Darren Pauli reports: The Tor project has urged calm after new research found 81 percent of users could be identified using Cisco’s NetFlow tool. A research effort led by professor Sambuddah Chakravarty from the Indraprastha Institute of Information Technology in Delhi found that well-resourced attackers such as a nation-state could effectively reveal Tor users’ identity…
Category: Non-U.S.
Fix your security, don’t cover up breaches: AU privacy commissioner
Stilgherrian reports: Australian Privacy Commissioner Timothy Pilgrim has issued a strong warning to companies that attempt to cover up data breaches, or have failed to take a proactive approach toward ensuring that personal data is kept secure. Attempts to conceal a data breach “will not be looked well on by our office”, Pilgrim told the…
AU: Schoolgirl hacked pupil files
Bethany Hiatt reports: An elite Perth girls school is reviewing its digital security after a student hacked into pupils’ confidential information that was visible only to teachers and distributed it using social media. Presbyterian Ladies’ College principal Beth Blackwood confirmed yesterday that a Year 10 student hacked the Peppermint Grove school’s computer database and accessed…
Rex Mundi surfaces with new hack claims (UPDATE2)
It looks like hacking group Rex Mundi may be back. And they seem to be dumping all of the Domino’s data they claimed to have hacked back in June, plus data allegedly from hacks of Thomas Cook Belgium, Finalease Car Credit, and Mensura. In a paste describing their activities, they write that they stole “personal records belonging…
UK: Staffordshire University stolen laptop had student contacts details
BBC reports: A laptop containing the personal details of 125,000 potential and current students at Staffordshire University has been stolen. A member of staff took the computer home where it was stolen from a car. The data included the address, telephone number and email details for applicants dating back to 2006. The university said the…
AU: Asylum seeker privacy breach due to copy and paste – OAIC. Okay, but where’s the breach mitigation?
In February, we learned of a horrific privacy breach involving almost 10,000 asylum seekers. This breach is on my personal Top 10 Worst Breaches of 2014 because of the risk of harm to those exposed. A detention file created by Australia’s Department of Immigration and Border Protection (DIBP) accidentally exposed detainees’ personal details and was subsequently downloaded in about 16…