On 22 November 2018, the Baden-Württenberg Data Protection Authority (LfDI) announced, with a press release available here in German, of having imposed a € 20.000 sanction on the chat site Knuddels.de, for breach of Art. 32 of the GDPR. Knuddels is an online chat service that was popular in the 2000s, before the Facebook era.… Read More: First GDPR sanctions are underway: the German case »
Among the new disciplines, introduced by GDPR, the one about the data breach is seemingly the least of the problem. Unlike DPIA and DPO, rated as discussed topics, Data Breach seems to be a clear point. In fact, there aren’t dispute on this topic. Also, WP250 Guidelines (adopted by the WP29 on 10/3/2017) explain and… Read More: Data Breach, not just “notification” »
WAITING FOR TRANSLATION
The GDPR was born one year ago (on the 27th April, published on GUE on 4th May 2016) and many have not yet outlined an adjustment plan. There is only one year left to comply to (the deadline is established on 25th May 2018). Some data protection authority of each EU Member State have published… Read More: How to prepare to comply to GDPR »
Computerweekly reports that Yahoo’s shareholdwers had to accep a relevant cut on the transaction with Verizon to sell Yahoo due to the security breaches that came into light over the last months: 350 M$. Not peanuts. How much security could have they bought for such an amount of money? It is interesting to take these… Read More: Consider costs of unsecurity when budgeting »
Sorry, this entry is only available in Italiano.
The 2015 edition of the Protected Health Information Data Breach Report, released by Verizon and based on a database of protected health information (PHI), amounting to 392 million records, and over 1,931 incidents detected in 25 countries. http://www.verizonenterprise.com/DBIR/2015/ What’s most alarming is that 90% of companies involved in the survey suffered violations of personal health… Read More: Report Verizon : violated 9 out of 10 companies »
According to a study from Verizon, nearly 20 percent of breaches involving healthcare information are not detected for at least one year. This is due in part to the fact that some organizations outside the healthcare sector are unaware that they have healthcare data stored in their systems. Twenty percent of healthcare breaches of health… Read More: Non-Healthcare Companies Have Exposed Personal Health Information in Breaches »
A breach of sanriotown.com has exposed the personal information of 3.3 million Hello Kitty users. The database may have been open to intruders for more than a month. The vulnerable database was found by the same person who recently discovered the unprotected MacKeeper database. The Register story NBC News Wired story
The Electronic Frontier Foundation learned that more than 100 automated license plate recognition (ALPR) cameras were exposed online. In some cases, the camera live streams could be accessed. ALPR systems capture images of license plates and alert authorities when they spot a plate on the “hot list.” The data are collected and stored even if… Read More: License Plate Reader Data Exposed »