Deborah George of Robinson & Cole writes: California is the gold standard for state privacy laws, having recently enacted the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA). Virginia and Colorado also have enacted comprehensive privacy laws, which will take effect in 2023. Recently, the International Association of Privacy Professionals (IAPP)…
NSW driver’s licence data stolen in Accellion breach
Justin Hendry reports: Driver’s licence details were among the personal information stolen from Transport for NSW in the Accellion data breach last year, iTnews can reveal. It has also emerged that at least 500 customers and employees of the agency were impacted in the incident, some of which are only now being notified. TfNSW confirmed it…
Dallas IT worker erased police files by accident, didn’t have enough training, report says
Everton Bailey Jr. reports: A former Dallas IT worker fired after deleting millions of police files last year while trying to move them from online storage didn’t have enough training to do the job properly, according to an independent investigation of the incident. Despite his job primarily being focused on working with Commvault, the software…
Iranian Government-Sponsored Actors Conduct Cyber Operations Against Global Government and Commercial Networks
From a Joint Cybersecurity Advisory (TLP:White): SUMMARY The Federal Bureau of Investigation (FBI), the Cybersecurity and Infrastructure Security Agency (CISA), the U.S. CyberCommand Cyber National Mission Force (CNMF), and the United Kingdom’s National Cyber Security Centre (NCSCUK) have observed a group of Iranian government-sponsored advanced persistent threat (APT) actors, known as MuddyWater, conducting cyber espionage…
NZ technology company hacked, data stolen
Andrew Macfarlane reports: iTCo, which is based in Rotorua, says it was the subject of a ransomware cyberattack in early February. Those responsible are claiming to have stolen more than 4 gigabytes of data. Note: this is not the same firm that Hive threat actors named on their site, which is ITSinfocom.com. This firm is…
TX: Houston Health Department working to fix website ‘glitch’ that exposed patients’ COVID test results
KTRK reports: The Houston Health Department is warning its clients after a glitch in the system exposed COVID-19 test results and their personal information. The health department said it was made aware of the potential breach on the night of Jan. 6 and the portal was deactivated within 48 hours. According to a release from…