Nick Pearson reports: State governments have begun announcing special changes to allow people exposed in the Optus data leak to get new driver’s licences as soon as possible. Among the details accessed by the hacker are driver’s licence numbers, which are commonly used to verify someone’s identity. NSW Customer Services Minister Victor Dominello said people in the state can get…
Third fine imposed by Polish SA on the Surveyor General of Poland for failure to notify the personal data breach
As seen on the European Data Protection Board website, a decision that reminds us how broad the definition of “personal information” is in the GDPR. The monetary penalty is not large by U.S. standards (slightly more than $12,100.00), but it’s the point and notification required. Background information Date of final decision: 6 July 2022 National…
Malaysian Telecom RedOne hit by DESORDEN
On September 19, DESORDEN Group claims to have hit redONE Network Sdn Bhd. redONE is a telecom in Malaysia with more than 1.2 million subscribers. redONE also offers financial services via bank partnership (its redCARD program) and insurance services via insurer partnership (its redCARE program). According to statements made to DataBreaches by DESORDEN, when redONE…
CISA Requests Public Comment on Implementing Regulations for the Cyber Incident Reporting for Critical Infrastructure Act
Jim Garland, Micaela McMurrough, Ashden Fein, Caleb Skeath, and Matthew Harden of Covington and Burling write: On September 12, 2022, the U.S. Cybersecurity and Infrastructure Security Agency (“CISA”) published a Request for Information, seeking public comment on how to structure implementing regulations for reporting requirements under the Cyber Incident Reporting for Critical Infrastructure Act of 2022…
Change of Heart? OptusData says they won’t leak or sell more data
After leaking more than 10,000 records from Optus earlier today, “OptusData” appears to have had a change of heart. Their original post was deleted and one hour ago, they posted: Optus Data will not be sold or leaked Too many eyes. We will not sale data to anyone. We cant if we even want to:…
“BlackCat” attempts to up the pressure on Suffolk County; starts to leak data?
Since September 8, Suffolk County has been trying to recover from a cyberattack by a ransomware group known as “ALPHV” or “BlackCat.” The attack disabled the county’s 911 system as well as other services. The county reverted to older methods for handling essential county operations, dispatching, and paying bills. State police have also provided support…