Government and Personal data - Information Management Today

Personal Data and docs of Swiss town Rolle available on the dark web

Security Affairs

AUGUST 26, 2021

The Swiss town Rolle disclosed the data breach after a ransomware attack, personal details of all its 6,200 inhabitants were stolen by threat actors. “Gigabytes of data stolen from Rolle’s vaudois community and posted on darknet. The threat actors compromised some administrative servers and exfiltrated sensitive documents.

Personal data

Personal data Ransomware Data breaches Education

Threat actors defaced Ukrainian government websites

Security Affairs

JANUARY 14, 2022

Threat actors defaced multiple Ukrainian government websites after talks between Ukrainian, US, and Russian officials hit a dead this week. Threat actors have defaced multiple websites of the Ukrainian government on the night between January 13 and January 14. All your personal data has been sent to a public network.

Government

Government CMS Personal data Education

Ukraine bans Telegram for government agencies, military, and critical infrastructure

Security Affairs

SEPTEMBER 20, 2024

Ukraine’s NCCC banned the Telegram app for government agencies, military, and critical infrastructure, due to national security concerns. ” Despite the ban on military and government devices, Ukrainian users rely heavily on Telegram to communicate and receive news on ongoing conflicts. ” continues the announcement.

Military

Military Government Personal data Phishing

Webinars

How to Achieve High-Accuracy Results When Using LLMs

MORE WEBINARS

Senators Raise Security Concerns Over Selling Personal Data

Data Breach Today

APRIL 6, 2021

Letter to Twitter, Google, Others Asks About Selling Information to Foreign Governments A bipartisan group of senators has sent a letter to Google, Twitter, Verizon, AT&T and online advertising firms and networks raising national security concerns about the selling of citizens' personal data, which could end up in the hands of foreign governments.

Personal data

Personal data Security Government

Australian government announced sanctions for Medibank hacker

Security Affairs

JANUARY 23, 2024

The Australian government announced sanctions for a member of the REvil ransomware group for the Medibank hack that occurred in 2022. The Australian government announced sanctions for Aleksandr Gennadievich Ermakov (aka GustaveDore, aiiis_ermak, blade_runner, JimJones), a Russian national who is a member of the REvil ransomware group.

Government

Government Insurance Ransomware Data breaches

GUEST ESSAY: 5 tips for ‘de-risking’ work scenarios that require accessing personal data

The Last Watchdog

JANUARY 10, 2022

Working with personal data in today’s cyber threat landscape is inherently risky. Related: The dangers of normalizing encryption for government use. It’s possible to de-risk work scenarios involving personal data by carrying out a classic risk assessment of an organization’s internal and external infrastructure.

Personal data

Personal data Risk Access Encryption

India Government Withdraws Data Protection Bill

Data Breach Today

AUGUST 4, 2022

Unexpected Revocation Comes After Years of Tech Industry Criticism The government of India withdrew a long-anticipated personal data protection bill from Parliament. The government of Prime Minister Narendra Modi vowed to instead introduce a comprehensive framework of global standard laws including digital privacy laws

Government

Government Personal data Privacy

Report claims that Serbian authorities abused Cellebrite tool to install NoviSpy spyware

Security Affairs

DECEMBER 16, 2024

First, forensic traces showed that Serbian police used a Cellebrite tool to unlock and extract data from his device without informing him, obtaining legal consent, or disclosing the searchs purpose.

Personal data

Personal data Encryption Security Privacy

Estonia ‘s police arrested a Tallin resident who stole 286K ID scans from a government DB

Security Affairs

JULY 30, 2021

Estonia ‘s police arrested a man from Tallinn that is suspected to be the hacker who stole 286K ID scans from the government systems. Estonian police arrested a man from Tallinn that is suspected to have stolen 286,438 belonging to Estonians citizens from the government systems. or take a new document photo. Pierluigi Paganini.

Government

Government Access Sales Personal data

Over 80 US Municipalities’ Sensitive Information, Including Resident’s Personal Data, Left Vulnerable in Massive Data Breach

Security Affairs

JULY 23, 2021

The type of documents exposed includes business licenses, residential records such as deeds, tax information, and resumes for applicants to government jobs. Much of this information is supposed to be only accessible by the government and the citizens, meaning someone could potentially defraud an individual by posing as a government official.

