A ransomware group caught targeting a recently patched SonicWall vulnerability leveraged that vulnerability before the patch became available, Mandiant reported.The vulnerability, a SQL injection bug in SonicWall’s SMA-100 series of remote access products, was already used in a headline-grabbing attack. Hackers used the vulnerability as a zero-day to breach SonicWall itself prior to the patch […]
Doctors’ organisations and a human rights group recently challenged the storage of vaccine appointment data on a platform hosted in France and Germany by Amazon Web Services. They sought an urgent order to suspend the transfer of data from Doctolib (a French company contracted by the French government to provide a platform for vaccine appointments) […]
TikTok is facing a legal challenge from former children’s commissioner for England Anne Longfield over how it collects and uses children’s data. The claim is being filed on behalf of millions of children in the UK and EU who have used the hugely popular video-sharing app. If successful, the children affected could each be owed […]
The European Union will start a trial with a digital corona passport in early June to make it easier for holders to travel within the EU. The underlying European system must be ready and operational by the end of June. The “Digital Green Certificate” will serve as proof that someone has been vaccinated, tested negative […]
Multiple reports over the weekend confirmed that an attacker published details — including names, user IDs, phone numbers, and emails — of more than 533 million Facebook users on a forum.
A €14.5 million (U.S. $17.2 million) fine against Deutsche Wohnen issued more than two years ago has been dropped after a German court found under German law the property company could not be held responsible for violating the European Union’s strict privacy laws unless blame could be attached to a specific individual or executive.
The Spanish Data Protection Authority (AEPD) imposed a total fine of 6.000.000 EUR on CAIXABANK for unlawfully processing clients’ personal data (4.000.000 EUR) and not providing sufficient information regarding the processing of personal data (2.000.000 EUR). The AEPD considered that the document designed to comply with the information did not include enough information regarding the […]
The use of “invisible” tracking tech in emails is now “endemic”, according to a messaging service that analysed its traffic at the BBC’s request. 66% of emails sent to its users’ personal accounts contained a “spy pixel”, even after excluding for spam.Emails pixels can be used to log:– if and when an email is opened– […]
Read more about this article here: https://www.ft.com/content/43ed5e0a-7b0a-40db-800f-6f3b9c58b9a8
Key to bringing the mob to justice has been the event’s digital detritus: location data, geotagged photos, facial recognition, surveillance cameras and crowdsourcing. So when they stormed the Capitol their apps tracked them down and identified individuals from a trove of leaked smartphone location data. Read more about this article here: https://www.nytimes.com/2021/02/05/opinion/capitol-attack-cellphone-data.html