The Norwegian privacy regulator Datatilsynet has decided on the basis of research not to create a Facebook page because the privacy risks for users are too great. To the best of its knowledge, the regulator is the first organization to have carried out a risk analysis and a Data Protection Impact Assessment (DPIA) into the […]
IP cameras from manufacturer Hikvision can be remotely taken over through a serious security vulnerability, after which the underlying network can be attacked. Hikvision has released firmware updates. In addition, the vulnerability is also present in IP cameras that Hikvision manufactures but that other manufacturers offer under their own name. It is unknown if updates […]
The introduction of a corona QR-ticket necessity for access catering, theaters and events with the exception of terraces will be implemented on the 25th of September in The Netherlands following EU countries like France and Italy. The members in favour have great concerns about security, privacy, freedom of choice but think the measure is proportionate […]
Apple has abandoned its once-famous commitment to security and privacy. The next version of iOS will contain software that scans users’ photos and messages. Under pressure from U.S. law enforcement, Apple has put a backdoor into their encryption system.
In the USA 10 major data brokers have data on individuals’ demographic characteristics (from race to gender to income level) and political preferences and beliefs (including support for the NAACP, ACLU, Planned Parenthood, and the National LGBTQ Task Force), and on current US government and military personnel. Several of these firms also market: Americans’ geo-locations. […]
In a large-scale phishing campaign designed to steal credentials, criminals are using open redirects and captchas to deceive victims, Microsoft reports. The attack starts with a phishing email that masquerades as a Zoom invitation, Microsoft 365 notification, or a message that the password has expired. Users are then prompted to open a link in the […]
Power Apps, a low-code development platform for creating business-intelligence tools, were susceptible to a default configuration that made their data sets findable by search engines or anyone with knowledge of the web address. 38 million records pf 47 organizations— containing names, dates of birth, addresses and, in some cases, Social Security numbers were exposed.
Amazon has fired a driver by an automatically generated email by a Bot. Worldwide 4 million drivers have downloaded the app, including 2.9 million in the U.S., according to App Annie which services the AI decision making. Do you think the AI usage in Human Resources here corresponds righteous with the ‘intended purpose’ and ‘reasonably foreseeable misuse’ […]
The European privacy regulator EDPS is launching two investigations into the use of Amazon’s and Microsoft’s cloud services by EU authorities. The reason is the invalidity of the Privacy Shield treaty between the EU and the United States. The European regulator states that when using the tools and services of major service providers, personal data […]
Cyberinsurance giant AXA said that it would no longer be writing policies to cover ransomware payments. Now AXA in Thailand, Malaysia, Hong Kong, and the Phillippines have reportedly been hit… by a ransomware attack. The ransomware gang posted on its website over the weekend that it had stolen 3 terabytes worth of data, including: customers’ […]