OneTrust Data Guidance reports: Isetan Mitsukoshi Co., Ltd and MI Card Co., Ltd announced, on 5 August 2020, that they had suffered a data breach affecting approximately 19,000 customers as a result of unauthorised access. In particular, MI Card noted that the data breach occurred on the Isetan Mitsukoshi Online Store as well as MI Card’s homepage. In…
AU: HealthEngine ordered to pay $2.9m for ‘misleading conduct’
Matt Woodley reports: The settlement saw HealthEngine admit to providing non-clinical personal information – such as names, dates of birth, phone numbers and email addresses – to nine different third-party private health insurance brokers without properly informing consumers. This arrangement earned the online medical booking platform more than $1.8 million over a period of four…
Ca: London Police snooped on personal health data 10,475 times in 4 months
Colin Butler reports: The London Police Service used a provincial database containing the personal health records of people who tested positive for COVID-19 at one of the highest rates in Ontario, snooping on private medical information 10,475 times between April and July. Law enforcement gained the unprecedented power to access people’s personal medical information when the database…
Uber Exec Allegedly Concealed 2016 Hack With $100K BTC ‘Bug Bounty’ Pay-Off
Turner Wright reports: Joseph Sullivan, a former Chief Security Officer at Uber, allegedly tried to cover up a 2016 hack of sensitive data by funneling a hush money payment of $100,000 in Bitcoin through a bug bounty program. The hackers had obtained the drivers’ license numbers of roughly 600,000 Uber drivers as well as private…
UK: Man finds sensitive patient data outside Caithness General
The Northern Times reports: A man who was passing by Caithness General Hospital in Wick claims to have found a document containing “highly sensitive medical information” about patients. The member of the public, who wishes to remain anonymous, said he found the folded A4-size piece of paper lying on the road near the gate lodge…
FritzFrog and Lucifer Monero malware botnets putting more at risk
Jai Pratap reports: According to a study by Guardicore Labs, a Monero malware botnet known as FritzFrog has been deployed to ten millions of IP addresses. The malware has largely targeted governmental offices, educational institutions, medical centers, banks, and telecommunication companies, installing a Monero mining app known as XMRig. The study explains that FritzFrog uses a brute-force…