The Jerusalem Post reports: A breach granting access to documents containing the personal information of hundreds of thousands of residents was found and repaired in the Jerusalem Municipality’s website, the tech website Geektime reported on Wednesday. The breach was discovered by Hezkiyahu Raful, a programmer, while he was trying to help his uncle file an…
RU: Freedom Finance admits data leak of 16,000 clients
InterFax reports: The broker Freedom Finance has admitted the leak of data on 16,000 clients, saying the data dated 2018, Timur Turlov, founder and general director of the broker, said on his Instagram account. It was earlier reported that the broker client’s data had appeared on several shadow forums. Read more on InterFax.
UK: 21 arrests in nationwide cyber crackdown; customers of WeLeakInfo targeted
From the UK’s National Crime Agency (NCA): 21 people have been arrested across the UK as part of an operation targeting customers of an online criminal marketplace that advertised stolen personal credentials. The operation, which ran over the past five weeks, was coordinated by the National Crime Agency and involved cybercrime teams from across the…
Riverside Community Care notifies clients of October ransomware attack
On November 9, DataBreaches.net posted a commentary calling for patients to be notified sooner when their data had been stolen and dumped by ransomware threat actors. In the companion article to that post, Without Undue Delay, specific victims were listed with comments as to whether they had notified patients or not. One of those victims who…
Personal Data from Thousands of Pension Plan Accounts Breached…Third-Party Service Provider Blamed
Joseph J. Lazzarotti of JacksonLewis writes: One of the last things pension plan participants would want to learn as they get ready to celebrate the Christmas holiday is that personal data from their pension accounts may have been compromised. This is the case, unfortunately, for approximately 30,000 Now:Pensions customers whose names, postal and email addresses,…
What was just a hope a few years ago, is now a reality: more coordinated state AG actions investigating breaches
Those in the privacy law community will remember Danielle Citron’s seminal research on state attorneys general and their role in investigating privacy and data security breaches. I reported on that research back in June, 2016 on PogoWasRight.org. As those who are regular readers of this site know, there have been more announcements of multi-state settlements…