Morgan County School District Re-3 in Colorado canceled classes on Friday. A notice on their website states: Morgan County Schools recently discovered a cybersecurity incident impacting its network environment. We are currently working with a team of forensic experts to fully understand the extent and implications of this incident and to restore operations within a…
AirAsia’s parent company told to supply documents; government probes Daixin ransomware attack
John Bunyan reports: The Ministry of Communications and Digital has ordered Capital A, the parent of AirAsia, to submit supporting documents and data for the investigation into the breach of the airline’s networks that exposed the personal information of millions of passengers and staff. Communications and Digital Minister Fahmi Fadzil said the security breach affecting…
Au: 130,000 Telstra customers exposed in data leak
Ben Cubby reports: Personal information of more than 130,000 Telstra customers has been exposed in the latest large-scale privacy breach to strike big Australian companies. Telstra said a “misalignment of databases” rather than hacking was responsible for the breach, which saw customer details wrongly made available on the online White Pages and via directory assistance….
Important Notice about FIPPA – Mandatory Breach Notification and Privacy Management Program Requirements Coming into Effect on February 1, 2023
Jeff Holowaychuk and Abigail Choi of Clark Wilson write: Starting from February 1, 2023, public bodies in BC will be required to comply with the mandatory privacy breach notification and privacy management program provisions of the Freedom of Information and Protection of Privacy Act. These new provisions were part of a package of FIPPA amendments introduced…
Ca: Data breach of Ontario’s vaccine booking system affects hundreds of thousands, province says
CBC News reports: Hundreds of thousands of Ontarians’ information may have been compromised in a data breach of the province’s vaccine management system. In a statement Friday, the Ministry of Public and Business Service Delivery said two people were charged in connection with a November 2021 breach of the COVAXX system. […] Beginning Friday, some 360,000…
HC3: Analyst Note: Royal Ransomware
December 07, 2022 TLP:CLEAR Report: 202212071400 Executive Summary Royal is a human-operated ransomware that was first observed in 2022 and has increased in appearance. It has demanded ransoms up to millions of dollars. Since its appearance, HC3 is aware of attacks against the Healthcare and Public Healthcare (HPH) sector. Due to the historical nature of…