Personal data

Personal data Data breaches Phishing Government

Bangladesh government website leaked data of millions of citizens

Security Affairs

JULY 7, 2023

A researcher recently discovered that a Bangladesh government website leaks the personal data of citizens. The researcher Viktor Markopoulos discovered a Bangladeshi government website that was leaking the personal information of millions of Bangladesh citizens.

Government

Government e-Discovery Personal data Access

Personal data of thousands of users from the UK, Australia, South Africa, the US, Singapore exposed in bitcoin scam

Security Affairs

JUNE 30, 2020

Further analysis of the URLs revealed that a short link takes a victim to another URL which already demonstrates their personal data, such as the phone number, first or/and last name, and sometimes an email address, and used for redirects to fake websites masquerading as a local media outlet. Pierluigi Paganini.

Personal data

Personal data Blockchain Data breaches Phishing

Ransomware attacks hit 105 US local governments in 2022

Security Affairs

JANUARY 2, 2023

In 2022, ransomware attacks targeted 105 state or municipal governments or agencies in the US, reads a report published by Emsisoft. Below are the attacks reported by Emsisoft: 105 local governments. ” The ransomware attack against local governments resulted in data theft in at least 27 of the 105 incidents (26 percent). .

Ransomware

Ransomware Government Education Encryption

Russian watchdog fines Twitter, Facebook for not moving user data to local servers

Security Affairs

FEBRUARY 14, 2020

A Russian court fined Twitter and Facebook 4 million rubles each for refusing to store the personal data of Russian citizens on local servers. Roskomnadzor is attempting to oblige the IT giants, including Facebook, Twitter, and Google to move data related to Russian citizens to servers in Russia allowing the Government to monitor them.,

Personal data

Personal data Government Security IT

NSA buys internet browsing records from data brokers without a warrant

Security Affairs

JANUARY 29, 2024

The data acquired by the intelligence agency can reveal the websites visited by the US citizens and what apps they use. Wyden called on the US government to order intelligence agencies to stop buying personal data from Americans that has been obtained illegally by data brokers.

Metadata

Metadata Personal data Sales Privacy

Defense Department Agency Reports Data Breach

Data Breach Today

FEBRUARY 21, 2020

Defense Department agency that's responsible for providing secure communications and IT equipment for the president and other top government officials says a data breach of one of its systems may have exposed personal data, including Social Security numbers.

Data breaches

Data breaches Personal data Communications Government

Irish Healthcare Ransomware Hack Cost Over 80 Million Euros

Data Breach Today

DECEMBER 13, 2022

Victims Still Learning Their Personal Data Was Illegally Accessed, Copied in 2021 A ransomware attack on the Irish healthcare system in 2021 has cost the government 80 million euros in damages and counting.

Ransomware

Ransomware Personal data Government Access

Indonesia ‘s government confirms social security data breach for some citizens

Security Affairs

MAY 21, 2021

. “The Communication and Information Ministry has taken anticipatory measures to avert the spread of the data further by cutting off access to the links to download the personal data,” Permadi said. At the time of this writing it is not clear how the attackers have gained access to the citizens’ data.

Data breaches

Data breaches Government Security Communications

France Travail data breach impacted 43 Million people

Security Affairs

MARCH 16, 2024

Unemployment agency France Travail (Pôle Emploi) recently suffered a data breach that could impact 43 million people. On August 2023, the French government employment agency Pôle emploi suffered a data breach and notified 10 million individuals impacted by the security breach. reads the press release published by the agency.

Data breaches

Data breaches Personal data Ransomware GDPR

India: Government withdraws long-awaited Personal Data Protection Bill

DLA Piper Privacy Matters

AUGUST 4, 2022

On 3 August, the Indian Central Government withdrew the Personal Data Protection Bill, 2019 ( PDP Bill ). The PDP Bill, which has drawn criticism from both privacy advocates and industry stakeholders, was first published in 2018 and was to be India’s first law on the protection of personal data.

Personal data

Personal data Government Privacy IT

Play ransomware attack on Xplain exposed 65,000 files containing data relevant to the Swiss Federal Administration.

Security Affairs

MARCH 8, 2024

The ransomware attack on Xplain impacted tens of thousands Federal government files, said the National Cyber Security Centre (NCSC) of Switzerland. The National Cyber Security Centre (NCSC) published a data analysis report on the data breach resulting from the ransomware attack on the IT services provider Xplain.

