From the Information Commissioner’s Office: The Information Commissioner’s Office (ICO) has fined Ticketmaster UK Limited £1.25million for failing to keep its customers’ personal data secure. The ICO found that the company failed to put appropriate security measures in place to prevent a cyber-attack on a chat-bot installed on its online payment page. Ticketmaster’s failure to protect…
Category: Non-U.S.
COVID-19 Data-Sharing App Leaked Healthcare Worker Info
Elizabeth Montalbano reports: A platform used by healthcare workers in the Philippines designed to share data about COVID-19 cases contained multiple flaws that exposed healthcare worker data and could potentially could have leaked patient data. Vulnerabilities found in both the COVID-KAYA platform’s web and Android apps allowed for unauthorized users to access private data about…
Three voters demand €10m fine for IT firm behind huge data breach
Claudia Calleja has an update on litigation following a voter data leak involving C-Planet IT Solutions Ltd. Three of the 337,384 Maltese voters whose data was leaked in a massive security breach in April, have filed a complaint with the Data Protection Authority requesting that the IT company that held the data be fined up…
Finland government to help victims of identity theft
The Finnish Government has decided on measures to help victims of identity theft and to improve personal identity protection. The Ministry of Social Affairs and Health will firstly ensure that the victims of the data breach at Psychotherapy Centre Vastaamo continue to receive the necessary psychosocial and other support. Support will continue to be provided…
AU: Newcastle Grammar School Targeted In Cyber Attack
Ian Crouch reports: Newcastle Grammar School has been the target of a cyber attack by criminals. School officials became aware of the attack at the weekend, with ransomware used to encrypt and destroy part of the school’s IT network. Fairfax reports the perpetrators have tried to extort money from the school to unlock the damage….
Ransomware Group Turns to Facebook Ads
Brian Krebs reports: It’s bad enough that many ransomware gangs now have blogs where they publish data stolen from companies that refuse to make an extortion payment. Now, one crime group has started using hacked Facebook accounts to run ads publicly pressuring their ransomware victims into paying up. Read more on KrebsOnSecurity.com. The Ragnar Locker threat actors…