The New Zealand Herald reports: The Financial Markets Authority is investigating how six cases where sensitive personal information provided to the regulator may have been accessed by third parties. The finance industry watchdog was left scrambling to shore up its online privacy settings after the Herald revealed that emails relating to a confidential complaint were published…
Category: Non-U.S.
Ransomware hits Spanish companies sparking WannaCry panic
Catalin Cimpanu reports: Two major Spanish companies have been hit by ransomware today. Both infections occurred on the same day, sparking memories of the WannaCry outbreak. […] The first is Everis, an IT consultancy firm owned by the NTT Data Group. The second is Cadena SER, Spain’s largest radio network, which also admitted to the incident…
Sberbank’s confessed data thief is transferred from jail to house arrest
Meduza reports: The Volgograd Regional Court has transferred Anton Buturlakin — the “National Collection Service” employee charged with stealing Sberbank clients’ personal data — from a pretrial detention center to house arrest, according to the news agency Interfax. Read more on Meduza.
Europol Publishes Law Enforcement and Industry Report on Spear Phishing
The Hague — Today, 4 November 2019, Europol’s European Cybercrime Centre (EC3) published a strategic report on spear phishing, reflecting the views of both law enforcement and private industry on one of the most prevalent cyber threats currently affecting organisations across the EU. Spear phishing describes the practice of targeting specific individuals within an organisation…
Vedantu Confirms Hack That Compromised Data Of 687K Users
Shanthi S reports on another big breach out of India. This one involves an EdTech firm that provides online tutorials. Bengaluru-based edtech startup Vedantu has confirmed that it faced a data breach in the last week of September. Data of 687K Vedantu customers were put at risk as the data breach allegedly exposed customer details…
One year after mandatory breach reporting was enacted in Canada, there are 6 times as many breach reports
One year ago, Canadian businesses became subject to increased data breach notification requirements under PIPEDA (the Personal Information Protection and Electronic Documents Act). Rather than deciding whether to voluntarily disclose or report breaches, they were now required to report all breaches that pose a significant risk of harm to individuals to the Office of the…