AU health insurer Medibank has been diligently providing updates on a massive data breach. With each update, they have revealed growing awareness of how much personal data has been accessed or exfiltrated. Their latest update, issued overnight, begins: It has become clear overnight that the criminal has accessed patient information relating to My Home Hospital….
Category: Non-U.S.
Paying off hackers is common, says top Australian govt cybersecurity firm
Byron Kaye reports: Corporate insurers routinely pay hackers a ransom for the return of stolen customer data, a top Australian government cybersecurity provider said on Tuesday (Oct 25), as the country’s biggest health insurer revealed the growing scale of a recent breach. The claim from Macquarie Telecom Group, which runs cybersecurity for 42 per cent…
Hive claims ransomware attack on Tata Power, begins leaking data
Ax Sharma reports: Hive ransomware group has claimed responsibility for a cyber attack disclosed by Tata Power this month. A subsidiary of the multinational conglomerate Tata Group, Tata Power is India’s largest integrated power company based in Mumbai. Read more at Bleeping Computer.
Medibank updates incident report; customer data also affected
Medibank has provided yet another update on the ransomware attack previously noted on this site: There has been a further development in Medibank’s cybercrime event, which is subject to a criminal investigation by the Australia Federal Police (AFP). It has become clear that the criminal has taken data that now includes Medibank customer data, in…
UK: ICO fines Interserve £4,400,000 for inadequate data security
Between 18 March 2019 and 1 December 2020 Interserve Limited (“Interserve”) failed to process personal data in a manner that ensured appropriate security of the personal data using appropriate technical and organisational measures as required by Article 5(1)(f) and Article 32 GDPR. This rendered Interserve vulnerable to a cyber-attack which took place in the period…
Blazing South Korean datacenter operator raided by cops, blames its own batteries?
Laura Dobberstein reports: South Korean police have reportedly raided the premises of SK C&C, the operator of the datacenter that caught fire on the weekend of October 15 and disrupted the operations of local web giants Naver and Kakao. […] SK C&C, meanwhile, has apologized for the incident and admitted that uninterruptible power supplies appear…