Two UK Police Forces Admit Mishandling Sensitive Victims' Data

LinkedIn targeted in wave of account hacks, Flaws discovered that enable remote ATM exploits, Monti gang and Raccoon stealer are back, LockBit struggles with technical difficulties, much more

Check out *three* of my pieces from Black Hat-DEF CON: Dark Caracal: A bumbling, yet surprisingly effective, cyber mercenary group, Postcards from Hacker Summer Camp 2023, both in the newly redesigned README.security and Incident response lessons learned from the Russian attack on Viasat in CSO Online.

Photo by Ethan Wilkinson on Unsplash

On the heels of an escalating data breach crisis affecting the Police Service of Northern Ireland (PSNI), the Norfolk and Suffolk police forces in the UK, which share some back office services, admitted mishandling the sensitive data of victims, witnesses, and suspects in cases including domestic abuse incidents, sexual offenses, assaults, thefts and hate crime.

Norfolk and Suffolk police said the data of 1,230 people was included in files responding to freedom of information requests and apologized. The Information Commissioner’s Office said both forces had been placed under formal investigation, which could result in them facing fines.

In a statement, …