Ransomware

Ransomware Data breaches Unstructured data Personal data

Indonesia Soon to Become the Fifth ASEAN Country to Adapt Data Privacy Laws

Security Affairs

OCTOBER 7, 2020

Earlier this year, Indonesia joined the ranks with the first four ASEAN countries including Malaysia, Singapore, Philippines and Thailand to have enacted laws relating to personal data protection. The PDP Draft Law is now sitting with the House of Representatives and other concerned government officials. General personal data v.

Data Privacy

Data Privacy Privacy Personal data Computer and Electronics

Former British Prime Minister Liz Truss ‘s phone was allegedly hacked by Russian spies

Security Affairs

OCTOBER 30, 2022

“One source said that the phone was so heavily compromised that it has now been placed in a locked safe inside a secure Government location.” “This is extremely serious – it shows the severity of the threats from countries that would do us harm and why cyber-security needs to be taken so seriously by everyone in Government.

Government

Government Personal data Access Security

UK Ministry of Defense disclosed a third-party data breach exposing military personnel data

Security Affairs

MAY 8, 2024

The compromised information includes the personal data of regular and reserve personnel and some recently retired veterans. SSCL is a joint venture between the British government and a private tech firm, it provides services to the Home Office, Cabinet Office and Ministry of Justice. ” states the BBC.

Data breaches

Data breaches Military Government Personal data

Spanish Police Arrest 'Dangerous' Teenage Hacker

Data Breach Today

APRIL 5, 2023

19-Year-Old José Huerta Allegedly Hacked A Government File Transfer System Spanish National Police arrested Friday a teenager hacker who allegedly stole the sensitive data of more than half a million taxpayers from the national revenue service and boasted in an online podcast about having access to personal data of 90 percent of the population.

Personal data

Personal data Government Access

Electronic prescription provider MediSecure impacted by a ransomware attack

Security Affairs

MAY 16, 2024

Yesterday afternoon I was advised by a commercial health information organisation that it was the victim of a large-scale ransomware data breach incident. “In October last year, the ACCC granted authorisation for MediSecure to transfer all publicly- funded electronic prescriptions and data to eRx.” ” reported ABC.

Ransomware

Ransomware e-Delivery Data breaches Insurance

China-linked threat actors stole 10% of Belgian State Security Service (VSSE)’s staff emails

Security Affairs

FEBRUARY 27, 2025

“Classified information is not affected, but personal data of nearly half of the members of the Sret is potentially compromised.” ” In August 2023, Mandiant researchers reported that China-linked threat actors breached government organizations worldwide with attacks exploiting Barracuda ESG zero-day.

Security

Security Access Government Cybersecurity

Hackers leak data on hundreds of German Politicians, including Chancellor Merkel

Security Affairs

JANUARY 4, 2019

German politicians were impacted by a massive data leak that exposed their personal data online, German Chancellor Angela Merkel was affected too. According to Bloomberg News, the exposed data includes email addresses, mobile phone numbers, invoices, copies of identity documents and personal chat transcripts. .

Personal data

Personal data Government Information governance Passwords

Security Affairs newsletter Round 242

Security Affairs

DECEMBER 1, 2019

Iran – Government blocks Internet access in response to the protests. Federal Communications Commission has cut off government funding for equipment from Chinese firms. Facebook and Twitter warn of malicious SDK harvesting personal data from its accounts. Twitter allows users to use 2FA without a phone number.

Security

Security Ransomware Communications Personal data

Cybercriminals launched “Leaksmas” event in the Dark Web exposing massive volumes of leaked PII and compromised data

Security Affairs

DECEMBER 28, 2023

Leaksmas: On Christmas Eve, multiple threat actors released substantial data leaks, Resecurity experts reported. On Christmas Eve, Resecurity protecting Fortune 100 and government agencies globally, observed multiple actors on the Dark Web releasing substantial data leaks.

Data breaches

Data breaches Personal data Government IT

Security Affairs newsletter Round 484 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

AUGUST 11, 2024

CISA adds Apache OFBiz and Android kernel bugs to its Known Exploited Vulnerabilities catalog Russian cyber spies stole data and emails from UK government systems 0.0.0.0 Replace them with newer models asap!

