Wu Yujian, Zhang Yuzhe and Han Wei report: Kaola Credit, the credit rating service of leading payment company Lakala Payment, was accused of illegally storing and selling users’ personal data for millions of dollars, a case underscoring concerns about privacy breaches in the country’s booming fintech sector. Beijing-based Kaola Credit was among seven companies caught…
Category: Of Note
French Hospital had 6000 Computers Locked Down by Ransomware Attack
Bill Toulas reports: According to a report by Le Monde, the Rouen University Hospital-Charles Nicolle is currently struggling to recuperate from a catastrophic ransomware attack that hit them almost a week ago. This is one of the largest hospitals in Northern France, with 2500 beds and 10000 personnel, so the disruption affects many hundreds of people…
Akron man sentenced to six years in prison for launching denial of service attacks that shut down web sites for the city of Akron and the Akron Police Department
From the U.S. Attorney’s Office for the Northern District of Ohio, an update on a previously disclosed prosecution: An Akron man was sentenced to six years in prison for launching denial of service attacks that shut down web sites for the city of Akron and the Akron Police Department. James Robinson, 33, previously pleaded guilty…
Indian onlinebloodbank FINALLY secures exposed donors database
It’s been a frustrating matter, but it may finally be resolved, thanks to the individual known as @fs0ciety on Twitter. In May 2019, DataBreaches.net was alerted to an online bloodbank in India that had a misconfigured Amazon s3 bucket. Despite repeated emails by this site and even a phone call from Banbreach infosec in India,…
TW: Online box office EZding liable for data theft and consequential damages
Arthur Shay of Shay and Partners writes: In September 2019 a landmark appeal court decision found an online information service provider liable for consequential damages of data theft. In April 2017 subscribers and users of one of Taiwan’s most popular box office websites, EZding, reported numerous data theft incidents. EZding rejected the complaints about its…
CAH Holdings issues notice after employee email accounts compromised
What follows is a somewhat unsatisfactory notice. It does not indicate when the email accounts were compromised. It does not indicate when the firm first discovered it or how they discovered it. It does not indicate how many people are being notified by them. It does not explain to patients why a holdings firm has…