DataBreaches.net seems to be the only site willing to report on certain breaches in Thailand these days. First it was the hack of Country Group Securities (CGSEC) by hackers calling themselves ALTDOS. And now this week, this site reported a second attack by the same threat actors that involved MONO Next Public Company. As previously…
Category: Non-U.S.
United Nations data breach exposed over 100k UNEP staff records
Ax Sharma reports: Today, researchers have responsibly disclosed a security vulnerability by exploiting which they could access over 100,000 private employee records of United Nations Environmental Programme (UNEP). The data breach stemmed from exposed Git directories and credentials, which allowed the researchers to clone Git repositories and gather a large amount of personally identifiable information (PII) associated…
TT: West Shore launches probe after technician’s post on PM’s health
Darlisa Ghouralal reports: West Shore Private Hospital has launched an investigation into an apparent breach of patient confidentiality following a post by a cardiac technologist regarding the medical care of Prime Minister Dr Keith Rowley. […] The post by the technologist, an employee of Cardiovascular Associates Limited (CVA) who is also a part-time independent contractor…
New Zealand central bank: unnamed third-party file-sharing service was hacked
AP reports: New Zealand’s central bank said Sunday that one of its data systems has been breached by an unidentified hacker who potentially accessed commercially and personally sensitive information. A third party file sharing service used by the Reserve Bank of New Zealand to share and store sensitive information had been illegally accessed, the Wellington-based bank said…
UK: Motor industry employee sentenced in ICO Computer Misuse Act prosecution
A motor industry employee has been sentenced to eight months’ imprisonment, suspended for two years, in a prosecution brought by the Information Commissioner’s Office (ICO). Kim Doyle, who worked for the RAC, transferred personal data to an accident claims management firm without authorisation. Doyle, 33, pleaded guilty to charges of conspiracy to secure unauthorised access…
Hackers publish Hackney Council data online after 2020 attack
Keumars Afifi-Sabet reports: Data stolen from Hackney Borough Council in a major cyber attack last October has been published online by the hackers responsible. Cyber security experts working with the local authority have confirmed “a limited set of data” has now been published online, four months after hackers infiltrated its networks. Read more on ITPro….