dcsimg

Hospital patients’ medical records found on roadside

Hospital notes of patients who attended Craigavon Area Hospital, Co. Armagh were discovered scattered on a local roadside on 7 February. The records contained the information of 18 patients who visited ward 2 South Medicine at the hospital, including their name, age, reason for admission, and medical and social history. A man and a six-year-old child, who wish to remain anonymous, discovered the … [Read more...]

Unlawful data processing practices cost Italian telecoms organisation more than €27 million

The Italian Data Protection Authority (Garante per la protezione dei dati personali) last month issued a €27,802,946 fine to telecoms company TIM S.p.A for several GDPR (General Data Protection Regulation) infringements and a lack of accountability. The unlawful practices, which occurred between 2017 and 2019, affected millions of individuals, some of whom were not even TIM S.p.A customers. They … [Read more...]

Ireland’s DPC begins investigation into Google and Tinder

Ireland’s DPC (Data Protection Commission) is investigating Internet giant Google and matchmaking app Tinder over the way they process and retain users’ data. Inquiry into Google The DPC has commenced an own-volition Statutory Inquiry into Google Ireland Limited following complaints from several EU consumer organisations about its processing of users’ location data and the transparency of the … [Read more...]

250 million Microsoft customer records exposed in latest breach

In its latest data breach, Microsoft has exposed nearly 14 years of customer service and support records, equating to the details of nearly 250 million records. The breach was discovered by Comparitech’s security research team, which is headed by Bob Diachenko, who immediately informed Microsoft. The corporation took swift action; in total, the data was exposed from 28–31 December 2019. Diachenko … [Read more...]

Securing the MSP: their own worst enemy

We’ve previously discussed threats to managed service providers (MSPs), covering their status as a valuable secondary target to both an assortment of APT groups as well as financially motivated threat groups. The problem with covering new and novel attack vectors, however, is that behind each new vector is typically a system left unpatched, asset management undone, a security officer not … [Read more...]

Cyber attacks and data breaches in review: January 2020

The new decade is off to a promising start, with only 61 disclosed data breaches or cyber attacks. It’s not all good news, though, as a handful of massive incidents – including the ongoing leaks of medical files in the US – has helped push the number of breached records to 1.5 billion. There were also several worrying incidents involving European organisations. Let’s take a look at some of them … [Read more...]

Frankfurt’s IT networks grinds to a halt amid Emotet attack

The week before Christmas, Frankfurt saw the unwelcome return of Emotet, a banking trojan that recently came out of hiding to terrorise organisations across the globe.  The malware spread through the city’s systems, forcing officials to shut down its IT network, causing huge delays to government services.  This is the fourth time in recent weeks that Emotet has struck in Germany, following attacks … [Read more...]

Travelex falls victim to Sodinokibi ransomware attack

Travelex, a foreign exchange company with headquarters in London, has been hit by a ransomware attack, forcing it to shut down all computer systems across its 1,500 branches. Although the organisation said no personal data has been compromised, the criminal hackers behind the attack claimed to have acquired more than 5GB of personal data, including dates of birth, payment card information and … [Read more...]

Cyber attacks and data breaches in review: December 2019

In some respects, 2019 ended on a positive note, with a comparatively low 627,486,720 breached records.  That’s about a third of the monthly average, and ensures that the year accounted for only 12.7 billion breached records.  Over the next few weeks, we’ll analyse the information we’ve tracked throughout 2019 and produce an infographic summarising the year’s figures.  In the meantime, here are … [Read more...]

2019 cyber security news in review

At this time of year, news feeds are chock full of Predictions For The Next Year – and for good reason. Everybody wants to be prepared for what lies ahead.  But if you’re looking for guidance on what 2020 has in store, we suggest you follow the maxim that the best predictor of future behaviour is past behaviour.  So, as we enter a new year – and indeed a new decade – let’s take a look back at … [Read more...]