Two recent decisions by the Singapore PDPC. Breach of the Protection Obligation by ChampionTutor 14 Oct 2021 A financial penalty of $10,000 was imposed on ChampionTutor for failing to put in place reasonable security arrangements to protect personal data in its possession. The incident resulted in the personal data being exposed. The PDPC became...
Fernando Alba of The Press-Republican reports: Convicted hacker and SUNY Plattsburgh alumnus Michael P. Fish’s sentencing has been adjourned again Thursday. Fish’s attorney asked for a 60-day extension to complete court approved expert witness services requested in August, according to court documents. Fish pleaded guilty to aggravated identity theft, computer intrusion and child pornography...
Phil Muncaster reports: Ukrainian law enforcers have arrested a suspected botnet herder responsible for controlling an automated network of around 100,000 compromised machines to launch DDoS and other attacks. The Security Service of Ukraine (SSU) claimed the resident of Ivano-Frankivsk also used the botnet to launch spam campaigns, scan for vulnerabilities in websites to exploit, and...
Minh Duong writes: On April 30th, 2021, I rickrolled my high school district. Not just my school but the entirety of Township High School District 214. It’s the second-largest high school district in Illinois, consisting of 6 different schools with over 11,000 enrolled students. This story isn’t one of those typical rickrolls where students...
Lorenzo Franceschi-Bicchierai reports: A woman allegedly hacked into the systems of a flight training school in Florida to delete and tamper with information related to the school’s airplanes. In some cases, planes that previously had maintenance issues had been “cleared” to fly, according to a police report. The hack, according to the school’s CEO,...
Gary Baum reports: Students’ confidential academic files were hacked and exposed at Los Angeles private school Harvard-Westlake. Archived SAT scores, GPAs, transcripts and college recommendation letters were downloaded, then sent to a group of parents and the school newspaper, as well as The Hollywood Reporter. The materials encompass approximately 150 alumni who graduated over the...
PORTLAND, Ore., Oct. 8, 2021 /PRNewswire/ — Oregon Eye Specialists, PC announces a data incident that may have impacted a limited number of individuals’ information. On August 10, 2021, Oregon Eye Specialists, PC identified unusual activity in an email account. An investigation determined that an individual accessed certain accounts between June 29, 2021 and August 31, 2021. Therefore, Oregon Eye Specialists, PC is reviewing the contents...
An update to a previously reported data breach. Catalin Cimpanu reports: French police have detained a 22-year-old suspect on the accusation of breaching a Paris hospital, stealing, and then leaking the COVID-19 test results of more than 1.4 million patients. The suspect, whose name was not released by authorities, was arrested on Wednesday, October...
Today’s reminder that health data shows up everywhere: an attack on Plumsted Township in New Jersey via employees’ email accounts. For more than 1 month, the attacker had access to their email environment. From the town’s notification: While the specific data elements vary for each potentially affected individual, and it is important to note...
Joseph Menn and Christopher Bing report: The suspected Russian hackers who used SolarWinds and Microsoft software to burrow into U.S. federal agencies emerged with information about counter-intelligence investigations, policy on sanctioning Russian individuals and the country’s response to COVID-19, people involved in the investigation told Reuters. The hacks were widely publicized after their discovery...