Catalin Cimpanu reports: A British security researcher that goes online only by the name of InfoSec Guy revealed today that American Samoa domain registry ASNIC was using an outdated domain name management system that contained a bug allowing anyone to view the personal details of any .as domain owner. The researcher also claims that anyone…
Category: Non-U.S.
Movimiento Ciudadano admits it was their copy of the Mexican voter list on AWS, tries to deflect blame to researcher
A reader kindly informed me that Movimiento Ciudadano, one of the political parties that had legitimate access to Mexico’s voter data list, has admitted it was responsible for the leak on Amazon. Except that as I read more, I realized they weren’t really admitting they were responsible for the leak. I’ve been trying to read/translate a number…
PH: BIR probes employees for leaking sensitive data
Ben O. de Vera reports: The Bureau of Internal Revenue (BIR) is looking into an alleged leak of confidential information obtained from tax tipsters. In Revenue Memorandum Circular No. 50-2016 issued last April 22, BIR Commissioner Kim S. Jacinto-Henares said the leak was allegedly perpetrated by the bureau’s own officers and employees. Henares said the…
Norway Starts Requiring Data Breach Notification
Marcus Hoy reports: The Norwegian Data Protection Authority recently said it will require companies to notify individuals whose personal data has been disclosed without their consent. DPA Senior Adviser Eirin Oda Lauvset told Bloomberg BNA April 18 that Norwegian laws don’t specify a general right for data subjects to be informed of breaches. According to the DPA,…
GoldCorp hacked, data dumped
Yesterday I was contacted by hackers who claimed that GoldCorp, a gold-mining firm with headquarters in Vancouver, British Columbia (TSX:G NYSE: GG), had been “badly hacked” and its data dumped. I’ve written up the details we’ve found so far, and you can read all about it on The Daily Dot, where I’ll be contributing occasionally. And if you’re the hacker(s) who…
IE: Details of more than 100 Cork households stolen from census enumerator’s car
Joe Leogue reports that the Central Statistics Office has notified the affected households, but says it is unlikely the information stolen would be of interest “to anyone other than census staff”. A spokesperson for the CSO said the information was contained in an Enumerator Record Book (ERB) which was stolen from a car at the Red…