Ransomware Security Vulnerability Zero-day

Ransomware beats vulnerability patching of SonicWall

A ransomware group caught targeting a recently patched SonicWall vulnerability leveraged that vulnerability before the patch became available, Mandiant reported.The vulnerability, a SQL injection bug in SonicWall’s SMA-100 series of remote access products, was already used in a headline-grabbing attack. Hackers used the vulnerability as a zero-day to breach SonicWall itself prior to the patch […]

GDPR Privacy

Medical appointments on Vaccines in Amazon Web Services

Doctors’ organisations and a human rights group recently challenged the storage of vaccine appointment data on a platform hosted in France and Germany by Amazon Web Services. They sought an urgent order to suspend the transfer of data from Doctolib (a French company contracted by the French government to provide a platform for vaccine appointments) […]

GDPR Privacy

6 Million EUR GDPR fine for CAIXABANK in Spain

The Spanish Data Protection Authority (AEPD) imposed a total fine of 6.000.000 EUR on CAIXABANK for unlawfully processing clients’ personal data (4.000.000 EUR) and not providing sufficient information regarding the processing of personal data (2.000.000 EUR). The AEPD considered that the document designed to comply with the information did not include enough information regarding the […]

GDPR Privacy

Spy pixels in email becoming the new normal

The use of “invisible” tracking tech in emails is now “endemic”, according to a messaging service that analysed its traffic at the BBC’s request. 66% of emails sent to its users’ personal accounts contained a “spy pixel”, even after excluding for spam.Emails pixels can be used to log:– if and when an email is opened– […]

Privacy

Rioting at the Capitol, watch your privacy settings!

Key to bringing the mob to justice has been the event’s digital detritus: location data, geotagged photos, facial recognition, surveillance cameras and crowdsourcing. So when they stormed the Capitol their apps tracked them down and identified individuals from a trove of leaked smartphone location data. Read more about this article here: https://www.nytimes.com/2021/02/05/opinion/capitol-attack-cellphone-data.html