GDPR Services: 19 stories worth reading from May 2019
Be informed from our GDPR Services about the latest 19 newsworthy cases and funny happenings Worldwide, identified and reported publicly during May 2019. As these Private Data breaches have a severe negative impact on any business and highly serious legal consequences, consider a few GDPR Service packages from owl power EUROPE: ( on-demand GDPR COMPLIANCE ) or a recurrent monthly service of (GDPR COMPLIANCE ADD-ON) together with your dedicated data protection OFFICER package.
- The NY-based firm Proven Data Recovery regularly made ransom payments to SamSam hackers over more than a year, research has shown.
- These payments eventually were delivered to Iranians running various high-profile ransomware scams. They are just one of many “payment mills” that are documented in this report. THE TRADE SECRET – Firms That Promised High-Tech Ransomware Solutions Almost Always Just Pay the Hackers
- The network of the Red Cross in Singapore has been breached and personal data of 4,000 potential blood donors has been leaked online.
- It is the third such leak in the past year in the city-state. Red Cross website hacked in latest Singapore cyber attack
- Since the enactment of the GDPR last May, regulators have seen 65,000 breach notices and levied more than $63M in fines for them.
- And this is just for the first nine months’ activities. None of the breaches was contested by their target companies, which is some small good news. First overview on the implementation of the GDPR and the roles and means of the national supervisory authorities (pdf)
- Members of an international cybercriminal syndicate supposedly responsible for creating the GozNym malware have been arrested and charged with stealing $100 million from more than 41,000 victims.
- The group combined two banking Trojans and operated for more than a year, starting in October 2015. The arrests were carried out in several eastern European countries, involving several different federal law enforcement agencies. Suspected members of the GozNym cybercrime network have been charged in relation to the organised and automated theft of tens of thousands of people’s sensitive personal and financial information. IN THE UNITED STATES DISTRICT COURT FOR THE WESTERN DISTRICT OF PENNSYLVANIA (pdf) and $100 million GozNym cybercrime network dismantled as suspects charged
- Chinese government officials have constructed mobile apps for mass surveillance of its citizens.
- This report documents how these apps work and why they violate privacy and free movement international laws. China’s Algorithms of Repression – Reverse Engineering a Xinjiang Police Mass Surveillance App
- The mobile provider Boost Mobile has acknowledged a breach in March recently.
- The notification is short on details, but the company sent automatic PIN resets to affected customers. Boost Mobile hacked
- Passport and personal data for more than 2M Russians has been leaked online.
- The leak stems from multiple government sources including the Russian SNILS (equivalent to our SSNs), emails and tax IDs. Government agencies were notified by a security researcher months ago but ignored warnings, claiming this data was public property anyway. Russian government sites leak passport and personal data for 2.25 million users
- Hackers have breached nearly half a million accounts at the Uniqlo stores owned by the Japanese company Fast Retailing.
- Partial payment card data may be included, along with customer contact information. Users are encouraged to reset their passwords. It happened over several weeks beginning last month. Unauthorized Logins on Fast Retailing Online Store Websites due to List Type Account Hacking and Request to Change Password
- Picreel and the open source Alpaca Forms project have both suffered a supply chain breach with infected code.
- The code has been found collectively in more than 4,000 websites. Picreel tracks very detailed visitor interaction, like mouse movement and page scrolling. Alpaca is a JScript-based forms provider. Alpaca quickly took down its servers with the malware. Hackers are collecting payment details, user passwords from 4,600 sites
Discover trending and viral stories about GDPR Services Worldwide. The remaining Private Data breaches breaches made news headlines. All these happened just in the last month.