dcsimg

FAI hit with data breach

The FAI (Football Association of Ireland) confirmed yesterday that servers in its Dublin headquarters were breached in an external hack over the weekend.  In a statement released on Wednesday, the FAI said that the breach affected its email services, but not customers’ payment details or ticket sales as this information is stored offsite.   The FAI has hired a forensic computer scientist … [Read more...]

List of data breaches and cyber attacks by region: May 2019

You might have noted that data breaches happen a lot. We post about incidents as often as we can, but it’s practically impossible to keep up.  That’s why we’ve decided to start compiling a monthly list of incidents from stories reported around the globe.  In our inaugural list, we look back at May 2019, in which there were at least 79 reported data breaches.  If we’ve missed anything, let us know … [Read more...]

DPC launches investigation into Google Ireland

Ireland’s DPC (Data Protection Commission) has launched a statutory enquiry into how Google Ireland processes data for the purpose of advertising.  The probe is the result of a number of submissions to the DPC, including those made by Dr Johnny Ryan, Chief Policy & Industry Relations Officer for Brave, a privacy-focused web browser.   Dr Ryan’s submissions reveal that Google’s … [Read more...]

‘ZombieLoad’ vulnerabilities expose computers using Intel chips

Cyber security researchers have discovered a class of vulnerabilities in Intel chips that could be exploited to steal sensitive information, unencrypt data and spy on tasks handled by the processor.  The bugs, dubbed ‘ZombieLoad’, affect almost every computer that uses an Intel chip released since 2011.  What does ZombieLoad do?  ZombieLoad is a side-channel attack that enables criminals to … [Read more...]

Burger King data breach potentially exposed the data of thousands of children

Kool King, an online shop owned by Burger King, had thousands of customer records exposed through an unsecured database, which was discovered last week.  The website allows customers who purchase from the children’s menu in Burger King, France to access content, including games, films and activities, after creating a profile on the platform.   The breached database, which potentially contained the … [Read more...]

WhatApp users urged to update app after serious security vulnerability discovered

WhatsApp, the messaging app owned by Facebook, confirmed a serious security vulnerability in its system on Monday, 13 May that left users open to spyware installations on their phone.   The breach, affecting both iOS and Android users, enabled the software to be installed through voice calls, even if the call wasn’t picked up. In some cases, the call was removed from the call log, so the missed … [Read more...]

The top six takeaways for corporate data privacy compliance

For nearly two months, Malwarebytes Labs has led readers on a journey through data privacy laws around the world, exploring the nuances between “personal information” and “personal data,” as well as between data breach notification laws in Florida, Utah, California, and Iowa. We explored the risks of jumping into the global data privacy game, comparing the European Union’s laws with the laws … [Read more...]

Hospital patients’ medical notes found on Drogheda estate

Hospital notes on patients who attended Our Lady of Lourdes Hospital in Drogheda, Co. Louth were discovered on a housing estate earlier this week.  The doctor handover notes, detailing the dates of birth, family situations, medical conditions and hospital wards attended of ten patients who visited the hospital’s emergency … [Read more...]

Microsoft suffers data breach affecting webmail accounts

Microsoft has confirmed that a number of its email services have been breached, with users’ email content potentially exposed.  The tech giant noted in its incident statement on 12 April that the criminal hackers could have viewed email addresses, folder names and email subject lines, but … [Read more...]

What is personal information? In legal terms, it depends

In early March, cybersecurity professionals around the world filled the San Francisco Moscone Convention Center’s sprawling exhibition halls to discuss and learn about everything infosec, from public key encryption to incident response, and from machine learning to domestic abuse. It was RSA Conference 2019, and Malwarebytes showed up to attend and present. Our Wednesday afternoon session—“One … [Read more...]