It’s been a frustrating matter, but it may finally be resolved, thanks to the individual known as @fs0ciety on Twitter. In May 2019, DataBreaches.net was alerted to an online bloodbank in India that had a misconfigured Amazon s3 bucket. Despite repeated emails by this site and even a phone call from Banbreach infosec in India,…
Category: Of Note
TW: Online box office EZding liable for data theft and consequential damages
Arthur Shay of Shay and Partners writes: In September 2019 a landmark appeal court decision found an online information service provider liable for consequential damages of data theft. In April 2017 subscribers and users of one of Taiwan’s most popular box office websites, EZding, reported numerous data theft incidents. EZding rejected the complaints about its…
CAH Holdings issues notice after employee email accounts compromised
What follows is a somewhat unsatisfactory notice. It does not indicate when the email accounts were compromised. It does not indicate when the firm first discovered it or how they discovered it. It does not indicate how many people are being notified by them. It does not explain to patients why a holdings firm has…
Companies That Experience a Data Breach Will Underperform the Stock Market Over the Long Run
Nicole Lindsey reports: Data breaches at the world’s largest corporations are becoming a commonplace affair, but are investors on Wall Street really paying attention? A new study from UK-based pro-consumer website Comparitech looked at the recent stock market performance of 28 different companies that recently suffered a massive data breach of some kind (defined as…
CISA Releases Cyber Readiness Recommendations for Small Business
Caleb Skeath and Inside Privacy write: Last week, the U.S. Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency (“CISA”) released a set of cyber readiness recommendations for small businesses. The recommendations, which CISA developed in collaboration with small businesses and state and local governments, are intended to assist smaller organizations in implementing organizational cybersecurity practices. While…
Judiciary leaks personnel data of company in cocaine investigation; workers terrified
Janene Pieters reports: Personnel data from a fruit wholesaler in Hedel, Gelderland accidentally ended up in the criminal file of a major cocaine investigation, the Public Prosecution Service in Oost-Nederland confirmed. In a statement, the Prosecutor said it regrets the state of affairs, stressing that there have never been indications that people were in immediate…