Karunjit Singh reports: In an inadvertent data leak, the country’s insolvency regulator has put out the Aadhaar and Permanent Account Number (PAN) details of the workmen of multiple companies undergoing insolvency proceedings in the public domain. Officials aware of developments admitted to the “mistake”, which happened as the Insolvency and Bankruptcy Board of India (IBBI)…
Bits ‘n Pieces, Part 2: Some Non-U.S. Incidents (updated)
The Czech Republic Institut plánování a rozvoje hl. m. Prahy (IPR) (the Institute of Planning and Development of the Capital The City of Prague (IPR) reported (machine translation) that it had been infected with a crypto miner virus which used the computing capacity of the institute for crypto currency mining. For preventive reasons, it was necessary to…
Bits ‘n Pieces
Aultman Health Foundation Notifying Patients of Insider-Wrongdoing The Ohio foundation is notifying approximately 7,000 patients that a former employee accessed their records without business need. HOYA Optical Labs of America Notifying Patients of Ransomware Incident As first reported by HealthITSecurity, the Japanese-headquartered firm notified 3,259 U.S. patients of a ransomware incident. The incident occurred in…
Mercedes-Benz data breach exposes SSNs, credit card numbers
Ax Sharma reports: Mercedes-Benz USA has just disclosed a data breach impacting some of its customers. The company assessed 1.6 million customer records which included customer names, addresses, emails, phone numbers, and some purchased vehicle information to determine the impact. It appears the data breach exposed credit card information, social security numbers, and driver license numbers of…
Microsoft says SolarWinds hacking group has breached three new victims
Catalin Cimpanu reports: Microsoft said on Friday that it discovered new cyberattacks carried out by Nobelium, the codename the company has assigned to the Russian state-sponsored hacking group responsible for the SolarWinds hack last year. In a recent campaign, Microsoft said the group used password spraying and brute-force attacks in an attempt to guess passwords and gain access to…
UK: Sepa recovery from ransomware attack could take years
BBC reports: Scotland’s environmental watchdog has said it could take years to fully recover from a cyber attack. The Scottish Environment Protection Agency (Sepa) had more than 4,000 digital files stolen by hackers on Christmas Eve. Chief executive Terry A’Hearn revealed it is now building a new IT system from scratch. Sepa said it had backup…