Ravie Lakshmanan reports: The Cyberspace Administration of China (CAC) has issued new stricter vulnerability disclosures regulations that mandate security researchers uncovering critical flaws in computer systems to mandatorily disclose them first-hand to the government authorities within two days of filing a report. The “Regulations on the Management of Network Product Security Vulnerability” are expected to…
Category: Non-U.S.
Nl: Leak at Covid testing company made it possible to fake results in CoronaCheck app
NL Times reports: Due to a major leak at the coronavirus testing company Testcoronanu, it was possible for anyone to create their own Covid vaccination or test certificate, RTL Nieuws reported on Sunday. Additionally, private details from about 60 thousand people who took a coronavirus test at this company had been leaked. The company is…
Ca: Revelstoke Mountaineer white-hat notification of data security issues causes City of Revelstoke to disable emergency notification system
Aaron Orlando reports: The City of Revelstoke has disabled its emergency notification system after revelstokemountaineer.com notified the city of data security issues with the system. The city’s opt-in emergency alert system sends emails or text messages to subscribers. The system notifies subscribers on a range of city communications, including emergency communications. Read more on revelstokemountaineer.com….
Ransomware attack at Comparis resulted in data breach
SwissInfo.ch reports: Last Wednesday Comparis.ch, which has 80 million visits a year, was shut down by ransomware attackers demanding $400,000 (CHF370,000) in cryptocurrencies to put it back online. By Friday the website was operational again. A Comparis spokesman told SWI swissinfo.ch that no ransom had been paid. The company initially said it believed that no customer…
UK: Nottingham nurse accessed confidential records of online dating matches
Ben Cooper reports: A nurse who accessed confidential medical records including those of people she met online dating has been allowed to continue working by a disciplinary panel. Helen Kirkpatrick, a former paediatric nurse in Nottingham, accessed 28 different patient medical records without clinical reasons for doing so over a period of 16 months between…
D-Box Technologies hit by ransomware that affected most of its systems
D-BOX announces that the Corporation was subject to a ransomware cyberattack on its information technology systems. The malware used to perform the attack encrypted electronic data stored on the Corporation’s network so it cannot be read or used. The attack took place after the close of business on July 12, 2021 and was detected on…