Security

Security Ransomware MDM Personal data

No Surprise: China Blamed for 'Big Data' Hack of Equifax

Data Breach Today

FEBRUARY 11, 2020

Analysis: Equifax Failed on Security, But Only Governments Can Hold Each Other to Account Who's surprised Chinese military hackers allegedly hacked Equifax?

Big data

Big data Military Personal data Government

Kyiv blames Belarus-linked APT UNC1151 for recent cyberattack

Security Affairs

JANUARY 17, 2022

Ukrainian government attributes the recent attacks against tens of Ukrainian government websites to Belarusian APT group UNC1151. The government of Kyiv attributes the defacement of tens of Ukrainian government websites to Belarusian APT group UNC1151 , the Reuters agency reported in exclusive.

CMS

CMS Government Encryption Personal data

Happy Information Governance Day

Data Protection Report

FEBRUARY 20, 2025

Happy February 20 th and Information Governance Day! Today is an opportunity to reflect on the evolution of information governance and, more importantly, its future. In our view, information governance is in its ascendency and is only becoming more and more important to our clients.

Information governance

Information governance Government e-Discovery Records Management

Malaysia introduces watershed amendments to Personal Data Protection Act 2010

Data Protection Report

JULY 26, 2024

On 16 July 2024, the Malaysian Dewan Rakyat (House of Representatives of the Malaysian Parliament) passed the Personal Data Protection (Amendment) Bill 2024 (the PDP Bill ). Data processors will also be potentially subject to the direct imposition of penalties for breach of their obligations.

Personal data

Personal data Data breaches Compliance GDPR

SINGAPORE: Proposed Guidelines on Use of Personal Data in AI Systems

DLA Piper Privacy Matters

AUGUST 1, 2023

On 18 July 2023, Singapore’s Personal Data Protection Commission (“ PDPC ”) issued for public consultation a set of proposed guidelines for the use of personal data in AI recommendation and decision systems (“ Proposed Guidelines ”). The public consultation is open until 31 August 2023.

Personal data

Personal data Artificial Intelligence B2B Government

Ukraine intelligence leaks names of 620 alleged Russian FSB agents

Security Affairs

APRIL 2, 2022

The Ukrainian Defense Ministry’s Directorate of Intelligence leaked personal data belonging to 620 alleged Russian FSB agents. The Ukrainian Defense Ministry’s Directorate of Intelligence has leaked the alleged personal data of 620 Russian FSB officers. said Barratt. ” reported Infosecurity.

Personal data

Personal data Authentication Cybersecurity Government

Ukraine: Belarusian APT group UNC1151 targets military personnel with spear phishing

Security Affairs

FEBRUARY 25, 2022

In mid-January, the government of Kyiv attributed the defacement of tens of Ukrainian government websites to Belarusian APT group UNC1151. All your personal data has been sent to a public network. All data on your computer is destroyed and cannot be recovered. reads a translation of the message.

Military

Military Phishing CMS Government

Cybercriminals leaked massive volumes of stolen PII data from Thailand in Dark Web

Security Affairs

JANUARY 22, 2024

Resecurity researchers warn of massive leak of stolen Thai personally identifiable information (PII) on the dark web by cybercriminals. There are reports of cybercriminals, one known in the shadowy corners of the Dark Web as Naraka, circulating large amounts of stolen personal identifiable information (PII) of Thai citizens.

Data breaches

Data breaches Personal data Communications Government

The Dutch police took down 15 DDoS-for-hire services in a week

Security Affairs

APRIL 13, 2020

is a very important website in this period because it includes information on the Coronavirus outbreak and the initiatives of the Dutch government to protect the population. By flattening a website like this, you are denying citizens access to their personal data and important government information.

IoT

IoT Government Personal data Access

Hackers accessed Stormshield data, including source code of ANSSI certified products

Security Affairs

FEBRUARY 4, 2021

The provider of network security products Stormshield discloses data breach, threat actors stole information on some of its clients. Stormshield is a major provider of network security products to the French government, some approved to be used on sensitive networks. ” reads the data breach notification published the vendor.

Access

Access Data breaches Passwords Government

Study finds growing government use of sensitive data to ‘nudge’ behaviour

The Guardian Data Protection

SEPTEMBER 8, 2021

Exclusive: national and local governments using targeted ads on search engines and social media A new form of “influence government”, which uses sensitive personal data to craft campaigns aimed at altering behaviour has been “supercharged” by the rise of big tech firms, researchers have warned.

