Overnight, I received a response from the INE with answers to some questions I had posed to them about a massive database leak of Mexican voter data. The leak had been discovered by MacKeeper researcher Chris Vickery. Let’s begin with the government’s press release: INTERPONE INE DENUNCIA POR USO INDEBIDO DE LA LISTA NOMINAL DE…
Category: Of Note
Meanwhile, back at the phishing for W-2 department…
After 24 days of updating my scratch list of incidents involving phishing for W-2 information (business email compromise), I decided to take stock and try to organize what we have so far. I was surprised to see that there were already 90 incidents (make that 126 as of May 18th). Most of these entries were found…
UK: MoD accidentally releases secret Nato military manual
Rob Edwards reports: The Ministry of Defence (MoD) has accidentally released a secret NATO report with codewords, ciphers, co-ordinates, radio frequencies and a host of other “special instructions” for huge war games under way around Scotland. An MoD official mistakenly circulated a manual for planned air operations during major military exercises involving more than a…
Personal info of 93.4 million Mexicans exposed on Amazon (UPDATED)
In today’s installment of “Epic Infosecurity #FAIL,” more than 93.4 million Mexican citizens have had their voter registration details exposed online due to a misconfigured database. Why a database with Mexican voters’ information was hosted on a server outside of Mexico, who uploaded it to Amazon, and why it wasn’t properly secured are questions in search of answers. Last week, MacKeeper…
Website claims: Registered Filipinos voters’ sensitive data easily searchable
Things may have just gotten worse for Filipino voters whose details were hacked and exposed in a massive breach recently. Lara Tan reports: A website called wehaveyourdata.com claimed it carries the sensitive data — such as full name, complete address, and passport number — of at least 70 million registered Filipino voters. Last March, the website of…
Singapore slaps penalty on companies that failed to block data breaches
Jacob J reports: Singapore’s privacy watchdog has penalised 11 organisations for failing to protect the privacy of customers’ personal data. Karaoke chain K Box Entertainment Group was imposed with the heaviest fine of S$50,000 for failing to protect personal data of members on its platform under the Personal Data Protection Act (PDPA). Singapore’s data protection…