dcsimg

Hospital patients’ medical records found on roadside

Hospital notes of patients who attended Craigavon Area Hospital, Co. Armagh were discovered scattered on a local roadside on 7 February. The records contained the information of 18 patients who visited ward 2 South Medicine at the hospital, including their name, age, reason for admission, and medical and social history. A man and a six-year-old child, who wish to remain anonymous, discovered the … [Read more...]

Unlawful data processing practices cost Italian telecoms organisation more than €27 million

The Italian Data Protection Authority (Garante per la protezione dei dati personali) last month issued a €27,802,946 fine to telecoms company TIM S.p.A for several GDPR (General Data Protection Regulation) infringements and a lack of accountability. The unlawful practices, which occurred between 2017 and 2019, affected millions of individuals, some of whom were not even TIM S.p.A customers. They … [Read more...]

Ireland’s DPC begins investigation into Google and Tinder

Ireland’s DPC (Data Protection Commission) is investigating Internet giant Google and matchmaking app Tinder over the way they process and retain users’ data. Inquiry into Google The DPC has commenced an own-volition Statutory Inquiry into Google Ireland Limited following complaints from several EU consumer organisations about its processing of users’ location data and the transparency of the … [Read more...]

250 million Microsoft customer records exposed in latest breach

In its latest data breach, Microsoft has exposed nearly 14 years of customer service and support records, equating to the details of nearly 250 million records. The breach was discovered by Comparitech’s security research team, which is headed by Bob Diachenko, who immediately informed Microsoft. The corporation took swift action; in total, the data was exposed from 28–31 December 2019. Diachenko … [Read more...]

Cyber attacks and data breaches in review: January 2020

The new decade is off to a promising start, with only 61 disclosed data breaches or cyber attacks. It’s not all good news, though, as a handful of massive incidents – including the ongoing leaks of medical files in the US – has helped push the number of breached records to 1.5 billion. There were also several worrying incidents involving European organisations. Let’s take a look at some of them … [Read more...]

Frankfurt’s IT networks grinds to a halt amid Emotet attack

The week before Christmas, Frankfurt saw the unwelcome return of Emotet, a banking trojan that recently came out of hiding to terrorise organisations across the globe.  The malware spread through the city’s systems, forcing officials to shut down its IT network, causing huge delays to government services.  This is the fourth time in recent weeks that Emotet has struck in Germany, following attacks … [Read more...]

Cyber attacks and data breaches in review: December 2019

In some respects, 2019 ended on a positive note, with a comparatively low 627,486,720 breached records.  That’s about a third of the monthly average, and ensures that the year accounted for only 12.7 billion breached records.  Over the next few weeks, we’ll analyse the information we’ve tracked throughout 2019 and produce an infographic summarising the year’s figures.  In the meantime, here are … [Read more...]

Cyber attacks and data breaches in review: September 2019

September may have fewer data breach incidents than the previous month, but overall there was a massive 363% increase, totalling 531,596,111 breached records. This number includes a whopping 419 million data records exposed from an unknown server and brings the total breached record for the year so far to 10,331,579,614. Plenty of those breaches occurred in Europe, so let’s delve into a few of … [Read more...]

Polish data protection authority issues €645,000 fine to online retailer

Poland’s Personal Data Protection Office (UODO) this week imposed a PLN 2.8 million (€645,000) fine on online retailer Morele.net for “insufficient organisational and technical safeguards”.  The data breach affected approximately 2.2 million customers who purchased products through one of the group’s nine websites.   The extent of the data breach The leaked data included names, telephone … [Read more...]

An Post notifies the Data Protection Commission of customer data breach

An Post has notified the Data Protection Commission (DPC) of a breach affecting 250 customers.   An email sent to customers about the move of the AddressPal service from one post office in Cork to another accidentally had all 250 recipients’ email addresses in the ‘To’ field rather than 249 of them being in the ‘Bcc’ (blind carbon copy) field. This meant every customer who received the … [Read more...]