RTHK reports: More than a million customers of the Harbour Plaza Hotel group are being advised to be on their guard for possible scams after its booking database came under a cyber attack. Privacy Commissioner Ada Chung said on Friday that she’s probing the data leak involving 1.2 million customers, after receiving a report from…
Category: Non-U.S.
Donation site for Ottawa truckers’ ‘Freedom Convoy’ protest exposed donors’ data
Zack Whittaker reports: The donation site used by truckers in Ottawa who are currently protesting against national vaccine mandates has fixed a security lapse that exposed passports and driver licenses of donors. […] TechCrunch was tipped off to the data lapse after a person working in the security space found an exposed Amazon-hosted S3 bucket…
UK: ‘Human error’ let criminals hack SEPA’s systems with £42m unaccounted for
David Bol reports: Scotland’s auditor general has revealed that a huge cyber attack on the Scottish Environmental Protection Agency (Sepa) was carried out after “human error” allowed criminals to access systems. Sepa suffered a huge ransomware attack on Christmas Eve in 2020 which led to around 1.2GB of data, amounting to at least 4,000 files,…
NetWalker ransomware affiliate sentenced to 80 months in prison
Sergiu Gatlan reports an update to the prosecution of a Canadian NetWalker affiliate. The NetWalker site was seized in January, 2021, and at the same time, the U.S. announced the indictment of Vachon-Desjardins. Although they sought his extradition to the U.S., it appears that he pleaded guilty in Canada to charges stemming from crimes involving…
Cyberattack brings down Vodafone Portugal mobile, voice, and TV services
Catalin Cimpanu reports: Vodafone Portugal said today that a large chunk of its customer data services went offline overnight following “a deliberate and malicious cyberattack intended to cause damage and disruption.” The company’s 4G and 5G mobile networks, along with fixed voice, television, SMS, and voice/digital answering services are still offline following the attack. Read…
Microsoft Details Malware Attacks on Ukrainian Organizations
Lindsey O’Donnell-Welch reports: A known Russia-linked threat group has been targeting an array of organizations in Ukraine – including government, military, law enforcment, non-profit and judiciary entities – in an attempt to steal sensitive data. Microsoft detailed several malware campaigns over the past six months by the Actinium threat group (also known as Gamaredon or…