Non-U.S. – Page 546 – DataBreaches.Net

Leaked video exposes how patient data in Hong Kong public hospitals can be accessed by any user without needing a password

Posted on June 24, 2019 by Dissent

Sum Lok-kei and Elizabeth Cheung report: Patient data at Hong Kong’s public hospitals can be accessed by any user with no need for a password, a leaked video shown to the Post and verified by multiple hospital sources has revealed. Software developer Wong Ho-wa warned the program used in public accident and emergency (A&E) wards…

AU: Inside the police database that holds 40 million private records and any officer can access

Posted on June 23, 2019 by Dissent

Over the years, this site has noted reports of misuse of law enforcement databases by police employees. Here’s a report from Australia. Greg Miskelly and Peta Doherty report: An ABC investigation has exposed privacy breaches of the central police records database that holds files on millions of Australians. The Computerised Operational Policing System (COPS) database…

Ca: Southeast Kootenay school district reveals that they suffered Emotet attack in January

Posted on June 22, 2019 by Dissent

East Kootenay News Online Weekly has a report on a malware incident involving a Canadian school district: School District No. 5 (SD5) Southeast Kootenay encountered a cyber incident on January 23 in which computers at the School Board Office and the Fernie Learning Centre were infected with the Emotet Virus. […] According to Secretary-Treasurer Alan…

Desjardins hit with two class action suits after security breach

Posted on June 21, 2019 by Dissent

The Canadian Press reports: One day after announcing personal information on 2.9 million of its members had been illegally transferred to a third party, Mouvement Desjardins is being targeted by two class action suits. Filed Friday in Superior Court, one of the suits, filed by the law firm of Siskinds Desmeules on behalf of a…

Insurance company AIA fined $10,000 by PDPC for personal data breach

Posted on June 21, 2019 by Dissent

Lester Wong reports from Singapore: Insurance company AIA was fined $10,000 by the Personal Data Protection Commission (PDPC) for mistakenly sending 245 letters meant for various customers to just two people due to a programming error in its software system that auto-generates the letters. The bulk of the letters (237) were premium notice letters for…

Parents’ financial details stolen in cyber attack on Geraldton Catholic school

Posted on June 20, 2019 by Dissent

The West Australian reports: Parents of Catholic school students in Geraldton have been urged to watch their bank accounts for suspicious transactions after a cyber attack on Nagle Catholic College. The College yesterday confirmed it was a victim of a breach, saying bank account and credit card information may have been stolen, including signatures scanned…