Daniel Smith reports: Private email addresses of 103 beneficiaries have been made public due to a mistake by a Work and Income caseworker. They were carbon copied (CC) into an email promoting free fruit and nuts from the Christchurch City Council, rather than blind carbon copied (BCC), which would have concealed them from each other. Read more…
Sg: OrangeTee real estate group suffers data security breach
CNA reports: OT Group, the holding company of OrangeTee & Tie and OrangeTee Advisory, has suffered a data security breach, the Singapore real estate group said on Friday (Aug 6). The company said it received an email from a third party claiming to have accessed its IT network. The incident was reported to the relevant…
Hacker steals $600 million from Poly Network in biggest ever cryptocurrency hack
Some days, reading Twitter is like watching a train wreck unfold before you. Yesterday was like that. Catalin Cimpanu reports: An unidentified hacker has stolen more than $600 million worth of cryptocurrency from Poly Network, a decentralized finance (DeFi) platform based in China. From the outset, it was clear that this was not going to be…
UK: Activist raided by police after downloading London property firm’s ‘confidential’ meeting minutes from Google Search
Gareth Corfield reports: A man who viewed documents online for a controversial London property development and shared them on social media was raided by police after developers claimed there had been a break-in to their systems. The raid by four Metropolitan Police constables took place after Southwark campaigner Robert Hutchinson was reportedly accused of illegally…
NC: Charlotte-Mecklenburg Schools email gaffe exposes medical info on 3,000 students
From the no-need-to-hack-if-it’s-leaking dept., WBTV reports: Charlotte-Mecklenburg Schools sent an email to hundreds of parents that included person and medical information of nearly 3,000 students. The CMS email was to confirm all students who were enrolled in the After School Enrichment Program (ASEP). It was sent out the afternoon of August 6 and went to…
Crytek confirms Egregor ransomware attack, customer data theft
Sergiu Gatlan reports: Game developer and publisher Crytek has confirmed that the Egregor ransomware gang breached its network in October 2020, encrypting systems and stealing files containing customers’ personal info later leaked on the gang’s dark web leak site. The company acknowledged the attack in breach notification letters sent to impacted individuals earlier this month…