Update: SC Magazine reports that the firm notified/warned 794,000 customers! A follow-up email/notice by the retailer tells customers that the compromised information was restricted to name, delivery address, telephone number and email address. Graham Cluley reports: British retailer Kiddicare, which has made a name for itself selling pushchairs, car seats and more, has suffered a data…
Category: Non-U.S.
Chelsea and Westminster NHS trust fined £180,000 for HIV newsletter data breach
There’s a follow-up to the breach involving the 56 Dean Street clinic in London run by the the Chelsea and Westminster NHS Trust. The breach involved a staff member accidentally exposing all recipients of an HIV newsletter in the To: field. Today, the Information Commissioner’s Office announced a monetary penalty stemming from the incident: A London NHS…
CH: Sensitive personal information of secret Swiss army unit likely hacked by Russians
SwissInfo.ch reports on what is potentially a very serious breach that could put lives at risk: The bad news on Wednesday that hackers had targeted the Swiss defence ministry in January became worse news on Sunday, when the weekly newspaper NZZ am Sonntag reported that the identities of members of a secret Swiss army unit…
UK: Employers vicariously liable for data breaches caused by rogue employees
Tim Hickman and Stephen Ravenscroft of White & Case LLP write: In April 2016, the High Court of England and Wales issued its judgment in Axon v Ministry of Defence [2016] EWHC 787 (QB). The court emphasised (albeit obiter) the fact that employers can be liable for data breaches caused by rogue employees (in the present case,…
I never meant harm, says student who hacked Canada Revenue to show vulnerability to Heartbleed virus
There’s an update to the hack of the Canada Revenue Agency, first disclosed in April 2014 and the young man who was charged in the case. Jane Sims reports: A student computer whiz who stole 900 social insurance numbers from the files of the Canada Revenue Agency to demonstrate its online vulnerability pleaded guilty and apologized on…
Mail.ru denies mass password breach; researcher stands by findings
Eric Auchard of Reuters reports: Russia’s top Internet company, Mail.ru said on Friday a sliver of its users’ email accounts was vulnerable while denying that tens of millions of other users were at risk after researchers found its data circulating among cyber criminals. […] In a statement, the Moscow-based company said its own study of…