K.C. Vijayan reports: The Cellar Door, a well-known local seller of gourmet products, has been fined $5,000 for failing to protect the personal data of some of its customers and users from being posted on another website without authorisation. Its website host, Global Interactive Works (GIW), was fined $3,000 by the Personal Data Protection Commission…
Category: Non-U.S.
Veterans say mail from VAC outs medical marijuana users
Andrea Gunn reports yet another incident where Canadian medical marijuana users have been outed by a mailing gaffe. Veterans across Canada are reporting a security breach involving mail sent out by Veterans Affairs Canada that lets anyone looking at the outside of the envelope know it was issued under the federal medical marijuana program. Veteran…
Pakistan automotive giant PakWheels Hacked, 700k accounts stolen
The operative word is “outdated.” Uzair Amir reports: PakWheels, a famous automotive classified website in Pakistan has revealed that their server was breached by an unknown third party exposing personal data of registered users. In an email sent to users on 26th December, the site explained that hackers were able to conduct this breach by exploiting a known vulnerability…
The Netherlands: almost 5500 data breaches notified in 2016
Richard van Schaik and Róbin de Wit write: The Dutch Personal Data Protection Authority (Autoriteit Persoonsgegevens, “AP”) revealed that almost 5500 data breaches have been notified since the legislation on mandatory data breach notification duties entered into force on 1 January 2016. Pursuant to this legislation, it is mandatory for all types of data controllers…
Hong Kong Airlines says sorry over passenger data leak
EJinsight reports: Hong Kong Airlines has issued a public apology after its Android mobile app reportedly leaked personal data of more than a hundred of its passengers, including their names, passport numbers and travel records. The airline immediately suspended access to the app and a feature where non-members can make enquiries, Ming Pao Daily reports….
OSCE targeted by cyber attackers
DW reports: The Organization for Security and Cooperation in Europe (OSCE) confirmed on Wednesday that it has been the target of a “major security information incident.” The international security and human rights watchdog became aware of the security breach in November. According to an OSCE spokesperson, the systems are now safe. “We were given entirely new security…