After 24 days of updating my scratch list of incidents involving phishing for W-2 information (business email compromise), I decided to take stock and try to organize what we have so far. I was surprised to see that there were already 90 incidents (make that 126 as of May 18th). Most of these entries were found…
Category: Of Note
UK: MoD accidentally releases secret Nato military manual
Rob Edwards reports: The Ministry of Defence (MoD) has accidentally released a secret NATO report with codewords, ciphers, co-ordinates, radio frequencies and a host of other “special instructions” for huge war games under way around Scotland. An MoD official mistakenly circulated a manual for planned air operations during major military exercises involving more than a…
Personal info of 93.4 million Mexicans exposed on Amazon (UPDATED)
In today’s installment of “Epic Infosecurity #FAIL,” more than 93.4 million Mexican citizens have had their voter registration details exposed online due to a misconfigured database. Why a database with Mexican voters’ information was hosted on a server outside of Mexico, who uploaded it to Amazon, and why it wasn’t properly secured are questions in search of answers. Last week, MacKeeper…
Website claims: Registered Filipinos voters’ sensitive data easily searchable
Things may have just gotten worse for Filipino voters whose details were hacked and exposed in a massive breach recently. Lara Tan reports: A website called wehaveyourdata.com claimed it carries the sensitive data — such as full name, complete address, and passport number — of at least 70 million registered Filipino voters. Last March, the website of…
Singapore slaps penalty on companies that failed to block data breaches
Jacob J reports: Singapore’s privacy watchdog has penalised 11 organisations for failing to protect the privacy of customers’ personal data. Karaoke chain K Box Entertainment Group was imposed with the heaviest fine of S$50,000 for failing to protect personal data of members on its platform under the Personal Data Protection Act (PDPA). Singapore’s data protection…
CN: Death sentence over selling of state secrets
Li Qian reports: A Chinese man has been sentenced to death for leaking more than 150,000 classified documents to an unidentified foreign spy agency between 2002 and 2011, China Central Television revealed yesterday. Huang Yu, 48, was paid a total of US$700,000 for the information, CCTV said. It didn’t say when sentence was passed, or…