In January 2021, the Scottish Environmental Protection Agency (SEPA) disclosed it was in the throes of a ransomware attack. In June 2021, SEPA revealed that it was building a new IT system from scratch and had not recovered all of its files. Now, Andrew Picken of BBC reports: Scotland’s environment watchdog has written off £2m…
Category: Non-U.S.
Securitas misconfiguration exposed airport employee info
From SafetyDetectives: The SafetyDetectives cybersecurity team discovered a critical data leak affecting the prominent multinational security company, Securitas…. One of the company’s Amazon S3 buckets was left open, exposing over 1 million files. The data we observed related to airport employees from different sites across Colombia and Peru, and there could be entities from other nations with…
UK: Statement on an agreement reached between Somerset Bridge Insurance Services Limited and the ICO
An update on a monetary penalty notice issued in 2019, from the Information Commissioner’s Office: In February 2019, the Information Commissioner imposed a monetary penalty notice against Somerset Bridge Insurance Services Limited (formerly, and at the relevant time, Eldon Insurance Services Limited) in the sum of £60,000 for a breach of the Privacy and Electronic Communications…
Mobile phone operator Cosmote and parent company OTE fined by Hellenic DPA over 2020 data breach slapped with fine over data breach
Ekathimerini reports: Mobile phone operator Cosmote and parent company OTE have been slapped with fines of over 9 million euros by Greece’s Data Protection Authority over a breach of user records in September 2020. Specifically, the watchdog fined Cosmote 6 million euros for failing to protect a file containing the call histories of thousands of…
Ransomware group threatens to leak data from France’s justice ministry
Mathieu Pollet, translated by Daniel Eck, reports: Hackers from ransomware gang Lockbit 2.0 claimed to have hacked into the French justice ministry on Thursday (27 January). They said that if the ransom is not paid by 10 February, the stolen data will be published. EURACTIV France reports. A total of 9,859 files are ready to be disseminated on…
UK: Data breach at Greensward Academy
Lewis Berrill reports: SENSITIVE information about pupils was leaked to parents and students following a data breach at a secondary school. Information such as free school meal status, address, deprivation status, exam dispensation and special educational needs of Year 11 children at Greeensward Academy in Hockley was accidentally leaked by a teacher. The information was…