Data breach or legal news about data protection and data breaches in the EU.
Europol appears to have confirmed a breach first claimed by the threat actor known as IntelBroker, a moderator on BreachForums. IntelBroker’s listing, which was subsequently marked as “SOLD,” claimed to have breached Europol in May of this year, resulting in the exposure of “For Official Use Only” (FOUO) and classified data. The compromised data allegedly […]
The Information Commissioner’s Office has published new data protection fining guidance setting out how it decides to issue penalties and calculate fines. The guidance provides greater transparency for organizations about how the ICO goes about using its fining power. Tim Capel, ICO Director of Legal Service, said: “We believe the guidance will provide certainty and clarity for […]
The Independent reports: China has been accused of a “malign” cyberattack on Britain after it allegedly accessed millions of voters’ personal details during a hack on the election watchdog. The UK is poised to sanction those believed to be involved in Chinese state-backed interference, after deputy prime minister Oliver Dowden sets out details about the alleged incident later on […]
On March 14, 2024, the Court of Justice of the EU (“CJEU”) ruled that EU supervisory authorities have the (corrective) power to order data controllers who have been found to process personal data unlawfully to erase such personal data, even if the data subjects have not requested the erasure. (Case C‑46/23) The CJEU ruled that […]
A December 8 press release from Interpol begins: Read more at INTERPOL.
Inside Privacy writes: Read more at Inside Privacy.
The Telegraph reports: GCHQ is investigating a cyber attack on the London private hospital favoured by the Royal family. The spy agency’s National Cyber Security Centre (NCSC) is probing what King Edward VII’s Hospital described as “an IT security incident” during which a “third-party” obtained confidential medical information such as doctors’ letters and pathology reports relating to some patients. The […]
The Record reports on what appears to be another CitrixBleed incident: CTS, a managed service provider (MSP) for law firms in the United Kingdom, is “urgently investigating” a cyberattack that has disrupted its services — potentially leaving hundreds of British law firms unable to access their case management systems. The company announced Friday that it was “experiencing […]
This time it was Denmark. Who might be next? Bank InfoSecurity reports: Hackers potentially linked to the Russian GRU Main Intelligence Directorate carried out a series of highly coordinated cyberattacks targeting Danish critical infrastructure in the nation’s largest cyber incident on record, according to a new report. SektorCERT, a nonprofit cybersecurity center for critical sectors […]
PA Media reports that Equifax UK was fined over a breach at the firm’s U.S. owner, Equifax, Inc. The UK’s financial watchdog has fined Equifax £11 million for its role in one of the largest cyber attacks, which affected more than 13 million British consumers in 2017. The credit rating giant failed to keep its […]
