Browsing Tag
Data Breach
57 posts
University of Michigan Data Breach
The recent cyberattack on the University of Michigan, where sensitive employee and student data fell victim to a…
NI Police Service Apologises after Staff Data Released
The PSNI have apologised after a major data breach saw thousands of staff's personal data released to the general public.
Turkey’s Entire Population Has Data Leaked
It was discovered that roughly 85 million people’s data (the entire population of Turkey) had their information added…
Ring Fined for Allowing Illegal Surveillance of Customers
The FTC have said Ring should pay $5.8 million and impose new security measures following a complaint regarding practices with user videos.
Company Should Have Complied with Data Request Regardless of Police Investigation
The Malta DPA had told an IT Company that they cannot refuse a consumer's request for access due to police investigation.
Hackers are Holding Personal Data Hostage
CNBC have highlighted the preferred method for cyberattacks at the moment whereby hackers steal information and threaten to leak it.
Facebook Brazil Fined Billions for Third-Party Data Scraping
A Brazilian Court has fined Facebook BRL 4.1 billion after it was found they violated LGPD by failing to adequately protect users data
Former Uber CISO Avoids Jail Time After Data Breach
Uber's former CISO narrowly avoided jail time after covering up a huge data breach that impacted the data of over 57 million people.
NextGen Data Breach Compromises 1 Million Patient Records
NextGen recently disclosed a data breach affecting the healthcare records of over 1 million patients after client credentials were stolen
New York Law Firm Fined $200,000 After Not Protecting Data
A New York law firm has been fined $200,000 for failing to protect the protected health information of New Yorkers.
Hilton Hotels Loyalty Program Data Breached
Hilton Hotels loyalty program was supposedly breached and data put up for sale with up to 3.7 million users impacted.
Five Guys Job Applicant Data Hacked
Five Guys recently contacted people who had applied for jobs with them to advise personal information had been accessed in a data breach.
Spanish AEPD Launches Breach Assessment Tool
Spain's AEPD have released a tool designed to assess a data breach and determine whether the AEPD needs to be notified.
Baltimore Court to Approve $9.5 Million Settlement
A healthcare provider has decided to settle a lawsuit about a data breach that lasted 18 months and impacted over 500,000 patients.
Drizly Agrees to Tighten Data Security After Alleged Breach
Drizly, an Uber subsidiary, has agreed to improve data security and reevaluate the data they are collect from consumers.
Medibank Confirms Hackers Accessed All Customers Data
Medibank have confirmed the data of all of their 3.9 million customers has been affected by a major cyber attack by hackers.
IL Court Finds Written Waivers Do Not Defeat BIPA Claims
An Illinois Court has denied a motion to dismiss in a case against a blood bank who collected and stored biometric information.
California AG Proposes $1.2 Million Settlement With Sephora
The Californian Attorney General has proposed a settlement with cosmetics retailer Sephora for violations of the CCPA.
Tracking: DPA Lower Saxony Fines Volkswagen €1.1 Million
Volkswagen have been fined for unlawful data processing while using a test vehicle to carry out training on a driver assistance system.
Black Kite: Cost of Data Breaches Averages $15 Million
A review into cyber incidents shows the average cost of a cyber attack is $15 million with 1 in 4 suffering an attack in the last year.
Identity-Related Breaches Hit 84% of US Firms in 2021
IDSA have released data showing that 84% of US firms experienced a security breach because of stolen or compromised identities.
FTC Fines Company $500,000 for Multiple Data Breaches
FTC's case against CafePress has resulted in a settlement of $500,000 USD after a hackers accessed personal information in multiple data breaches
€4.24 Million Fine Against Uber Companies
The Italian DPA has fined Uber companies a collective €4.24 million following GDPR violations and a security affecting millions.
New Jersey AG Agrees £1.2 Million Settlement with Companies
The New Jersey AG has agreed a settlement of $1.2 million with multiple companies after inadequate security led to multiple data breaches
Nebraska Court Finds Plausible Risk of Harm
A medical insurance provider is facing a class action complaint after a cyber attack gained access to nearly 40,000 customers' information.
