Catalin Cimpanu reports: Security researchers have uncovered a new Russian-speaking hacking group that they claim has been focusing on the past three years on corporate espionage, targeting companies across the world to steal documents that contain commercial secrets and employee personal data. Named RedCurl, the activities of this new group have been detailed in a 57-page…
Federal Appeals Court Dismisses CareFirst Data Breach Appeal
From EPIC.org: The D.C. Circuit has ruled that it lacks jurisdiction to hear the appeal of CareFirst customers whose data was stolen in a 2014 data breach. The lower court in Attias v. CareFirst dismissed most of the plaintiffs and claims in the case for failure to allege damages and certified the dismissed claims for appeal. The D.C. Circuit…
Argentina exposes COVID-19 health data in error
Another elastic search instance, it seems. Tim Sandle reports: Argentina’s health officials have apparently exposed personal medical data relating to some 115,000 COVID-19 quarantine exemption applicants, in what represents a major health sector data breach. Read more on Digital Journal.
Revealed: 1,400 data breaches at HSE included patient photos and medical files
Ken Foxe reports: The HSE has suffered almost 1,400 separate data breaches over the past two years involving photographing of patients, infection status being disclosed to other family members, and the discovery of confidential medical files in public places. The number of breaches showed a sharp rise between 2018, when 556 incidents were recorded, and…
Personal details of staff released in Social Protection IT breach
Mick Clifford reports: Personal files of staff and former staff members at the Department of Employment Affairs and Social Protection were leaked in a data breach of one of the department’s IT systems. A malfunction in the system led to confidential information being shared with a wide number of staff in the department, the Irish Examiner has…
Ad Industry Opposes FTC’s Proposed Security Regulations For Financial Institutions
Wendy Davis reports: The Federal Trade Commission’s proposed changes to security regulations for financial institutions could also affect a broad swath of non-financial companies — including ad agencies, social networks, lead generators and ad-tech companies — according to the Association of National Advertisers. The organization is urging the FTC to refrain from imposing a slate…