#privacy: UN entities “not subject to the GDPR” UNICEF media chief explains after data breach

 UNICEF, the United Nations children’s agency has said it may have caused a data breach to reveal the private information of thousands of online learners through the Agora platform. The Agora website gives UNICEF staff and public members the chance to go through free training courses that teach on children’s rights, humanitarian action, research and […]

#privacy: New Zealand Transport officials red-faced after data breach announcement

A technology glitch at the New Zealand Transport Agency (NZTA) has led to an embarrassing data breach announcement made by officials at the government body. The glitch occurred within a data key which was known for its strong cyber-security. “The transport agency can confirm the Google API was incorrectly left open as part of the […]

#privacy: Letter describes facial-recognition practices conducted at King’s Cross in London

Developers at King’s Cross Central in north London have revealed that facial recognition employed at the site was installed to identify individuals who are guilty of having committed a previous offence. The insight came in a letter penned by one of the developer’s managers, sent to Sadiq Khan in mid-August of this year after the […]

#privacy: Facial recognition technology surveillance at King’s Cross station to “protect privacy”

King’s Cross station developer has defended its use of facial recognition technology on the 67-acre site in central London, news reports reveal. King’s Cross is currently using the technology to record images of members of the public, a practice which needs full justification under the EU’s General Data Protection Regulation. A spokesperson for the firm […]

Anonymisation does not work for big data due to lack of protection for direct & indirect identifiers and easy re-identification vs pseudonymisation

  Recently, well-publicised research by data scientists at Imperial College in London and Université Catholique de Louvain in Belgium as well as a ruling by Judge Michal Agmon-Gonen of the Tel Aviv District Court have highlighted the shortcomings of outdated data protection techniques like “Anonymisation” in today’s big data world. Anonymisation reflects an outdated approach to data protection developed when the processing […]

Saefko: new trojan being sold on the dark web

A new trojan, dubbed Saefko, has been found for sale on the dark web with tools to steal credit card details, crypto wallets and more.  Researchers from the Zscaler ThreatLabZ team explained how the new remote-access trojan (RAT), Saefko, has multiple functionalities –  thus presenting a unique business threat.  RAT is a type of malware […]

Data breach takes TfL Oyster system offline

London’s Oyster card system has been taken offline, after engineers at Transport for London (TfL) found user accounts had been accessed by unauthorised parties.  TfL says that only a “small number” of customer accounts were broken into following their passwords and login codes being exposed on “non-TfL websites.” The transport firm stated: “No customer payment […]