…
Nurse removed confidential patient files from three nursing homes in Cork and Kerry
Sean McCarthaigh reports: A registered nurse had admitted being guilty of professional misconduct over the unauthorised taking of a large number of confidential patient records and medical files from three nursing homes where she worked in Kerry and Cork. The nurse, Rasa Leliene, appeared before a fitness-to-practise inquiry of the Nursing and Midwifery Board of…
Liability for cyber attacks clarified by Ontario Court of Appeal
Molly Reynolds, Nic Wall, and Shalom Cumbo-Steinmetz of Torys LLP write: The Ontario Court of Appeal released a trilogy of decisions on November 25 on the availability of the “intrusion upon seclusion” tort in data breach class actions. At issue was whether the tort can be used against corporate defendants that had been hacked by…