Kareem Chehayeb reports: Pakistani cybersecurity researcher Etizaz Mohsin was in a hotel room in Qatar when he unexpectedly discovered a technical vulnerability in its internet system that exposed the private information of hundreds of hotels and millions of guests worldwide. […] “I found out that there is a service running rsync [file synchronization tool], which…
Category: Non-U.S.
Data leak at Desjardins: Industry watchdog wants to ban mortgage broker
Hugo Joncas reports (machine translation follows): Mathieu Joncas, who is also a private lender, bought confidential information on “150,000 to 200,000” Desjardins customers without ensuring their consent. During the hearings, he admitted having given this information to a fellow broker in January 2017. In September 2021, the disciplinary committee of the Organisme d’autoréglementation du courtage…
Ca: St. Joe’s fires employee who snooped into medical records of 49 patients ‘out of curiosity’
Sebastian Bron reports: St. Joseph’s Healthcare Hamilton has fired an employee who inappropriately snooped into the medical records of four dozen patients. The massive privacy breaches spanned more than a year and saw 49 patients’ personal health information — think names, medical record numbers, ethnicities, family doctors, birthdays, phone numbers and addresses — exposed to a…
Threat actors leak data from Scottish Association for Mental Health
It appears that RansomExx threat actors have hit the Scottish Association for Mental Health (SAMH). On March 18, SAMH posted a notice on its website. The full notice says it was dealing with an “I.T incident, which is affecting our colleagues’ ability to receive and respond to emails across both our national and local service…
Ca: Dang claims he hacked Alberta vaccine passport system using Kenney’s birthday to highlight flaws
Ashley Joannou reports: Edmonton-South MLA Thomas Dang has admitted to hacking the Alberta government’s COVID-19 vaccine record system last year using Premier Jason Kenney’s birthday. In an exclusive interview with Postmedia, Dang, who resigned from the NDP caucus in December and now sits as an independent, said he did it to highlight security vulnerabilities and…
Africa Data Security and Privacy Guide
Janet MacKenzie, Anne-Marie Allgrove, Kellie Blyth, Elisabeth Dehareng, Ghada El Ehwany, Brian Hengesbaugh, Theo Ling, Paolo Sbuttoni, and Carlos Vela-Trevino of Baker McKenzie write: The pandemic drove home the high value of personal data to the global economy, while also highlighting its vulnerability to abuse and attack. In response, governments around the world, including those…