GDPR Services report 10 Private Data breaches
– Week 30, 2019 –
This is a curated list about last week’s latest news from by our GDPR Services. Be informed about the latest 10 Private Data breaches, identified and reported publicly during Week 30, 2019.
As these Private Data breaches have a severe negative impact on any business and highly serious legal consequences, consider a these GDPR Service packages: on-demand GDPR COMPLIANCE or a recurrent monthly service of GDPR COMPLIANCE ADD-ON together with your dedicated data protection OFFICER package.
- Man arrested over UK’s Lancaster University data breach hack allegations
- Cops have cuffed a 25-year-old man from Bradford on suspicion of committing Computer Misuse Act crimes after Lancaster University suffered a data breach affecting more than 12,000 students and applicants. 25-year-old Bradfordian cuffed by NCA over ’20k’ records breach
- UPDATE: 8 More Providers Added to AMCA Data Breach Victims
- Eight covered entities have been added to the victim tally of the massive American Medical Collection Agency breach, which has now claimed a total of up to 25 million breached patient records. Austin Pathology Associates became the third provider within a week to report its patient records were breached during the eight-month hack on the billing services vendor. Shortly after, seven more covered entities reported they too were impacted: Natera, American Esoteric Laboratories, CBLPath, South Texas Dermatopathology, Seacoast Pathology, Arizona Dermatopathology, and Laboratory of Dermatopathology ADX. and Austin Pathology Associates Notifies Patients of Data Security Incident
- Man Accused Of Hacking Bulgaria’s Tax Agency Is Released And Given Lesser Charges
- A cybersecurity expert accused of hacking the data of more than 5 million Bulgarian taxpayers was released by police Wednesday after his charges were downgraded. Kristian Boykov, a 20-year-old Bulgarian cybersecurity worker, was arrested in Bulgaria’s capital Sofia last week in connection to the breach.
- SOFIA (Reuters) – Prosecutors have charged two workers at a cyber security company with terrorism as part of an investigation into Bulgaria’s biggest-ever data breach
- Georgi Yankov, a manager at the company Tad Group, has been charged and released from custody, Georgi Stefanov said. Earlier charges of crime against information systems against Kristian Boykov, a 20-year-old cyber security worker at the same company, have been changed to terrorism, he added. Both deny wrongdoing, Stefanov said. Prosecutors were not immediately available for comment. Two charged with terrorism over Bulgaria’s biggest data breach: lawyer
- India’s Jana Bank Left KYC Customer Data Exposed
- Jana Bank, based in Bengaluru, was one of 10 financial institutions approved in-principle by the Reserve Bank of India in 2015 to establish as a so-called small finance bank — a bank that provides basic services for consumers and small businesses, including accounts and deposit acceptance, small business lending, and financial services to farmers and other micro industries. A so-called “small finance” bank in India has reportedly left sensitive data on 2.6 million of its customers exposed without password protection, according to Security Discovery reports this week.
Discover more trending and viral stories from our GDPR Service. The remaining Private Data breaches made news headlines. All these news related to GDPR Services happened just in the last week.
- Equifax has settled with the U.S. government and will pay at least $575 million, and possibly as much as $700 million.
- Some of the funds will go towards an account that can provide consumers with free credit monitoring services, and reimburse those who paid for these services after the 2017 breach. Every American will receive up to six annual free credit reports for seven years beginning next January. Equifax to Pay $575 Million as Part of Settlement with FTC, CFPB, and States Related to 2017 Data Breach
- More than 60 colleges who use the Ellucian Banner ERP software were recently targeted by hackers.
- They exploited a web services authentication bug (CVE-2019-8978) which was discovered earlier this year and fixed in May. The hackers specifically scanned for unpatched installations, and were successful at creating thousands of phony accounts on the ERP systems. However, no private data was compromised. TECHNOLOGY SECURITY ALERT – Exploitation of Ellucian Banner System Vulnerability
- A study of 500 recent data breaches concludes the effects are felt for years afterwards.
- Deliberate breaches cost $1 million more than accidental ones. Companies who tested their incident response plans experienced a savings of $1.2 million on average than those who didn’t have these plans. American breaches cost twice the average of foreign ones. Cost of a Data Breach Report – 2019
- Sky customers told to change password following possible data breach
- Database issues at the Swedish digital currency exchange QuickBit resulted in a breach of sensitive user data, according to an official announcement published on July 22. Suspected email breach leads to security worries for Sky and Swedish Crypto Exchange QuickBit Announces User Data Breach
- Facebook lost control of our data. Now it’s paying a record $5 billion fine
- Facebook is notching a record breaker. The Federal Trade Commission on Wednesday announced that Facebook agreed to pay a $5 billion fine over privacy violations and its failure to inform tens of millions of users about a data leak that happened years ago. The fine is the largest the US regulator has levied against a tech company. It turns out the company will pay a price after all for its endless scandals. But don’t worry, Facebook made $22 billion last year.