Breach impacts 1.7M Nedbank users

(Feb 14, 2020) Personal details of 1.7 million Nedbank users were compromised in a breach at the South African financial services group, ZDNet reports. A hacker infiltrated a marketing contractor’s system in which user details, including names, ID numbers, addresses and phone numbers, were stored. The company said customers’ passwords and PINs were not affected, and the contractor’s network has been taken offline.Full Story... Read More

Irish court publishing man’s name breached data law

(Feb 13, 2020) An Irish Circuit Court judge sided with the Data Protection Commission saying the Courts Service breached data protection laws in publishing a man’s name in a High Court judgment, despite a judge’s order that the man’s identity not be revealed, The Irish Times reports. The name of the man, who was a notice party to proceedings linked to an investigation into sexual abuse, was published on the Courts Service website and appeared in the Irish Medical Times. The Courts Service appealed the DPC’s or... Read More

Campaign team accused of membership database breach

(Feb 13, 2020) The U.K. Information Commissioner’s Office is investigating a complaint by the Labour party accusing Keir Starmer’s leadership campaign team of hacking into the party’s membership database, BBC News reports. Campaign Chair Jenny Chapman called the allegations “utter, utter nonsense,” while the party said it takes its “legal responsibilities for data protection — and the security and integrity of its data and systems — extremely seriously.” Meanwhile, more than 4,500 JustPark customers’ details, ... Read More

China denies involvement in Equifax data breach

(Feb 12, 2020) Chinese Foreign Ministry Spokesperson Geng Shuang denied his government was behind the 2017 Equifax data breach, which four members of the Chinese People’s Liberation Army were charged with by the U.S. Department of Justice this week, The Associated Press reports. China is committed to “firmly oppose and combat cyberattacks of any kind,” Shuang said, adding it does not “engage in cybertheft of trade secrets.” Shuang instead accused the U.S. of engaging in “large-scale, organized and indiscrimina... Read More

Israeli Justice Ministry investigating voter information leak

(Feb 11, 2020) Israel's Justice Ministry is now investigating the leak of more than 6.45 million voters’ personal information, Haaretz reports. Members of the ministry’s Privacy Protection Authority are inspecting the offices of Elector, an election-management app used by the Likud Party that experienced an “incident” exposing the entire Israeli voter registry. The ministry is investigating “suspicions of violations of the Privacy Protection Law and the Privacy Protection Regulations.” Parties are responsible ... Read More

1.26M Danish citizens have ID numbers exposed

(Feb 11, 2020) ZDNet reports a five-year software error allowed open access to the identification numbers of 1.26 million Danish citizens. A bug inserted onto the login for the Danish tax administration's official self-service portal helped collect citizens' identification numbers. The Danish Agency for Development and Simplification, which discovered the error during an audit, said there was no danger for potential cases of fraud, adding the data "most likely" was only collected by a pair of analytics compani... Read More

DOJ charges Chinese hackers for 2017 Equifax breach

(Feb 10, 2020) The U.S. Department of Justice has announced four members of the Chinese People’s Liberation Army have been charged in relation to the 2017 Equifax data breach. The charges include computer fraud, economic espionage and wire fraud related to their unauthorized access to the Equifax database containing the personal information of at least 145 million Americans. "This was a deliberate and sweeping intrusion into the private information of the American people," U.S. Attorney General William Barr sa... Read More

App leaks information on 6.45M Israeli voters

(Feb 10, 2020) A system error on the election-management app Elector has exposed the entire Israeli voter registry, which contains the personal information of more than 6.45 million Israeli citizens, Haaretz reports. The Likud Party uploaded the registry to Elector, which its parent company, Feed-b, said experienced a "one-off incident that was immediately dealt with." The registry contained the full names, identity card numbers and addresses of all voters.Full Story... Read More

Research: Insider breaches cost $11.45M annually

(Feb 7, 2020) A Proofpoint cybersecurity study has revealed organizations across the globe spend $11.45 million per year on average in remediation costs related to insider data breaches. The study, commissioned by the Ponemon Institute and co-sponsored by IBM, included responses from nearly 1,000 IT and security practitioners from North America, Europe, the Middle East, Africa and Asia-Pacific region. The remediation costs are up 31% percent from 2018, and more than 60% of respondents said incidents were the ... Read More

Dutch DPA saw data breach reports spike 29% in 2019

(Feb 6, 2020) The Dutch data protection authority, Autoriteit Persoonsgegevens, announced it received 27,000 data breach reports in 2019, which amounts to a 29% increase from 2018. AP's annual report found hacking, phishing or malware incidents comprised 25% of the reports, while municipalities produced the most reports of any sector at 33%. Moving forward, the AP said it "will place extra emphasis on the digital government in its supervisory work." (Original article is in Dutch.)Full Story... Read More