Bruno reports: The hackers of the city parking fine system in Saint John, Canada have been selling sensitive data on the dark web for over a year. The security breach in the system was not spotted for 15 months after the initial attack, which ultimately allowed the hackers to gain personal information and credit card…
Category: Subcontractor
Aetna settles with California in HIV-related privacy breach
AP reports: Aetna will pay $935,000 after one of its vendors sent letters to California patients that revealed via a window on the envelopes that the recipients were taking HIV-related medications, officials said Wednesday. The settlement resolves allegations that Aetna violated state health privacy laws, California Attorney General Xavier Becerra said. Nearly 2,000 Californians —…
Over 140 International Airlines Affected by Major Security Breach
Sergiu Gatlan reports: Potential attackers could view and change private information in flight bookings made by millions of customers of major international airlines because of a security issue in the Amadeus online booking system found by Safety Detective’s Noam Rotem. Currently, the Amadeus ticket booking system is being used by 141 international airlines which gives…
VA: Notice of Click2Gov-related Data Breach of Hanover County Online Payment System
From the county’s notice, which you can find in its entirety here: Hanover County was recently notified about potential unauthorized charges on credit cards used by customers to pay their utility bills via the website between August 1, 2018 and January 9, 2019. The County takes the security and protection of its customers’ confidential information…
PH: Updated claims: No passport data loss, breach
Roy Mabasa and PNA report: Foreign Affairs Secretary Teodoro Locsin Jr. on Tuesday backpedaled from his earlier allegations that French contractor Oberthur reportedly ran away with the data of millions of passport applicants when its contract was abruptly terminated by the Philippine government in 2013. “Data is not run-away-able but made inaccessible. Access denied,” Locsin…
PH: Locsin says ‘pissed’ contractor ‘took all’ passport data
Updated January 15: Locsin subsequently clarified his claim and said that no data had been removed or stolen, but had been made inaccessible. See this report. Original post: Katrina Domingo reports: MANILA – Some Filipinos renewing their passports may have to present their birth certificates as an additional requirement after a passport production contractor the…