#privacy: Camscanner app containing malware had 100 million Google Play Downloads

CamScanner, a phone PDF creator app, has been found containing a malicious dropper component. Igor Golovin and Anton Kivva, researchers at Kaspersky Labs, analysed the app after it had started to receive negative user reviews over the past month. It was discovered that the popular app had contained a malicious component known as “Trojan-Dropper.AndroidOS.Necro.n”. “It […]

#privacy: Presbyterian Healthcare Services hit by data breach

More than 180,000 patients have been notified by Presbyterian Healthcare Services following a phishing attack.  On June 6, 2019 the nonprofit health system discovered that an unauthorised third party had gained access to employees’ email accounts through a phishing scam. Subsequently the phishing attack led to the exposure of protected health information. Following an investigation […]

#privacy: Gartner exposed 1TB of data online

Discovered by researcher Bob Diachenko, an Elasticsearch cluster had been left on “public” visibility for at least eight months.  The cluster contained more than 1TB of data, and was found to belong to CEB Inc, a subsidiary of Gartner, a leading information technology research and advisory company.  Diachenko discovered the database on August 14, 2019 […]

#privacy: A quarter of IT pros would steal company information to further their career

Gurucul announced its results of a survey on workplace behaviour which was conducted at Blackhat USA 2019.  Of the 476 IT security professionals surveyed, it was identified that 24% would take company information in the hopes that it would help them apply for a more senior role at a competitor. Additionally, a further 27% of […]

PrivSec200: Recognising privacy and security professionals from across Europe

The PrivSec200 sponsored by OneTrust recognises and celebrates those individuals who have made significant contributions to the privacy and security sectors. Our editorial team considered several factors in compiling this list, including; social media impact, knowledge sharing and community support. Commenting on those who will be awarded, Ian Evans, Managing Director – EMEA, OneTrust said: [...]

#privacy: Fundraising platform exposes more than 7 million records

A database belonging to the fundraising platform Wedidit has been discovered non-password protected.  Security researcher Jeremiah Fowler discovered the non-password protected database on July 11th and following an investigation it was found that the database was connected to an online fundraising platform.  The database was publicly accessible and all the folders within it contained the […]

#privacy: City of London hit by nearly one million cyber-attacks each month

The City of London has been hit by one million cyber-attacks each month during the first quarter of 2019. According to a Freedom of Information (FOI) data request by Centrify, it was identified that in the first three months of 2019, the governing body was hit by 2.8 million cyber attacks, which equates to an […]

#privacy: StockX faces lawsuit following data breach

StockX, a sneaker trading platform, is facing a lawsuit over a data breach that resulted in more than 6.8 million customer records being exposed. Filed on Monday in U.S District Court, the lawsuit is on behalf of a minor from Kansas and other minors whose personal data “was accessed, acquired, stolen and re-sold by hackers […]

#privacy: Third party exposes data from UK property preservation company

An open database containing more than 18,000 records was found exposed due to a third party provider. Security researcher Mark Daniels discovered the CouchDB database on July 30th. It had contained 18,667 records including names, account numbers, transaction details, admin passwords and user credentials.  Additionally the database also had IP addresses, Ports, Pathways and storage […]