Browsing tag
Dailymotion, the rival to Youtube’s video-sharing empire, has become a victim of a cyber attack called credential stuffing. It is an attack using the usernames and passwords from other data breaches against Dailymotion’s login system. This is highly effective since people usually reuse the same username and passwords across multiple web services. This same attack […]
An investigation on the incident has been initiated Airbus, a major aviation company, has revealed a hacking incident that resulted in employees’ data theft. According to network security and ethical hacking specialists from the International Institute of Cyber Security, the company detected the incident in their systems and concluded that there was an unauthorized access; […]
A data breach that hit Airbus has reportedly employees of the aircraft manufacturing company. European aerospace corporation Airbus has disclosed that a security breach, which led to unauthorized access to its data, has, however, had no impact on its commercial operations. An official statement published by Airbus on 30 January 2019 says, “Airbus SE (stock […]
Google has been slapped by a 50-million Euro fine by CNIL (Commission Nationale de L’informatique et des Libertés), France’s Data Regulation Agency due to GDPR (General Data Protection Regulation) violation. CNIL’s acted on Google’s “lack of transparency, inadequate information and lack of valid consent regarding ads personalization”, and set the motion for other EU countries […]
France’s data privacy watchdog National Commission for Informatics and Liberties (NCIL) has slapped a $57 million fine on Google for not complying with GDPR rules. This is the biggest fine that has been imposed on a tech company after GDPR rules come into effect from May last year. According to CNIL, the fine has been imposed because the tech giant failed to provide […]
We could define DDoS (Distributed Denial of Service) attacks as the exclusive appropriation of a resource or service with the intention of avoiding any third party access. Also included in this definition are the attacks destined to collapse a resource or system with the intention of destroying the service or resource. DoS attacks are born […]
A critical data security trends in 2019 highlights show that protecting access to increasing volumes of sensitive data will be a challenge. So business owners should be careful about their stored data. “More companies are migrating their application workloads to the cloud, and new security needs are beginning to rise as a result of this […]
The regulatory agency in Italy declared that the social network is guilty of deceiving consumers regarding the use that gives their data Facebook has been fined by European authorities for the second time for breaches related to users’ privacy. This time, the authority that has decided to fine the company is Italian Competition Authority (ICA), […]
2018 can be summarized as the year when strict implementation of customer data protection policies was felt by the public, regardless of where they are located in the world. This is caused by the compliance of multinational companies to the European Commission’s GDPR (General Data Protection Regulation), which fully took effect starting May 25, 2018. […]
A security flaw in a GDPR-themed WordPress plugin has been used by hackers to hijack websites, as per reports. A blog post by Defiant, a company that focuses on WordPress security, discusses this issue pertaining to the popular plugin WP GDPR Compliance in detail. Tomáš Foltýn, security writer at ESET, had also discussed the issue […]
Records of 500 million customers of Marriott hotel group were compromised in data breach Marriott International hotel chain has revealed that its Starwood division’s reservations database had been compromised by unauthorized third parties. According to an internal investigation by specialists in digital forensics, an attacker had gained access to the Starwood network since 2014. […]
Researchers claim that this incident compromised the company’s Amazon S3 buckets Uber Technologies decided not to disclose a data breach in 2016, a decision that keeps bringing bad news for the transport service platform. According to reports of experts in digital forensics, Uber has been fined for an amount of $1.2M USD, amount established by […]
Some recommendations for compliance with the EU’s data security regulation As reported by information security and digital forensics specialists, all organizations that process personal data from residents of the European Community member countries must comply with the European Union’s General Data Protection Regulation (GDPR). The GDPR main mission is to unify data protection measures between […]
Amazon says “a technical error on its website disclosed customer information during the busiest shopping period of the year. The online retail giant though revealed the technical error and said it has fixed the issue and emailed all the affected customers. An Amazon spokesman did not answer the questions, like how many people were impacted […]
Some considerations on controller and processor responsibilities and other concepts present in the European data protection law, such as DPIA and DPO The application of the European Union’s General Data Protection Regulation (GDPR) began in May 2018. Since then, organizations are working on compliance with the high security standards demanded by GDPR, considered to be the most […]
Update your GDPR Compliance plugin right now. Security researchers have identified a critical vulnerability in the popular WP GDPR Compliance plugin assisting over 100,000 website owners around the world to comply with European privacy regulations known as GDPR that was announced by European Union on May 25th, 2018. The vulnerability was discovered by researchers at Wordfence which allows hackers to […]
Canada has apparently imitated European Union’s GDPR, that is the latest news from the country’s Office of Privacy Commissioner of Canada (OPC). Under the new policy, starting November 2018, all companies operating in the Canadian territory are mandated to report breaches that happened in their organization to the OPC. The OPC through its directive is […]
The fallout against Facebook has started, caused by the user data exposure breach due to its Cambridge-Analytica fiasco, starting with the UK’s ICO (Information Commissioner’s Office). ICO has slapped the social media giant a whopping $645,000 of initial fines due to the breach, under the 1998 UK Data Protection Act, the security breach also affects […]
Make sure your organization is aware of the best ways to keep out of harm your critical applications An organization faces both external and internal threats to its web applications’ safety. The different forms of cyberattacks continue to increase and, to increase the complexity of the problem, the threat model has changed dramatically, as many […]
GDPR is finally here, and it’s time to start discussing how its various legal aspects will affect data security in the wake of the new regulations. Let’s begin with a brief introduction about GDPR… The GDPR: A Brief Introduction The GDPR (General Data Protection Regulation), which replaces the Data Protection Directive 95/46/EC, is a regulation […]
Because the transfer of data used to function through the Sneakernet, personal computing in the 80’s and 90’s was a lot more simple. The slang term refers to the method users must adopt, copying data onto a floppy disk before physically delivering, or “sneaking,” the disk to its intended destination, as it the deliverer were wearing rubber shoes. In […]