Jessica Haworth reports: A phishing attack at Australian pension provider Spirit Super has resulted in “some personal details being compromised”. The ‘super fund’ confirmed that user data was breached on May 19, 2022 after an employee’s email account was accessed. An investigation into the incident found that there was “unauthorized access to a mailbox containing personal data”…
Today’s exercise in reading between the lines
A recent notification by Aon had DataBreaches wondering exactly what went on with their incident response. Consider their description of what happened: What Happened? On February 25, 2022, Aon identified a cyber incident that, upon investigation, impacted a limited number of systems. Once the incident was discovered, Aon immediately retained leading cybersecurity firms to assist…
Ransomware attack sends New Jersey county back to 1977
Brandon Vigliarolo reports: Somerset County, New Jersey, was hit by a ransomware attack this week that hobbled its ability to conduct business, and also cut off access to essential data. “Services that depend on access to county databases are temporarily unavailable, such as land records, vital statistics, and probate records. Title searches are possible only…
Calgary charity hit by data breach says it responded appropriately despite client concerns
Tomasia DaSilva reports: A Calgary charity has confirmed to Global News it was the victim of an email data breach last fall. Now, one of its former clients wants to know why it took so long to be alerted. The Calgary Urban Project Society (CUPS) sent an email to Michael Friesen on Wednesday to inform him…
Potential privacy breach after documents stolen from abandoned Auckland police station
Rachel Maher reports: Police have alerted the Privacy Commissioner after a burglar broke into the former Auckland police station and stole documents and expired pepper spray. The police were made aware of the break-in while carrying out a search warrant at a Mount Albert address where police property was found. The items found included documents…
Martin University discloses ransomware incident
Martin University in Indianapolis disclosed that they were hit by a ransomware attack on January 3, 2022, and have been investigating the incident since then. As is often the case with these attacks, the university was unable to determine whether there had been actual access to files with personal information. As a result, they are…