A data breach that’s being described as Singapore’s “worst” digital attack on record exposed the personal information of an estimated 1.5 million people. On 20 July, multiple ministries Singapore’s government held a press conference on what they believe was a state-sponsored attack. They didn’t reveal whom they felt was responsible for targeting SingHealth, the island […]… Read More
The post Data of 1.5 Million People Breached in Singapore’s ‘Worst’ Digital Attack appeared first on The State of Security.
Microsoft announced its Identity Bounty Program through which security researchers can earn up to $100,000 for an eligible submission. On 17 July, Microsoft Security Response Center (MSRC) unveiled the creation of a new bug bounty program to help it remediate vulnerabilities affecting its Identity services. Phillip Misner, principal security group manager of MSRC, noted that […]… Read More
The post Researchers Can Earn Up to $100K via Microsoft Identity Bounty Program appeared first on The State of Security.
Four healthcare IT companies warned that a primary health organization (PHO) put up to 800,000 patients’ medical data at risk. On 17 July, New Zealand and Australian healthcare companies HealthLink, Medtech Global, myPractice and Best Practice Software New Zealand sent a letter to New Zealand’s Privacy Commissioner. In it, they explained how they learned in […]… Read More
The post Four Healthcare IT Companies Warn PHO Put 800K Patients’ Data at Risk appeared first on The State of Security.
Two United States Senators asked the Federal Trade Commission (FTC) to investigate the privacy policies and practices of smart TV manufacturers. In mid-July, Senators Edward Markey (D-MA) and Richard Blumenthal (D-CT) submitted a letter to Joseph Simons, Chairman of the FTC, asking him to open an investigation. To support their argument for an FTC review, […]… Read More
The post U.S. Senators Ask FTC to Launch Privacy Investigation of Smart TVs appeared first on The State of Security.
The U.S. Justice Department has charged a dozen Russian intelligence officers with a series of hacking offenses against the Democratic National Committee (DNC). Deputy Attorney General Rod Rosenstein announced the indictments on Friday as part of the ongoing investigation into Russia’s possible interference with the 2016 presidential election. The indictment accuses the Russian intelligence officers […]… Read More
The post 12 Russian Intelligence Officers Accused of Hacking DNC During 2016 Election appeared first on The State of Security.
Ukrainian law enforcement personnel thwarted a digital attack that targeted equipment owned and operated by a chlorine station. According to Interfax, the Security Service of Ukraine (SUB) detected an attempt to attack the LLC Aulska chlorine station. Located in the village of Auly in the Dnipropetrovsk region, the station functions as critical infrastructure in providing chlorine […]… Read More
The post Ukrainian Law Enforcement Thwart Digital Attack Against Chlorine Station appeared first on The State of Security.
The Information Commissioner’s Office (ICO) announced its decision to fine a baby club £140,000 for illegally sharing individuals’ personal data with the Labour Party. The United Kingdom’s data watchdog said it intends to impose the penalty as a result of Lifecycle Marketing (Mother and Baby) Ltd (“LCMB”) failing to fulfill its responsibilities as a data […]… Read More
The post ICO to Fine Baby Club £140K for Illegally Sharing Data with Labour Party appeared first on The State of Security.
The Information Commissioner’s Office (ICO) announced its plan to fine Facebook £500,000 over the Cambridge Analytica data scandal. On 10 July, the ICO published a progress report on its investigation into the Cambridge Analytica incident. The report, entitled “Investigation into the use of data analytics in political campaigns,” explained that the ICO had sent a […]… Read More
The post Facebook Fined £500,000 by ICO for Cambridge Analytica Data Scandal appeared first on The State of Security.
Macy’s is notifying customers of a data breach involving unauthorized access to their payment card data and personal information. In a notice sent to affected customers, Macy’s said it first detected suspicious login activity from certain Macys.com accounts on June 11, 2018. “Based on our investigation, we believe that an unauthorized third-party – from approximately […]… Read More
The post Macy’s, Bloomingdales Alert Online Customers of Data Breach appeared first on The State of Security.
A security researcher discovered an online credential stuffing list containing 111 million records that attackers could abuse to prey upon unsuspecting users. Troy Hunt, an Australian web security expert and creator of the second version of Pwned Passwords, learned about the list from several supporters of his Have I Been Pwned service. They directed him […]… Read More
The post Credential Stuffing List Containing 111 Million Records Found Online appeared first on The State of Security.
Timehop confirmed that a data breach affected certain pieces of personal information belonging to 21 million of its users. According to a statement posted on its website, the service that distributes social media memories to its members detected a network intrusion in the afternoon of 4 July. Timehop learned that those responsible for the incident […]… Read More
The post Timehop Confirms Data Breach Affected 21 Million Users appeared first on The State of Security.
Financial regulators have ordered British banks and other financial services firms to provide a detailed plan for responding to IT outages and cyber-attacks. The Bank of England (BoE) and the Financial Conduct Authority (FCA) published a joint discussion paper on Thursday, asking firms to report on their exposure to risk and incident response processes. Firms […]… Read More
The post UK Financial Regulators Cracking Down on Banks’ IT Failures appeared first on The State of Security.
A county in Wisconsin revealed that a phishing attack was most likely to blame for a data breach of some service recipients’ personal information. On 22 June, Manitowoc County posted a statement about the incident to its website. County officials wrote that they first learned of the attack on 24 April. Upon discovery of the […]… Read More
The post Wisconsin County Reveals Phishing Attack Most Likely to Blame for Data Breach appeared first on The State of Security.
An Irish retailer revealed that an international data breach might have exposed some of its customers’ personal information. On 4 July, Harvey Norman Ireland sent out a letter to customers informing them of the incident. Its correspondence didn’t disclose the number of customers potentially affected by the breach. But it did identify the types of […]… Read More
The post Irish Retailer Reveals It Was Affected by International Data Breach appeared first on The State of Security.