Ronald Mizen reports: Logins for more than 3600 MyGov accounts are for sale on the dark web, potentially exposing thousands of Australians to fraud and identity theft. The MyGov accounts are among a list of more than 150,000 hacked “.com.au” logins available for sale on dark web marketplaces, where logins are sold for as little…
Category: Non-U.S.
Misconfigured firewall resulted in LogBox data exposure and conflicting claims
Earlier this week, Jake Bright of TechCrunch reported that security researcher Anurag Sen had found an exposed database belonging to LogBox, a South African medical data app that allows patients to share information with their doctors more easily. According to TechCrunch’s report, the researcher had found an exposed database containing account access tokens for “thousands…
Italian Garante Fines Bank 600,000 Euros for Pre-GDPR Data Breach
Hunton Andrews Kurth writes: The Italian Data Protection Authority (Garante per la protezione dei dati personali, “Garante”) recently announced that it levied a €600,000 fine on banking institution UniCredit for several violations of the Italian Personal Data Protection Code, in its pre-General Data Protection Regulation (“GDPR”) form. The sanction was imposed following a data breach that took…
Hakbit ransomware campaign targeting specific European countries
Derek Kortepeter reports: Proofpoint researchers have published findings on a campaign involving the Hakbit ransomware. As their blog post states, the ransomware is being spread via spear-phishing emails targeted at individuals in “mid-level positions across the pharmaceutical, legal, financial, business service, retail, and healthcare sector.” The attacks, described as low-volume, are specifically targeting employees of organizations located in…
Hackers obtain Covid-19 patient database in protest at treatment of Indian health workers
Joe Wallen reports: Hackers claim they have accessed the personal data of 80,000 Covid-19 patients in New Delhi stored on a local government website, in protest at the treatment of beleaguered healthcare workers. The Kerala Cyber Hackers group says it broke into the Delhi Government’s Delhi State Health Mission website in less than 10 minutes on Saturday night. Read…
NHAI server attacked by malware, govt says no data loss
Anisha Dutta reports: The server of government’s highway construction arm–the National Highway Authority of India (NHAI) was attacked by a malware Sunday night, according to officials aware of the development. When the malware attacked the email server of the authority, it may have also impacted the huge pool of data on highways and confidential information…