Kenny Chee reports: A simple, default password shared by employees was possibly the weak link that allowed hackers to break into advertising and creative agency Splash Productions‘ website and deface it. The incident, which happened about five to six years ago, was a wake-up call that spurred the company to drastically improve its cyber security…
NZ: Whanganui DHB apologizes after vaccine privacy breach
Mike Tweed reports: Whanganui District Health Board has apologised for a privacy breach that accidentally disclosed the email addresses of about 200 people. The health board has been inviting people in Group 3 for their Covid-19 vaccine via text, letter and email, but last week an email was sent without the use of the blind…
Norwegian DPA: Moss Municipal Council fined
The Norwegian Data Protection Authority has imposed a EUR 50,000 (NOK 500,000) fine on Moss Municipal Council for failing to adequately protect personal data. The error has been corrected and the case closed. In connection with the amalgamation of the municipalities of Rygge and Moss in January 2020, efforts were made to combine the use…
India under attack by rapidly-evolving advanced persistent threat actor SideCopy, says Cisco Talos
Simon Sharwood reports: Cisco’s Talos security unit says it has detected an increased rate of attacks on targets on the Indian subcontinent and named an advanced persistent threat actor named SideCopy as the source. The outfit on Wednesday posted that it has tracked “an increase in SideCopy’s activities targeting government personnel in India using themes and tactics…
Ransomware-hit law firm gets court order asking crooks not to publish the data they stole
Gareth Corfield reports on what sounds like a legal Hail Mary play: A barristers’ chambers hit by a ransomware attack has responded by getting a court order demanding the criminals do not share stolen data. 4 New Square chambers, which counts IT dispute experts among its ranks, obtained a privacy injunction from the High Court…
High Court Notice To Centre, State On Data Leak Allegations Against TrueCaller
The Press Trust of India reports: The Bombay High Court on Wednesday issued notices to the Union and Maharashtra governments, among others, over a Public Interest Litigation (PIL) that claimed Truecaller mobile application “shared” user data, breaching the law of the country. A bench of Chief Justice Dipankar Datta and Justice GS Kulkarni was hearing…