Sarah Elzas reports: Hackers stole the personal data of around 1.4 million people who took Covid-19 tests in the Paris region in the middle of 2020. The hack of a service of the Paris public hospital system, AP-HP, is the latest in a growing number of cyberattacks on French health institutions and Covid data breaches….
Category: Non-U.S.
Office of the Privacy Commissioner for Bermuda Issues Data Breach Guide
Odia Kagan of Fox Rothschild writes: The Office of the Privacy Commissioner for Bermuda has issued a helpful guide on the various types of harm that could be caused by a data breach. The office also referred to the Future of Privacy Forum research on potential harms. Read more here, In their guidance, the Bermuda privacy…
Ottawa Hospital apologizes to unvaccinated staff for privacy breach
CBC reports: The Ottawa Hospital has apologized to unvaccinated staff after an email was sent out offering a vaccine education session with each recipient’s name visible to others. The email was sent from one of the hospital’s software systems and recalled immediately, the hospital said in a statement emailed to CBC, adding all copies of the email…
UAE: Moorfields Eye Hospital in Dubai sees more staff and patient data dumped
In August, threat actors calling themselves AvosLocker announced that they had attacked Moorfields NHS UK & Dubai. DataBreaches.net’s investigation at that point indicated that the data they provided as proof came from the Dubai hospital and did not involve any UK personnel or patients. In a statement to this site, Moorfields confirmed that there had…
Fujitsu confirms stolen data not connected to cyberattack on its systems
Jonathan Greig reports: Fujitsu has confirmed that data being marketed by cybercriminals is not related to any cyberattack on its systems. Criminal marketplace Marketo claimed to have 4GB of data from Fujitsu last month and began marketing it widely. […] Marketo has also changed its tune, now writing that the stolen data is entirely from Japanese manufacturing…
New .avos2 variant: AvosLocker affiliate extorts $ 85k from victim thanks to old vulnerability in FortiGate VPN
Marco A. De Felice reports: An affiliate of the AvosLocker ransomware group extorts $ 85,000 in bitcoin from a company thanks to a known vulnerability in FortiGate VPN ( CVE-2018-13379 ). A vulnerability that the American multinational had corrected THANKS TO AN UPDATE released IN NOVEMBER 2019 . Those who have not updated their systems are a small company that…