Government

Government Personal data Privacy

Data Breach Culprits: Phishing and Ransomware Dominate

Data Breach Today

AUGUST 27, 2021

Meanwhile, Breaches Involving Military Secrets and CCTV Footage Beset UK Government Phishing, ransomware and unauthorized access remain the leading causes of personal data breaches as well as violations of data protection rules, Britain's privacy watchdog reports.

Data breaches

Data breaches Phishing Ransomware Military

US CISA releases guidance on how to prevent ransomware data breaches

Security Affairs

AUGUST 21, 2021

Most of the recent ransomware attack resulted in data breaches for the victims, threat actors implemented a double-extortion schema threatening the victims to data stolen before encrypting them on compromised systems. The guidance aims at helping government and private sector organizations in preventing such kinds of incidents.

Data breaches

Data breaches Ransomware Encryption Cybersecurity

Personal Data and docs of Swiss town Rolle available on the dark web

Threat actors defaced Ukrainian government websites

Webinars

Trending Sources

Ukraine bans Telegram for government agencies, military, and critical infrastructure

Webinars

Senators Raise Security Concerns Over Selling Personal Data

Australian government announced sanctions for Medibank hacker

GUEST ESSAY: 5 tips for ‘de-risking’ work scenarios that require accessing personal data

India Government Withdraws Data Protection Bill

Report claims that Serbian authorities abused Cellebrite tool to install NoviSpy spyware

Estonia ‘s police arrested a Tallin resident who stole 286K ID scans from a government DB

Over 80 US Municipalities’ Sensitive Information, Including Resident’s Personal Data, Left Vulnerable in Massive Data Breach

Bangladesh government website leaked data of millions of citizens

Personal data of thousands of users from the UK, Australia, South Africa, the US, Singapore exposed in bitcoin scam

Ransomware attacks hit 105 US local governments in 2022

Russian watchdog fines Twitter, Facebook for not moving user data to local servers

NSA buys internet browsing records from data brokers without a warrant

Defense Department Agency Reports Data Breach

Irish Healthcare Ransomware Hack Cost Over 80 Million Euros

Indonesia ‘s government confirms social security data breach for some citizens

France Travail data breach impacted 43 Million people

India: Government withdraws long-awaited Personal Data Protection Bill

Play ransomware attack on Xplain exposed 65,000 files containing data relevant to the Swiss Federal Administration.

Indonesia Soon to Become the Fifth ASEAN Country to Adapt Data Privacy Laws

Former British Prime Minister Liz Truss ‘s phone was allegedly hacked by Russian spies

UK Ministry of Defense disclosed a third-party data breach exposing military personnel data

Spanish Police Arrest 'Dangerous' Teenage Hacker

Electronic prescription provider MediSecure impacted by a ransomware attack

China-linked threat actors stole 10% of Belgian State Security Service (VSSE)’s staff emails

Hackers leak data on hundreds of German Politicians, including Chancellor Merkel

Security Affairs newsletter Round 242

Cybercriminals launched “Leaksmas” event in the Dark Web exposing massive volumes of leaked PII and compromised data

Security Affairs newsletter Round 484 by Pierluigi Paganini – INTERNATIONAL EDITION

No Surprise: China Blamed for 'Big Data' Hack of Equifax

Kyiv blames Belarus-linked APT UNC1151 for recent cyberattack

Happy Information Governance Day

Malaysia introduces watershed amendments to Personal Data Protection Act 2010

SINGAPORE: Proposed Guidelines on Use of Personal Data in AI Systems

Ukraine intelligence leaks names of 620 alleged Russian FSB agents

Ukraine: Belarusian APT group UNC1151 targets military personnel with spear phishing

Cybercriminals leaked massive volumes of stolen PII data from Thailand in Dark Web

The Dutch police took down 15 DDoS-for-hire services in a week

Hackers accessed Stormshield data, including source code of ANSSI certified products

Study finds growing government use of sensitive data to ‘nudge’ behaviour

Data Breach Culprits: Phishing and Ransomware Dominate

US CISA releases guidance on how to prevent ransomware data breaches

Stay Connected