Ax Sharma reports: Today, researchers have responsibly disclosed a security vulnerability by exploiting which they could access over 100,000 private employee records of United Nations Environmental Programme (UNEP). The data breach stemmed from exposed Git directories and credentials, which allowed the researchers to clone Git repositories and gather a large amount of personally identifiable information (PII) associated…
Category: Non-U.S.
TT: West Shore launches probe after technician’s post on PM’s health
Darlisa Ghouralal reports: West Shore Private Hospital has launched an investigation into an apparent breach of patient confidentiality following a post by a cardiac technologist regarding the medical care of Prime Minister Dr Keith Rowley. […] The post by the technologist, an employee of Cardiovascular Associates Limited (CVA) who is also a part-time independent contractor…
New Zealand central bank: unnamed third-party file-sharing service was hacked
AP reports: New Zealand’s central bank said Sunday that one of its data systems has been breached by an unidentified hacker who potentially accessed commercially and personally sensitive information. A third party file sharing service used by the Reserve Bank of New Zealand to share and store sensitive information had been illegally accessed, the Wellington-based bank said…
UK: Motor industry employee sentenced in ICO Computer Misuse Act prosecution
A motor industry employee has been sentenced to eight months’ imprisonment, suspended for two years, in a prosecution brought by the Information Commissioner’s Office (ICO). Kim Doyle, who worked for the RAC, transferred personal data to an accident claims management firm without authorisation. Doyle, 33, pleaded guilty to charges of conspiracy to secure unauthorised access…
Hackers publish Hackney Council data online after 2020 attack
Keumars Afifi-Sabet reports: Data stolen from Hackney Borough Council in a major cyber attack last October has been published online by the hackers responsible. Cyber security experts working with the local authority have confirmed “a limited set of data” has now been published online, four months after hackers infiltrated its networks. Read more on ITPro….
Ca: Communauto car-sharing service victim of a cyberattack
Victoria Smith reports: The holiday season has not been easy for the Montreal carsharing service Communauto, which was the target of a cyber attack. Access to a number of servers has been locked, and data has been encrypted. Cyber hackers couldn’t get their hands on user passwords and credit card numbers, but managed to get names,…