Antara News reports: The Communication and Informatics Ministry is still studying a report of the alleged leak of IndiHome subscribers ‘ personal data. The ministry will soon summon the management of state-owned telecommunication operator PT Telkom Indonesia as the holding company to clarify the incident, the ministry’s director general of informatics application, Semuel Abrijani Pangerapan,…
Category: Of Note
UPDATE NOW: Apple warns hackers could get ‘full admin access’ to iPhones, iPads, iMacs
AP and CNN report: Apple disclosed serious security vulnerabilities for iPhones, iPads and Macs that could potentially allow attackers to take complete control of these devices. In security updates posted online on Wednesday and Thursday, Apple said the vulnerability affects iPhones dating back to the 6S model, iPad 5th generation and later, iPad Air 2 and later, iPad…
LockBit claims ransomware attack on security giant Entrust
Lawrence Abrams reports: The LockBit ransomware gang has claimed responsibility for the June cyberattack on digital security giant Entrust. Last month, BleepingComputer broke the story that Entrust suffered a ransomware attack on June 18th, 2022. Starting in early June, Entrust had begun to tell customers that they suffered a cyberattack where data was stolen from internal systems….
New York Becomes First State to Require CLE in Cybersecurity, Privacy and Data Protection
By Hunton Andrews Kurth’s Privacy and Cybersecurity On June 10, 2022, New York became the first state to require attorneys to complete at least one credit of cybersecurity, privacy and data protection training as part of their continuing legal education (“CLE”) requirements. The new requirement will take effect July 1, 2023. The New York State…
Disrupting SEABORGIUM’s ongoing phishing operations
From Microsoft’s Blog: The Microsoft Threat Intelligence Center (MSTIC) has observed and taken actions to disrupt campaigns launched by SEABORGIUM, an actor Microsoft has tracked since 2017. SEABORGIUM is a threat actor that originates from Russia, with objectives and victimology that align closely with Russian state interests. Its campaigns involve persistent phishing and credential theft…
Alberta OIPC’s 2022 PIPA Breach Report – Trends and Key Takeaways
John Cassell, Imran Ahmad,and Miranda Sharpe of Norton Rose Fulbright write: On July 27, 2022, the Office of the Information and Privacy Commissioner of Alberta (OIPC) released its 2022 PIPA Breach Report.[1] The report analyzes the nearly 2,000 breach reports[2] received by the OIPC during the ten year period since reporting was mandated in Alberta under…