Malay Mail reports: Singapore budget airline Scoot issued a media statement to say that it has mistakenly emailed customers regarding requirements to undertake a Covid-19 test for a flight bound for Guangzhou, China. These included customers who have made no such bookings for the flight. A spokesperson for Scoot, which is a subsidiary of Singapore…
Wellington-Dufferin-Guelph Public Health notification of privacy breach
August 25 – Wellington-Dufferin-Guelph Public Health is informing community members of a recent breach of privacy that affected an information dashboard that was used to display information about influenza cases in our community. This dashboard was posted on our public website between January 2020 and May 2020. The dashboard contained information on individuals with lab…
Primary Indian ticket vendor suffers crippling data breach
Jim Wilson writes: One of India’s most popular travel booking hubs was left exposed without adequate security measures, and subsequently, suffered a significant data breach that exposed all production server information and led to the loss of over 43GB of data. The affected Elastic search server was left publicly exposed without password protection or encryption…
NC: Hackers want money to release Haywood County school district files
Rex Hodge reports: There will be no remote learning in Haywood County schools for a second day. A Ransomware attack against the district’s computers shut schools down Monday. They’ll be shut down again Tuesday. Read more on WMYA. It sounds like they have no intention of paying any ransom and that they do have some…
38 Japan firms’ authentication data stolen amid surge in teleworkers
Kyodo News reports: Sumitomo Forestry Co., Hitachi Chemical Co. and 36 other Japanese companies had authentication information to access their virtual private networks stolen and leaked by hackers this summer, an information security expert said Tuesday. VPN usage has increased as companies encourage employees to work from home due to the novel coronavirus pandemic. The…
CO: City of Lafayette statement on July ransomware attack
On August 6, media in Colorado reported that the City of Lafayette had paid $45,000 to get a decryption key following a ransomware attack. On August 24, the city published a notification about the incident: This public notice is intended to advise residents, employees, and customers of an incident involving a cyberattack on the City…