A cybercrime group has exploited a flaw in MOVEit software, and is now demanding a ransom

British Airways, Boots and the BBC have been hit with an ultimatum to begin ransom negotiations from a cybercrime group after employees’ personal data was stolen in a hacking attack.

On Wednesday it emerged that the gang behind a piece of ransomware known as Clop had posted the demand to its darkweb site, where stolen data is typically released if payments are not made by the victims.

Continue reading…

from Data and computer security | The Guardian https://ift.tt/Gg68zim
via IFTTT

Real Estate Institute of Australia president says additional layer of responsibility could force smaller agencies to close down

• Get our morning and afternoon news emails, free app or daily news podcast

Real estate agents are pushing back against proposed privacy law changes, saying small businesses should not face more red tape to keep customer and tenant data safe.

The Real Estate Institute of Australia president, Hayden Groves, said that an “additional layer of responsibility is really not necessary” on top of agents’ existing duties, saying that increased regulatory risks could be “the last straw” for smaller agencies which may shut up shop.

Sign up for Guardian Australia’s free morning and afternoon email newsletters for your daily news roundup

Continue reading…

from Data and computer security | The Guardian https://ift.tt/No2Vlxw
via IFTTT

Privacy watchdog will be asked to investigate after information became available for all employees to view on the staff intranet

• Get our morning and afternoon news emails, free app or daily news podcast

The confidential drug and alcohol test results of graduate paramedics were available for every Ambulance Victoria staff member to view under a significant breach that is set to be reported to the state’s privacy watchdog.

According to an email sent late Thursday to members of the Victorian Ambulance Union, confidential spreadsheets relating to pre-employment testing of graduate paramedics in 2017 and 2018 were available on the staff intranet until the union alerted Ambulance Victoria to the problem.

Continue reading…

from Data and computer security | The Guardian https://ift.tt/nNatIvp
via IFTTT

Feature allows users to set a list of friends and post tweets that only they are supposed to be able to read

A privacy breach at Twitter published tweets that were never supposed to be seen by anyone but the poster’s closest friends to the site at large, the company has admitted after weeks of stonewalling reports.

The site’s Circles feature allows users to set an exclusive list of friends and post tweets that only they can read. Similar to Instagram’s Close Friends setting, it allows users to share private thoughts, explicit images or unprofessional statements without risking sharing them with their wider network.

Continue reading…

from Data and computer security | The Guardian https://ift.tt/0fEvb4s
via IFTTT

CMA to look at underlying systems of artificial intelligence tools amid concerns over false information

• Business live – latest updates

The UK competition watchdog has launched a review of the artificial intelligence market, as it warned of threats from AI tools including the distribution of false or misleading information.

In an announcement that comes as global regulators increase scrutiny of the technology, the Competition and Markets Authority said it would look at the underlying systems, or foundation models, behind AI tools such as ChatGPT.

Continue reading…

from Data and computer security | The Guardian https://ift.tt/LsY96JE
via IFTTT

The Office of the Australian Information Commissioner will also be restored to a three-commissioner structure after defunding by Coalition

• Get our morning and afternoon news emails, free app or daily news podcast

The federal government will appoint a dedicated privacy commissioner to deal with the increasing threat of data breaches, the attorney general has announced.

Mark Dreyfus revealed late on Tuesday evening that the Albanese government would also restore the Office of the Australian Information Commissioner (OAIC) to a three-commissioner structure, saying the appointments were necessary to deal with “the growing threats to data security and the increasing volume and complexity of privacy issues”.

Continue reading…

from Data and computer security | The Guardian https://ift.tt/PKN9rxC
via IFTTT

Cyberattack resulted in hacking of 4TB of data including IDs, finance reports, accounting data, client documents and credit card details

• Follow our Australia news live blog for the latest updates
• Get our morning and afternoon news emails, free app or daily news podcast

The Australian commercial law firm HWL Ebsworth has fallen victim to a ransomware attack, with Russian-linked hackers claiming to have obtained client information and employee data.

Late last week, the ALPHV/Blackcat ransomware group posted on its website that 4TB of company data had been hacked, including employee CVs, IDs, financial reports, accounting data, client documentation, credit card information, and a complete network map.

Sign up for Guardian Australia’s free morning and afternoon email newsletters for your daily news roundup

Continue reading…

from Data and computer security | The Guardian https://ift.tt/r9kN8V4
via IFTTT

Investment fraud amounts for biggest share at $1.5bn, followed by remote access and payment redirection rorts

• Follow our Australia news live blog for the latest updates
• Get our morning and afternoon news emails, free app or daily news podcast

Australians lost a record amount of more than $3.1bn to scams in 2022, up from the $2bn lost in 2021, a new report from the Australian Competition and Consumer Commission has revealed.

The Targeting Scams report, which compiles data from Scamwatch, ReportCyber, major banks and money remitters, was based on an analysis of more than 500,000 reports.

Sign up for Guardian Australia’s free morning and afternoon email newsletters for your daily news roundup

Continue reading…

from Data and computer security | The Guardian https://ift.tt/3FOL70Y
via IFTTT

Exclusive: Experts say sensitive information could potentially have been harvested and used for targeted election interference

The voting intentions of millions of Britons in local authority wards across the country could have been at risk of misuse as a result of a glitch in the Labour party’s main phone-banking system, the Guardian understands.

Experts had warned that the sensitive data could potentially have been harvested via an automated programme and used for targeted election interference by campaign groups or even hostile states.

Continue reading…

from Data and computer security | The Guardian https://ift.tt/aTExk8j
via IFTTT

Regulator says Carlos Abarca ‘failed to take reasonable steps’ to ensure outsourcing firm was ready to migrate accounts en masse

UK regulators have imposed an £81,000 fine on a former TSB information officer over the bank’s IT meltdown in 2018 that left millions of customers locked out of their accounts.

The Prudential Regulation Authority (PRA) said Carlos Abarca, who was TSB’s chief information officer at the time of the meltdown, “failed to take reasonable steps” to ensure that an outsourcing firm owned by TSB’s parent company was ready to carry out the IT migration of customers en masse.

Continue reading…

from Data and computer security | The Guardian https://ift.tt/Kaz6b7i
via IFTTT