Cyberattacks continue elsewhere as the two reports below show. One attack impacted the COVID-19 vaccination portal in the country of Georgia. An unrelated attack affected a municipality in Romania. Georgia Like many countries, Georgia has been dealing with a significant increase in number of new COVID cases after previously lifting some restrictions. On July 2,…
Category: Non-U.S.
Sg: Spooked by website hacking, ad firm beefs up security, stops using default passwords
Kenny Chee reports: A simple, default password shared by employees was possibly the weak link that allowed hackers to break into advertising and creative agency Splash Productions‘ website and deface it. The incident, which happened about five to six years ago, was a wake-up call that spurred the company to drastically improve its cyber security…
NZ: Whanganui DHB apologizes after vaccine privacy breach
Mike Tweed reports: Whanganui District Health Board has apologised for a privacy breach that accidentally disclosed the email addresses of about 200 people. The health board has been inviting people in Group 3 for their Covid-19 vaccine via text, letter and email, but last week an email was sent without the use of the blind…
Norwegian DPA: Moss Municipal Council fined
The Norwegian Data Protection Authority has imposed a EUR 50,000 (NOK 500,000) fine on Moss Municipal Council for failing to adequately protect personal data. The error has been corrected and the case closed. In connection with the amalgamation of the municipalities of Rygge and Moss in January 2020, efforts were made to combine the use…
India under attack by rapidly-evolving advanced persistent threat actor SideCopy, says Cisco Talos
Simon Sharwood reports: Cisco’s Talos security unit says it has detected an increased rate of attacks on targets on the Indian subcontinent and named an advanced persistent threat actor named SideCopy as the source. The outfit on Wednesday posted that it has tracked “an increase in SideCopy’s activities targeting government personnel in India using themes and tactics…
Ransomware-hit law firm gets court order asking crooks not to publish the data they stole
Gareth Corfield reports on what sounds like a legal Hail Mary play: A barristers’ chambers hit by a ransomware attack has responded by getting a court order demanding the criminals do not share stolen data. 4 New Square chambers, which counts IT dispute experts among its ranks, obtained a privacy injunction from the High Court…