Back in June, Canadian news outlets provided an update on a ransomware attack on Saskatchewan’s eHealth system that had occurred on December 20, 2019. Now as the year draws to a close, the government still doesn’t know whether personal information was compromised in the attack. And no, this is not uncommon. It is often very…
Category: Non-U.S.
Vn: Leaky Server Exposes 12 Million Medical Records to Meow Attacker
Phil Muncaster reports: A healthcare technology company leaked 12 million records on patients including highly sensitive diagnoses, before the exposed cloud server was struck by the infamous “meow” attacker, researchers have revealed. A team at SafetyDetectives led by Anurag Sen discovered the leaky Elasticsearch server in late October after a routine IP address scan, although…
UK: Pensions firm NOW tells some customers a ‘service partner’ leaked their data all over ‘public software forum’
Matthew Hughes reports: Workplace pension provider NOW: Pensions has emailed a number of UK customers to warn about a data leakage caused by contractor error. The email, seen by this publication, claims a service provider “unintentionally” posted user data to an unnamed “public software forum”. These records include biographical data (names, email addresses, and dates…
De: Funke Media Group victim of cyberattack; widespread impact
NRZ reports (translation): The FUNKE media group, to which this website belongs, was the victim of a hacker attack on Tuesday. Numerous computer systems throughout Germany were affected – including our editorial offices and printing houses. The newspapers of the FUNKE media group can unfortunately only appear with an emergency issue on Wednesday. To ensure that all…
Twitter Fine: a View into the Consistency Mechanism, and “Constructive Awareness” of Breaches
Mark Young, Shona O’Donovan and Paul Maynard of Covington & Burling writes about the recent news-making fine the DPC issued to Twitter. They write, in part: Process aside, the DPC’s decision contains some interesting points on when a controller is deemed to be “aware” of a personal data breach for the purpose of notifying a…
Paderborn’s ‘Lernstatt’ under attack
(translation from WDR): The city of Paderborn’s ‘Lernstatt’ network has become the target of a major hacker attack. The cyber attack paralyzed numerous mail accounts and web conferences. On Friday morning there were around 20 million accesses in just under half an hour, mainly to mail traffic and web conferences. 17,000 student and 2000 teacher…