Catalin Cimpanu reports: Chinese companies have leaked a whopping 590 million resumes in the first three months of the year, ZDNet has learned from multiple security researchers. Most of the resume leaks have occurred because of poorly secured MongoDB databases and ElasticSearch servers that have been left exposed online without a password, or have ended up online…
Category: Non-U.S.
UK: Former NHS manager fined for sending personal data to her email account
A former GP practice manager has been fined for sending personal data to her own email account without authorisation, following an investigation by the Information Commissioner’s Office (ICO). Shamim Sadiq worked at Hollybrook Medical Centre in Littleover, Derby, but was suspended on 3 November 2017 for unrelated matters and dismissed later that month. Derby Magistrates’…
UK: ICO Fines London Council for Gangs Matrix Data Leak Exposing 203 People
Sergiu Gatlan reports: The London Borough of Newham received a £145,000 monetary penalty from the Information Commissioner’s Office (ICO) after leaking the personal information of more than 200 individuals allegedly associated with gangs. As discovered by an ICO investigation, the personal data of more than 203 alleged gang members was disclosed by a Newham Council…
WRHA: Client Data Breached After Bag Stolen from Car
The Winnipeg Regional Health Authority says a bag was stolen last month containing the personal information of several clients. The bag was taken from an unattended parked vehicle of a WRHA employee on March 7, containing a notebook with the employee’s schedule of activities and included the names and ward locations of clients. The health…
Sensitive data from 8,000 people exposed in privacy breach at BC Pension Corporation after microfiche goes missing during office move.
Skye Ryan reports: A privacy breach of BC Pension Corporation data has left thousands vulnerable to identity theft and those who were impacted wonder why it has taken the corporation two months to notify them. The breach was confirmed Jan. 28 but victims are just learning about the breach now and are being told their…
“Team_Orangeworm” issues new threats to CarePartners
Hackers who claimed to have stolen all of a Canadian home healthcare agency’s patient and employee data have issued a deadline and new threat to their victim: either pay us or we will start contacting your patients and giving data to the Ontario privacy commissioner’s office. And to prove their claim that they have sensitive…