Ashley Madison marketed itself as a “100% discreet service” for people seeking to have affairs — and bolstered that claim with a fabricated security trustmark — but the company behind the website had inadequate security safeguards and policies, an investigation following a massive data breach has concluded. “Privacy breaches are a core risk for any…
Category: Non-U.S.
Beauty site lets anyone read customers’ personal information
Darren Pauli reports: Popular online cosmetics site Strawberrynet has asked customers if a function that allows anyone to retrieve its customers names, billing addresses, and phone numbers with nothing more than an email address is a bug or a feature. The bug was first disclosed almost exactly a decade ago and resurfaced after security man Troy Hunt reported the flaw to…
PK: Patient data stolen from Quaid-i-Azam Hospital
Dawn reports: A case has been registered against an employee of the Quaid-i-Azam Hospital for allegedly stealing data from the CT scan machine and according to a supreme court lawyer, the case might be the first of its kind in the country. Iftikhar Ali, the chief security officer at the hospital, who is the complainant…
TW: Defense university computers hacked, ‘information secure’
The China Post reports: The National Defense University (NDU) Saturday confirmed that its computer system had been hacked in July but said that no classified information had been stolen. Only ordinary academic research materials had been stolen, NDU said. Read more on The China Post.
AU: Miner Norton Gold Fields blames human error for leak of employees’ personal and financial details
Jasmine Bamford and Sam Tomlin report: The operators of a Kalgoorlie gold mine have blamed “human error” after the personal and financial details of several hundred employees were emailed to one of their suppliers. Staff at Norton Gold Fields have been advised to monitor their bank accounts, with their names, bank details and tax file…
AU: Computer hacking victims entitled to damages from businesses over data leaks
Natasha Bita reports: Companies that lose or leak customers’ personal data will be forced to apologise or pay compensation for psychological harm under new laws blasted by business groups. The federal government plans to introduce new privacy legislation this year, requiring banks, phone and internet providers, retailers and government departments to tell customers when data has…