Non-U.S. – Page 89 – DataBreaches.Net

ShopBack fined S$74,400 for data breach of over a million users

Posted on August 17, 2023 by Dissent

Zhao Yifan reports a follow-up to an incident previously noted on this site. Ecommerce Enablers, which operates the online shopping service platform ShopBack, was fined S$74,400 for its failure to safeguard users’ personal data. The data breach incident happened on Sep 9, 2020 when a malicious threat actor accessed Ecommerce Enablers’ storage server with a…

Hackers threaten publishing sensitive medical data on politicians, Haredi leaders

Posted on August 16, 2023 by Dissent

Daniela Ginzburg reports: The hacker group that has claimed responsibility for the breach at the Mayanei HaYeshua Medical Center in central Israel earlier this month has issued an ultimatum to the facility, threatening to reveal sensitive medical files that include the prime minister, MKs, senior rabbis, and other known figures in the Haredi word if…

Three managers picked up; 2 others invited for breaching Ghana data protection law

Posted on August 15, 2023 by Dissent

GNA reports: Three managers were arrested on Monday by the Data Protection Commission (DPC) and the Criminal Investigations Department (CID) of the Ghana Police Service for breaching the Data Protection Act, 2012 (Act 843). The three institutions are Hisense, an electronic goods dealership, Marwako Fast Foods and Agyabeng Akrasi and Co Limited, a law firm….

UK: Press notice regarding data breach at Norfolk and Suffolk police

Posted on August 15, 2023 by Dissent

Norfolk and Suffolk constabularies have identified an issue relating to a very small percentage of responses to Freedom of Information (FOI) requests for crime statistics, issued between April 2021 and March 2022. A technical issue has led to some raw data belonging to the constabularies being included within the files produced in response to the…

10 people, including 16-year-old youth arrested for suspected involvement in malware scams

Posted on August 14, 2023 by Dissent

Farah Daley reports: In an island-wide anti-scam operation, the Commercial Affairs Department (CAD) and Police Intelligence Department (PID) arrested nine men, aged between 18 to 43, and a 16-year-old youth for their suspected involvement in a recent spate of banking-related malware scam cases. Another three men and three women, aged 17 to 60, are assisting…

UK Electoral Commission had an unpatched Microsoft Exchange Server vulnerability

Posted on August 13, 2023 by Dissent

Kevin Beaumont writes: You have have read about the hack of the Electoral Commission recently. In this piece we take a look at what happened, show they were running Microsoft Exchange Server with Outlook Web App (OWA) facing the internet, and the unpatched vulnerability that presented. The Electoral Commission ran Microsoft Exchange Server on IP…