Suchit Leesa-Nguansuk reports: About 39 million purported patient records from Siriraj Hospital have been offered for sale on an internet database-sharing forum in what appears to be the latest hack of the country’s public health sector. Authorities are investigating the post, which was on raidforums.com. […] The data is not only from Siriraj Hospital but…
Category: Non-U.S.
Albania arrests four over massive personal data leak
Maria Daisy reports: Prosecutors in Albania arrested four people on Friday for stealing the personal data of more than 630,000 people which then ended up in the public domain, including salary figures and car registrations. Two of the arrested men were IT technicians working at the state tax office and two others, who had bought…
COVID Test Data Breach at British School
Sarah Coble reports: A mix-up at a school in Worcestershire, England, caused parents to receive the COVID-19 test results of other people’s children. The data breach, reported today by the Evesham Journal, occurred at co-educational secondary school and sixth-form college The De Montfort School (TDMS) in Evesham, which is part of the Four Stones Multi Academy…
Health Ministry Responds to Massive Data Leak of Medical Records of Indonesian Patients
Tempo.co reports: Reports have emerged about an alleged massive data leak of Indonesian hospital patients’ medical information being sold in an illegal internet forum. Hackers claimed to have breached the Indonesian Health Ministry centralized server to obtain the data. According to a report by Antaranews, the data that were sold in the dark web contains 720 GB of personal medical…
Sg: OG department store customers’ personal details leaked in data breach
Rosalind Ang reports: There has been a leak of OG department store customers’ personal data such as names, mobile numbers and dates of birth, said the retailer on Thursday (Jan 6). In a statement to OG members, the department store said it was notified on Tuesday about the data breach, which affected members who are in either…
Why Canadian cyber insurance companies are requiring businesses to use multi-factor authentication
Alyssa DiSabatino reports: Canadian cyber insurance companies are now requiring businesses to offer multi-factor authentication (MFA) and have cybercrime/data breach response plans in place before qualifying for coverage. Prudent, since cybercrimes and ransomware attacks are on the rise – Canadians have lost $4.9 billion to ransomware attacks in the last year. Read more at Canadian…