On November 10-11, Kisters AG in Germany was hit by a ransomware attack. Because the firm is a critical infrastructure supplier for energy systems and with the potential for downstream compromise, this one has raised significant concerns. The following are some translated snippets from energie.blog, which has been providing updates on the attack: Update: 11/21/2021:…
Category: Non-U.S.
UK: Private medical files dumped in cabinet outside GP surgery
Josh Layton reports: Hundreds of patients’ confidential details were found dumped in an unlocked filing cabinet left outside an unused doctors’ surgery. The sensitive personal files were reference cards that included individuals’ names, dates of birth, addresses and NHS numbers. They were left for days in a doorway among piles of leaves outside the former…
Waikato DHB cyberattack: Cancer hub out of action in chaotic aftermath
Natalie Akoori reports that the May ransomware attack by Vice Society threat actors on Waikato District Health Board impacted one of the country’s four regional cancer hubs. According to a contingency planning document put together in the aftermath of the attack and released by the DHB under the Official Information Act, at least 30 cancer…
CarePartners agrees to settle proposed cyberattack class action for up to $3.4 million, but don’t party just yet
Bernise Carolino reports that there is a settlement in a lawsuit against CarePartners in Canada. The proposed class-action lawsuit stemmed from a breach in 2018 that DataBreaches.net investigated and covered on this site. The firms of Howie, Sacks & Henry LLP (HSH), Waddell Phillips PC and Schneider Law Firm represented the plaintiffs, Arthur Redublo and…
NZ: OPC finds leading cause of privacy breaches is human error
Catherine Knowles reports: Human error is the leading cause of serious privacy breaches, according to a new report released today by the Office of the Privacy Commissioner (OPC). Privacy Commissioner John Edwards says, “We are seeing clear patterns emerging since mandatory reporting of serious privacy breaches came into effect with the Privacy Act 2020 on…
Ottawa’s French public school board paid hackers a ransom following cyberattack
Ted Raymond reports: Ottawa’s French public school board says it was the victim of a network security breach in October and it paid the hackers a ransom to secure the stolen data. In a statement on its website, the Conseil des écoles publiques de l’Est de l’Ontario (CEPEO) said it was notified of the cyberattack…