Derek Dunn reports: A cyber-attack breached the IT system at Arnprior Regional Health (ARH) on Dec. 21. “Our team noticed unusual activity and acted immediately,” reads a statement on the hospital and nursing home’s website. “We have determined through our investigation that data connected with Arnprior Regional Health has been taken.” Read more at Inside Ottawa Valley….
Category: Non-U.S.
South Australian gov issues breach notice to hacked payroll provider
Justin Hendry reports: Payroll software provider Frontier Systems has been issued with a breach of contract notice over a ransomware attack that saw the personal details of 80,000 South Australian public servants stolen. Department of Treasury and Finance chief David Reynolds revealed the the action after it emerged government data had been stolen directly from…
Polish DPA imposes a fine on Warsaw University of Technology for not complying with its obligation
Background information Date of final decision: 9 December 2021 National case Controller: Warsaw University of Technology Legal Reference: Principles (Art. 5(1)(f), Art. 5(2)), Data protection by design and by default (Art. 25(1)), Security of processing (Art. 32(1), Art. 32(2)) Decision: infringement of GDPR, fine issued Key words: principles, processing, security, data protection Summary of…
Cyberattack Hits Ukrainian Websites as Russia Tensions Mount
Alberto Nardelli, Vladimir Kuznetsov and Kateryna Choursina report: Ukraine’s worst cyberattack in four years brought down the websites of scores of government agencies for hours. Authorities didn’t immediately identify the source of the hacks, which took place as tensions with Russia intensified over its troop buildup across the border. Seventy government agencies were hit, including…
Breach of the Protection and Accountability Obligations by Nature Society (Singapore) 14 Jan 2022
A financial penalty of $14,000 was imposed on Nature Society (Singapore) for breaches of the PDPA. First, the organisation failed to put in place reasonable measures to protect personal data on its website database. Second, it did not appoint a data protection officer. Lastly, it did not have written policies and practices necessary to comply…
Ca: City hall privacy breach affects staff
Susan Gamble reports: A privacy breach that may have exposed Brantford municipal staff job application records, vaccination status and personal addresses was announced by the city on Wednesday evening. A news release sent out by the city said the breach was in an internal intranet system, which is only accessible to city staff, and not…