Isle of Man Board Ordered to Comply with GDPR
An Isle of Man healthcare board has been investigated by the Isle of Man DPA following complaints of non compliance with GDPR.
Indiana Amends Breach Requirements
Amendment to Indiana Code Concerning Trade Regulation changes the timescales for which a data breach must be reported.
MI Court: Sale of Subscription Data is a Concrete Injury
A case against a magazine publisher alleging violation of privacy rights will be moving forward after a motion to dismiss was rejected
NY Court Approves $4.95 Million Settlement for Poor Security
A settlement has been agreed for a class action settlement against Deloitte following a significant data breach in May 2020.
Florida Class Action Claims Negligent Disclosure of PHI
A class action complaint against Humana and Cotiviti over unauthorized data access has reached a decision on Plaintiff's claims.
Pennsylvania Bill Expands Requirements
A new Bill has passed Pennsylvania Senate with amendments on personal data and how a data breach must be handled by important entities
Italy Fines US facial recognition firm
A US-based company were heavily fined by Italy's data privacy watchdog after breaching GDPR by collecting biometric data without consent.
Doing business in Brazil – Rio de Janeiro Fines Food Delivery Platform R$1,508,240
In a sign of what is to come in Brazil, this food delivery company did not value its…
New Jersey to Require Comprehensive ISPs
A new Bill for greater business protections for any personal information used or collected has been introduced to New Jersey State Assembly.
New York Court Finds Exposure of PII Causes Concrete Harm
A NY District Court looked at a motion to dismiss a proposed class action case brought against a company by former employees.
Missouri Complaint Alleges Concealment of a Data Breach
An insurance company has a case with a contracted law firm alleging they concealed a breach of their personal information
Norwegian Body Fined for Negligent Security Measures
Norway's DPA has reprimanded a public body following a breach via employee emails allowing access to sensitive data.
Brazilian Website Ordered to Cease Selling Personal Data
A Brazilian website was found to be in violation of LGPD due to selling personal data without consent of the data subjects.
Hackers steal $18m
Lympo, an Animoca Brands subsidiary, suffered a breach that lost the company close to $19 million in its native LMT token.
Securing Data in the Construction Industry
Privacy continues to an issue impacting companies of all sizes. Construction is no exception, and as seen recently, can be fined heavily.
LGPD Information Security for Small Businesses
ANPD has provided advice for small businesses to teach their employees about information security in the workplace.
South Korea PIPC Fines 6 Medical Entities For Unlawful Processing
South Korea PIPC took action against 6 medical entities due to a number of data infringements including inadequate security
Biometrics: Illinois Court Allows BIPA Class Action Against Airline Baggage Handler
Employees filed a class action alleging the company collected their fingerprint data, but failed to provide a retention…
Transparency: Recommendations for Brazil’s ANPD
The recent mega leaks in Brazil have people calling on the ANPD to improve mechanisms to make it easier for people to see their personal data
Court Hits Social Media Giant with $92 Million Settlement
A settlement has been agreed at an Illinois District Court between TikTok and its customers for alleged invasions of consumer privacy.
Twitch Suffers Major Breach
Twitch has confirmed that they have suffered a major data breach when a hacker accessed the company's servers.
Parties Propose Class Settlement for PII Scraping
A class action settlement has been proposed following a major data breach involving a fashion and beauty subscription service.
FTC Puts Health Apps and IoT Devices on Notice
The FTC's Health Breach Notificaition Rule has put health apps on notice about data breaches with penalties of up to $43k per day
Privilege: Pennsylvania Court Orders Production of Investigation Report
Court order store chain to produce a report investigating the nature and the scope of their data breach
EU questions proposed Facebook acquisition
The acquisition of a CRM software provider by the online messaging giant would allow Facebook to more easily…