Liu Chien-pang and Ko Lin report: Taiwan job bank 1111 confirmed Friday that the personal data of its online members was hacked and leaked to a foreign-based hacker forum, and the case is now being investigated by local authorities. Henry Ho (何啟聖), vice president of 1111 job bank, said the scope of the personal data…
Update: Indiana county just paid hackers $132k in ransom – and they’re not alone
There’s a follow-up to the report that LaPorte, Indiana was hit by malware more than one week ago. The county has reportedly paid $132k to the attackers. FoxNews reports: In a written statement, the president of the county’s Board of Commissioners said, “This particular virus, Ryuk, that was used by the bad actors in this…
Slack resets user passwords after 2015 data breach
Zack Whittaker reports: Slack will reset the passwords of users it believes are affected by a historical data breach that affected the company more than four years ago. In 2015, the company said it was hit by hackers who gained access to its user profile database, including their scrambled passwords. But the hackers inserted code…
UK: Estate agency fined £80,000 after accidentally exposing personal info online for two years
The Information Commissioner’s Office issued the following press release involving a monetary penalty related to an unintended exposure incident and a misconfiguration. Imagine if every such leak here resulted in the FTC or a state attorney general fining the entity….. The Information Commissioner’s Office (ICO) has fined a London estate agency £80,000 for leaving 18,610…
Tourism ministry’s servers breached
Matthew Moxey reports from Nassau, Bahamas: The Ministry of Tourism is the latest government entity to fall victim to a security breach, according to Minister of Tourism Dionisio D’Aguilar, who told Eyewitness News Online that his ministry’s information systems were infected with a virus Tuesday. The virus impacted a host of digital files. Read more on…
Independent Age data breach merits no regulator action
Stephen White reports: Confidential data of employees at older people’s charity, Independent Age, have been accidentally exposed to a former worker. The blunder occurred as the company responded to the ex-staff member’s submission of a DSAR (data subject access request). Independent Age says that the security breach compromised personal data, including bank information, sort codes, account…