#privacy: The CCPA – changing the US privacy landscape

On the 1 January 2020, the California Consumer Privacy Act (CCPA) will enter into application. Widely considered to be one of the most significant legislative privacy developments in the US, the legislation will also have a major impact globally given the size of California’s economy. In many respects, the CCPA is leading the way for substantial […]

#privacy: More than 12,000 unique variants of WannaCry exist

Two years after the infamous WannaCry ransomware attack, it still continues to affect thousands of computers worldwide.  A recent report by Sophos has revealed that although security patches and anti-virus protection against WannaCry are available, more than 12,000 unique variants exist. The new variants can stay hidden for longer and can spread more effectively. On […]

#privacy: Breach hits tens of millions of Lion Air passengers

Passengers from two airline companies owned by Lion Air; Malindo Air and Thai Lion Air, have had their personal data compromised.  At least 35 million records had been circulating online on data exchange forums due to an open Amazon bucket. The records were found in two databases, one with 21 million records which had included […]

#privacy: New York state pushes envelope for data privacy standards

On July 25, 2019, New York governor Andrew Cuomo signed into law two bills aimed at increasing the obligations of entities handling computerized private data. The Stop Hacks and Improve Electronic Data Security Act (SHIELD Act) expands the requirements for notifying affected parties in the event of a data breach and sets forth a demanding list of […]

#privacy: Over 15,000 webcams worldwide can be accessed by anyone

Research has discovered that more than 15,000 private webcams around the world can be accessed by anyone with an internet connection. White hat hacktivist, Avishai Efrat from Wizcase, located more than 15,000 webcams posing a significant threat to people’s privacy. In a post, Wizcase wrote that as well as having the ability to view the […]

#privacy: Gatwick Airport confirms plans to use facial recognition technology

Gatwick Airport becomes the first British airport to permanently use facial recognition technology for passenger ID checks.  Following numerous self-boarding trials with EasyJet, the technology will allow passengers to walk through security and straight onto an airplane.  Passengers who have chosen to opt-in to use the service will have their faces scanned by the technology. […]

#privacy: Data privacy set to strengthen in the Philippines

The Philippines has signed up as the ninth country within the Apec-CBPR privacy framework. Once given the green light, the shift will leave the country needing accountability agents to certify businesses compliancy with regard to data processing standards. The National Privacy Commission (NPC) is also set to launch the Philippine Privacy Trust Mark before the […]

#privacy: Data breach fine of $500,000 for US brokerage firm

US brokerage, Philips Capital Inc., has been fined $500,000 (£402,950) for inadequate cyber-security standards which are believed to have contributed to a data breach at the firm in 2018. The breach led to $1m being stolen from client accounts. Further to the announcement of the fine issued by the US Commodity Futures Trading Commission (CFTC), […]

#privacy: Personal data on almost the entire population of Ecuador has leaked

The personal data of almost every citizen of Ecuador has been found leaked online due to a massive data breach. Researchers Noam Rotem and Ran Locar from security company vpnMentor discovered an unsecured server in Miami, Florida. The server had been set up by an Ecuadorian marketing and analytics company Novaestrat.  The server contained a […]

#privacy: US sanctions three North Korean hacking groups

The US Treasury has imposed sanctions on three state-sponsored North Korean hacking groups.  The sanctions would apply to the Lazarus Group, Bluenoroff and Andariel – all of whom are responsible for “malicious cyber activity on critical infrastructure,” said the Treasury Department in a statement.  The US have claimed that the three groups are “agencies, instrumentalities, […]