News & Star reports: A civilian police worker will face trial after denying two data protection offences. [identity information redacted by DataBreaches.net– see update], faces one charge of knowingly or recklessly obtaining information contained in personal data without the permission of the data controller, and one charge of recklessly or knowingly disclosing that information, in…
Category: Non-U.S.
Bank Hackers Steal Millions via Malware
David E. Sanger and Nicole Perlroth report: …. In a report to be published on Monday, and provided in advance to The New York Times, Kaspersky Lab says that the scope of this attack on more than 100 banks and other financial institutions in 30 nations could make it one of the largest bank thefts…
UK: Data protection laws broken 13 times by Companies House
Alun Jones reports: Confidential and personal details were sent to the wrong people by staff at Companies House in Cardiff, BBC Wales has learned. A Freedom of Information request revealed 13 breaches of data protection law at the agency’s headquarters in 2014. Read more on BBC.
AU: 5,000 University of Sydney students notified that hack exposed their details (Updated)
Tim Asimakis reports: Thousands of students were today contacted by Duncan Ivison, Dean of the Faculty of Arts and Social Sciences, and informed that, due to an an information security breach, their personal information could now be in the hands of hackers. According to the email, the University’s Information Security Team identified that the ORSEE…
NL: Dutch house approves law on personal data breach reporting
Telecompaper reports: The lower house of the Dutch parliament has approved legislation requiring businesses and organisations to report security breaches of personal data they hold. The Law on Personal Information will be expanded to include the new requirement, which applies to businesses of all sizes as well as public sector agencies. Read more on Telecompaper.
UK: A bad day in court for Medway Council
Jon Baines writes: If the Information Commissioner (IC) reasonably requires any information for the purpose of determining whether a data controller has complied or is complying with the data protection principles, section 43 of the Data Protection Act 1998 (DPA) empowers him to serve a notice on the data controller requiring it to furnish him with specified…