The Irish Sun reports: Two lists containing the names and details of 33 patients from a Donegal hospital were found dumped in Letterkenny in recent weeks. The latest serious breach in patient confidentiality at Letterkenny General Hospital has been confirmed by Saolta, the company which governs the hospital. Read more on Irish Sun.
Category: Non-U.S.
CNIL Fines French Real Estate Service Provider for Data Security and Retention Failures
From Hunton Andrews Kurth: On June 6, 2019, the French Data Protection Authority (the “CNIL”) announced that it levied a fine of €400,000 on SERGIC, a French real estate service provider, for failure to (1) implement appropriate security measures and (2) define data retention periods for the personal data of unsuccessful rental candidates. Read more…
UK: TalkTalk hacker Daniel Kelley sentenced to 4 years in jail
From the Crown Prosecution Service: A blackmailing hacker behind the TalkTalk cyber-attack – which cost the company £77million after the personal details of 157,000 customers were stolen – has today (10 June) been sentenced. Daniel Kelley, 22, admitted targeting at least six organisations by threatening to sell their hacked data on the ‘dark web’ unless…
Ca: Nova Scotia Health Authority suffers data breach, nearly 3,000 patients possibly affected
Alexander Quon reports: The Nova Scotia Health Authority (NSHA) is in the process of notifying nearly 3,000 people about a potential privacy breach involving personal health information, the organization announced on Monday. The health authority says the breach was detected by its IT team on May 13, 2019, after an employee’s email account was compromised…
Russian Banks Leaked Personal Data From 900k Clients
Tanya Chepkova reports: Clients from the top three Russian banks entrusted their data — including phone numbers, addresses, and IDs — to the financial institutions. Now, this sensitive information is publicly available. Databases with sensitive personal information about the clients of the top Russian banks — including Alfa Bank, the country’s largest commercial bank —…
9.5 billion rows of email metadata leaked by Shanghai Jiao Tong University
Justin Paine reports: While searching Shodan, I recently discovered an ElasticSearch database without any authentication. This database contained metadata related to a huge amount of emails. It was eventually confirmed that this server and the email metadata was controlled by a large university located in China. I would like to thank the university’s security team…