Exposure

Mexico confirms hack of military records, president’s health information

If you have been reading @Chum1ng0’s weekly “Bits n’ Pieces (Trozos y Piezas)” column on Fridays, you have already read about the Guacamaya group’s hack and leak of government files from Chile and other Latam countries. The incident has received public attention in Chile, where some have proposed a national cybersecurity agency. The Mexican...

New changes allow Optus data leak victims to change licence numbers

Nick Pearson reports: State governments have begun announcing special changes to allow people exposed in the Optus data leak to get new driver’s licences as soon as possible. Among the details accessed by the hacker are driver’s licence numbers, which are commonly used to verify someone’s identity. NSW Customer Services Minister Victor Dominello said people in the state can...

Third fine imposed by Polish SA on the Surveyor General of Poland for failure to notify the personal data breach

As seen on the European Data Protection Board website, a decision that reminds us how broad the definition of “personal information” is in the GDPR. The monetary penalty is not large by U.S. standards (slightly more than $12,100.00), but it’s the point and notification required. Background information Date of final decision: 6 July 2022...

Optus Under $1 Million Extortion Threat in Data Breach

Jeremy Kirk has done a terrific job of investigating and reporting on what we know so far about the Optus data leak and extortion attempt. He reports: Early Saturday, a person going by the nickname “Optusdata” published two samples of the purported stolen data on a well-known data leak forum. The attacker writes that...

Ca: Yukon education department accidentally leaks student data

Chris Windeyer reports: A few errant keystrokes by an education department worker exposed the data of more than 500 Yukon students, according to a notification obtained by CBC News. “he breach involves a risk of significant harm to your privacy,” reads the letter to affected students. The letter says names, phone numbers, email addresses,...

UK: Email blunder sees school send details of vulnerable children to all pupils

David Hannant reports: Parents are calling for an investigation into a Norfolk school after an email containing confidential details of students’ mental health was mistakenly sent to all pupils. Wymondham High Academy has confirmed a staff member accidentally sent a message containing information about children who were referred to its wellbeing services with anxiety to the entire school. Read more...

“Computer hacker steals sensitive information from 20,000 Christchurch hot pools customers” — NO. That’s NOT what happened.

There is a highly misleading news report on Stuff today. Permit DataBreaches to set the record straight by quoting some statements from the news story and responding. Liz McDonald reports: Personal information about as many as 20,000 members of the public has been stolen in a data breach at Christchurch City Council’s He Puna Taimoana hot...

PA: Ringgold student data leak revealed

Katherine Mansfield reports: Some student data was leaked via email last week, Ringgold School District announced Monday. “The safety and security of our students is one of our top priorities at Ringgold School District,” Randall Skrinjorich, superintendent, said in a statement. “Upon learning about the accidental release of student data at one of our...