From the Information Commissioner’s Office: The Information Commissioner’s Office (ICO) has issued a reprimand to NHS Fife, after an unauthorised person was able to enter a ward and access the personal information of 14 patients. In February 2023, an unauthorised person gained access to a ward. Due to a lack of identification checks and formal processes,…
Category: Non-U.S.
Europe’s grid is under a cyberattack deluge, industry warns
Politico reports: Thousands of cyberattacks have inundated Europe’s energy grid since Russia’s invasion of Ukraine, and a top industry leader is calling for help as officials and researchers fret that not nearly enough is being done. “The crooks are becoming better by the day, so we need to become better by the day,” Leonhard Birnbaum,…
Ukraine fires top cybersecurity officials
Zack Whittaker reports: The Ukrainian government has fired two of its most senior cybersecurity officials following accusations of alleged embezzlement. Yurii Shchyhol, head of Ukraine’s State Special Communications Service of Ukraine, or SSSCIP, and his deputy Victor Zhora (pictured), who served as deputy chairman and chief digital transformation officer at SSSCIP, were both dismissed by…
Enterprise software provider Tmax leaks 2TB of data
Jurgita Lapienytė reports: A Korean IT company developing and selling enterprise software has leaked over 50 million sensitive records. The 2 TB-strong Kibana dashboard has been exposed for over two years. Cybernews researchers discovered it back in January 2023, noting the set of data was first spotted in June 2021. Our team attributed the dashboard…
Za: Hackers demand $60m from TransUnion and Experian, claiming data theft
Sabelo Skiti reports: Two of the country’s largest consumer credit reporting agencies, TransUnion and Experian, may have been hit by a fresh data hack, potentially exposing the financial and personal data of South Africans to risk. The hackers, the Brazil-based N4ughtySecTU Group, which has hacked TransUnion before, had again bypassed the organisation’s firewalls and security…
China Cybersecurity and Data Protection Regulations – 2023 Recap and 2024 Outlook
Arendse Huld writes: China has been expanding its legal framework for cybersecurity and data protection in recent years, with further advancements seen in 2023. This year witnessed the refinement of legal requirements governing the procedures to export personal information (PI), bringing further clarity to the responsibilities and accountabilities of companies. At the same time, 2023…