Remember, kids: tell the truth or someone will tell it for you. Kevin Beaumont picks up the story of how Oracle denies a breach when there has been so much confirmation of it, e..g.: Oracle told Bleeping Computer, and customers, “There has been no breach of Oracle Cloud. The published credentials are not for the Oracle Cloud….
HK: Data breach of 128,000 ‘due to system fix and neglect’
RTHK reports: The Office of the Privacy Commissioner for Personal Data says a data breach incident by ImagineX has led to nearly 128,000 people’s information being compromised. Failing to delete temporary accounts in a timely manner and the use of end-of-support operating systems were the main factors leading to the breach, the Office of the…
Former GCHQ intern admits top secret data breach risking national security
Here’s today’s reminder of the insider threat (well, this, and the fact that U.S. government officials continue to deny any problem with discussing attack plans on Signal). The Argus reports: A former GCHQ intern has admitted risking national security by taking top secret data home. Hasaan Arshad, 25, from Rochdale, Greater Manchester, pleaded guilty to…
Shoot the Messenger, Sunday Edition: Reporting on a leak is not unethical, Hamilton County
On March 26, DataBreaches linked to reporting by the Chattanooga Times Free Press. Their report indicated that the local government had not notified residents of a data breach potentially affecting 14,000 people despite having been notified of the incident 240 days ago. According to the memo, the firm sent a letter on Feb. 17 saying…
Canada’s Privacy Commissioner launches breach risk self-assessment tool for organizations
March 26, 2025 – Gatineau, Quebec Privacy Commissioner of Canada Philippe Dufresne has launched a new online tool that will help businesses and federal institutions that experience a privacy breach to assess whether the breach is likely to create a real risk of significant harm to individuals. The privacy breach risk self-assessment tool is a convenient web-based application…
T-Mobile prepares $350 million payments for data breach settlement
Diego Pérez Morales reports: The 2021 cyberattack on T-Mobile exposed sensitive information of 76 million customers, including names, addresses, and Social Security numbers. This breach led to a class-action lawsuit, culminating in a $350 million settlement in 2022. This agreement is notable as the second-largest data breach settlement in U.S. history, only surpassed by Equifax’s $700…