Jurgita Lapienytė reports: A Korean IT company developing and selling enterprise software has leaked over 50 million sensitive records. The 2 TB-strong Kibana dashboard has been exposed for over two years. Cybernews researchers discovered it back in January 2023, noting the set of data was first spotted in June 2021. Our team attributed the dashboard…
Za: Hackers demand $60m from TransUnion and Experian, claiming data theft
Sabelo Skiti reports: Two of the country’s largest consumer credit reporting agencies, TransUnion and Experian, may have been hit by a fresh data hack, potentially exposing the financial and personal data of South Africans to risk. The hackers, the Brazil-based N4ughtySecTU Group, which has hacked TransUnion before, had again bypassed the organisation’s firewalls and security…
How to Calculate the Cost of a Data Breach
Matt Kelly, CEO of RadicalCompliance.com notes that knowing statistics about the average cost of a data breach isn’t really much help to organizations. Organizations need to know know how to calculate the potential costs at their own organization, he writes, adding, “Only then — when you have a solid sense of how a breach might…
Thanksgiving 2023
This is normally where we might say “Happy Thanksgiving,” and focus on what we’re grateful for this year. And I do hope everyone who has plans to be with their family or friends today gets there and has a wonderful day. But I also know that many families are suffering right now. Some have loved…
Kansas court officials confirm details of ‘evil, criminal’ international cyberattack
Tim Carpenter reports: Foreign cybercriminals launched the attack on the Kansas judicial branch’s information system in October and stole records of appellate cases and judicial administration files potentially regarded as confidential under state law, officials said Tuesday. Justices of the Kansas Supreme Court issued a joint statement confirming perpetrators “stole data and threatened to post…
China Cybersecurity and Data Protection Regulations – 2023 Recap and 2024 Outlook
Arendse Huld writes: China has been expanding its legal framework for cybersecurity and data protection in recent years, with further advancements seen in 2023. This year witnessed the refinement of legal requirements governing the procedures to export personal information (PI), bringing further clarity to the responsibilities and accountabilities of companies. At the same time, 2023…