An anonymous reader shares a report: Australia’s privacy watchdog is suing Facebook over the Cambridge Analytica data breach — which, back in 2018, became a global scandal that wiped billions off the tech giant’s share price yet only led to Facebook picking up a $5B FTC fine. Should Australia prevail in its suit against the tech giant the monetary penalty could…
Tag: data breach
‘Have I Been Pwned’ Is No Longer For Sale
Troy Hunt, the owner and founder of the well-known and respected data breach notification website “Have I Been Pwned,” announced in a blog post today that his website is no longer being sold and will continue running independently. The news comes several months after Hunt announced he was actively looking for a buyer. Last June, Hunt wrote: “To date, every line…
Apple Has Blocked Clearview AI’s iPhone App for Violating Its Rules
An iPhone app built by controversial facial recognition startup Clearview AI has been blocked by Apple, effectively banning the app from use. From a report: Apple confirmed to TechCrunch that the startup “violated” the terms of its enterprise program. The app allows its users — which the company claims it serves only law enforcement officers — to use their phone camera…
Samsung Cops To Data Breach After Unsolicited ‘1/1’ Find My Mobile Push Notification
An anonymous reader quotes a report from The Register: Samsung has admitted that what it calls a “small number” of users could indeed read other people’s personal data following last week’s unexplained Find my Mobile notification. Several Register readers wrote in to tell us that, after last Thursday’s mystery push notification, they found strangers’ personal data displayed to them. Many readers,…
Breach of MGM Hotels’ Cloud Server Exposed Data on 10.6 Million People
Personal information from more than 10.6 million people was published online this week, reports ZDNet — all from people who’d stayed at MGM Resorts hotels (which include the Bellagio, Mandalay Bay, and ARIA):
Besides details for regular tourists and travelers, included in the leaked files are also personal and contact details for celebrities, tech CEOs, reporters, government officials, and employees at some…
US Defense Agency That Secures Trump’s Communications Confirms Data Breach
An anonymous reader quotes a report from Forbes: The Department of Defense agency responsible for securing the communications of President Trump has suffered a data breach. Here’s what is known so far. The U.S. Defense Information Systems Agency (DISA) describes itself as a combat support agency of the Department of Defense (DoD) and is tasked with the responsibility for supporting secure…
Slickwraps Data Breach Exposing Financial and Customer Info
Slickwraps, a mobile device case retailer, has suffered a major data breach exposing employee resumes, personal customer information, API credentials, and more. Bleeping Computer reports: In a post to Medium, a security researcher named Lynx states that in January 2020 he was able to gain full access to the Slickwraps web site using a path traversal vulnerability in an upload script…
Breach at Indian Airline SpiceJet Affects 1.2 Million Passengers
SpiceJet, one of India’s largest privately owned airlines, suffered a data breach involving the details of more than a million of its passengers, a security researcher told TechCrunch. From the report: The security researcher, who described their actions as “ethical hacking” but whom we are not naming as they likely fell afoul of U.S. computer hacking laws, gained access to one…
Facebook To Pay $550 Million To Settle Facial Recognition Suit
Facebook has agreed to pay $550 million to settle a class-action lawsuit (Warning: source may be paywalled; alternative source) over its use of facial recognition technology in Illinois, “giving privacy groups a major victory that again raised questions about the social network’s data-mining practices,” reports The New York Times. From the report: The case stemmed from Facebook’s photo-labeling service, Tag Suggestions,…
LabCorp Security Lapse Exposed Thousands of Medical Documents
A security flaw in LabCorp’s website exposed thousands of medical documents, like test results containing sensitive health data. From a report: It’s the second incident in the past year after LabCorp said in June that 7.7 million patients had been affected by a credit card data breach of a third-party payments processor. The breach also hit several other laboratory testing companies,…