In a recent ransomware attack, the Alberta Dental Service Corporation (ADSC) has revealed that the personal data of approximately 1.47 million Canadians has been compromised. ADSC, which administers dental benefits for residents of Alberta, confirmed that the attackers infiltrated their systems between May 7 and July 9. The breach was detected by the corporation on July 10, according to Lyle Best, the chairman of ADSC and Quikcard Solutions Inc.
The compromised data includes names, addresses, and in some cases, personal banking information. Best informed the public that the privacy commissioner and the Alberta government have been notified about the incident, and individuals affected by the breach will be contacted directly. However, cybersecurity experts are urging ADSC to disclose how the compromise took place. Roger Grimes, data-driven defense evangelist at cybersecurity company KnowBe4, emphasized the importance of sharing this information with customers, as it would demonstrate the corporation’s ability to prevent future attacks.
Grimes highlighted that many ransomware victims are compromised through social engineering or unpatched software. By disclosing how ADSC was compromised and outlining their plans for preventing similar attacks in the future, Grimes believes that customers would have more confidence in ADSC’s ability to protect their data.
Moving on to the PSNI data leak, it was reported earlier this week that the private information of all 10,000 serving officers and staff of the Police Service of Northern Ireland (PSNI) was accidentally leaked to the public due to an employee’s error in responding to a Freedom of Information request. Now, dissident republicans claim to be in possession of the leaked data and have allegedly posted it on WhatsApp, according to The Telegraph.
Simon Byrne, the chief constable of the PSNI, stated that they are aware of the claim made by dissident republicans and are advising officers and staff on how to handle the situation and any potential risks they may face. There are concerns that affected officers might need to leave their positions or homes to protect their identities. Although no officers have been moved yet, an emergency group has been formed to discuss the risks faced by the five hundred victims referred to them.
This incident is being described as the worst security breach in Northern Irish history and has reignited tensions in a region that has faced civil unrest for many years. The breach has been compared to the 2002 Irish Republican Army (IRA) raid on the Special Branch HQ in Castlereagh, which also put officers and informants at risk, according to the Belfast Telegraph.
Furthermore, a new documentary film has just been released that explores the impact of a murder carried out by the IRA in 1973. This period, known as the Northern Ireland Troubles, was marked by a decades-long ethno-nationalist conflict that resulted in the deaths of over three hundred officers at the hands of dissidents, as noted by the Guardian.
The PSNI expects to incur financial losses as a result of the breach, either through penalties or compensation for the victims. However, Chief Constable Byrne stated that it is too early to speculate on the exact amount. The breach serves as a wake-up call for organizations to prioritize data security and implement stronger measures to protect sensitive information, especially in regions with a history of political unrest.