Jude Karabus reports: Medway council in Kent has corked a hole in its website that spat out residents’ names, mailing addresses, phone numbers and email addresses after a Reg reader got in touch to complain. The breach appeared courtesy of some of Medway Council’s electronic forms. The council’s eforms were conceived during a collaboration of…
ICO statement: Intention to fine British Airways £183.39m under GDPR for data breach
In September, 2018, the International Airlines Group (IAG) announced that British Airways was investigating a possible data breach involving its website and mobile application. Soon after, we learned that 380,000 payments had been compromised in a few weeks between August 21, when Magecart malware was injected, and early September. Today, the U.K.’s Information Commissioner’s Office…
Sometimes, paying the ransom doesn’t solve the problems
Paying ransom doesn’t always guarantee that a ransomware victim will be able to recover all of the encrypted data. Some more food for thought in a news story today about ransomware in the New York Times that highlights how small government entities are being targeted recently: The F.B.I. said it had received nearly 1,500 ransomware…
Mystery of NSA Leak Lingers as Stolen Document Case Winds Up
Tami Abdollah and Eric Tucker of AP report on what is arguably the most significant insider breach in our government of this century: Federal agents descended on the suburban Maryland house with the flash and bang of a stun grenade, blocked off the street and spent hours questioning the homeowner about a theft of government…
Urgent Cyber Warning For Hospitals Over Threat Of ‘WannaCry Repeat’: Report
Zak Doffman reports: In the two years since the devastating WannaCry cyberattack hit worldwide, institutions have not done enough to protect themselves against a repeat. And that’s especially true in the healthcare sector. A report this week by Imperial College London’s Institute of Global Health Innovation (IGHI) warns that hospitals “remain vulnerable to cyber attack,…
Croatian government targeted by mysterious hackers
Catalin Cimpanu reports: A mysterious hacker group has targeted, and most likely infected, Croatian government employees between February and April this year. Attackers, which are suspected to be a state-sponsored unit, have targeted victims using a spear-phishing campaign that mimicked delivery notifications from the Croatian postal or other retail services. Read more on ZDNet.