Warrington Guardian reports: Council chiefs are carrying out a thorough investigation into claims the authority has ‘breached’ data protection by releasing the information of potential pupils at University Technical College (UTC) Warrington. It is believed that the review into the matter concerns the council assisting a marketing agency by providing details of ‘eligible’ youngsters. The…
Category: Non-U.S.
IE: Gorey Credit Union says accounts not affected by email gaffe
Independent.ie reports: Gorey Credit Union confirmed this week that it has been in touch with the Data Protection Commissioner, after email address details of a small percentage of customers were visible to other recipients when the email was sent out. The error occurred on Monday when the mail was sent to inform customers about the…
AU: Peter Dutton appeals against ruling on asylum seeker data breach
Paul Farrell reports: The immigration minister, Peter Dutton, is appealing against a landmark federal court decision that found his department’s response to a major data breach of asylum seekers’ personal details was “unfair to a significant degree”. On Wednesday Crikey revealed the minister was seeking to appeal against the decision in the high court. The federal court ruling…
KR: Second hacker indicted for cyberattack against brokerage firm
The Korea Herald reports: Another hacker suspected of orchestrating a cyberattack on a major South Korean securities firm has been indicted on charges of disrupting the company’s computer network, prosecutors said Wednesday. The Seoul Central District Prosecutors’ Office said the 39-year-old man, identified only by his surname Lee, is suspected of launching a distributed denial-of-service…
Hackers target Australian health sector, selling records for A$1,000
Beverley Head reports: Hackers are targeting the Australian health sector, with fully populated digital health records sold on the black market for up to A$1,000 each. Plans to make the personally controlled electronic health record (PCEHR) an opt-out – rather than the current opt-in regime – could significantly expand the range of targets for health hackers….
Danish Bank Leaves Server in Debug Mode, Exposes Sensitive Information in JavaScript Comments
Catalin Cimpanu reports: Dutch IT security expert Sijmen Ruwhof has found a pretty big blunder on the part of Danske Bank, Denmark’s biggest bank, which exposed sensitive user session information in the form of an encoded data dump, in their banking portal’s JavaScript files. Mr. Ruwhof started to research Danish banking policies out of curiosity,…