The European Parliament’s headache over a major human resources data breach earlier this year just won’t fade. Austria-based digital rights group noyb on Thursday said it had filed two complaints against the European Union institution for infringing the bloc’s flagship privacy law, the General Data Protection Regulation (GDPR), over a data breach discovered before the summer.
In June, Parliament notified up to 9,000 staffers that it had suffered a data breach of its recruitment application PEOPLE, which contained staffers’ ID details, birth certificates, employment history, medical records, marriage certificates — which revealed sexual orientation — and proof of work dating back 10 years.
Read more…
Source: Politico Europe
Related:
- Ransomware severs 1,000 ships from on-shore servers
January 19, 2023
Norwegian maritime risk management business is getting a lesson in that very area, after a ransomware attack forced its ShipManager software offline and left 1,000 ships without a connection to on-shore servers. DNV said the attack happened on January 7, and updated its report yesterday to say it involved ransomware – but affected vessels are not ...
- WhatsApp Ireland fined €5.5 million for breaches of GDPR
January 19, 2023
WhatsApp Ireland has been fined €5.5 million for breaches of GDPR. The Data Protection Commission (DPC) has also announced that WhatsApp Ireland has been given six months to bring its data processing operations into compliance. The EU’s General Data Protection Regulation, or GDPR, was adopted in 2016 and came into force on 25 May, 2018. Read more… Source: The ...
- Suspected Chinese Threat Actors Exploiting FortiOS Vulnerability (CVE-2022-42475)
January 19, 2023
Mandiant is tracking a suspected China-nexus campaign believed to have exploited a recently announced vulnerability in Fortinet’s FortiOS SSL-VPN, CVE-2022-42475, as a zero-day. Evidence suggests the exploitation was occurring as early as October 2022 and identified targets include a European government entity and a managed service provider located in Africa. Mandiant identified a new malware they ...
- Ukraine links data-wiping attack on news agency to Russian hackers
January 18, 2023
The Computer Emergency Response Team of Ukraine (CERT-UA) has linked a destructive malware attack targeting the country’s national news agency (Ukrinform) to Sandworm Russian military hackers. “According to preliminary data, provided by CERT-UA specialists, the attack have caused certain destructive effects on the agency’s information infrastructure, but the threat has been swiftly localized nonetheless,” the State ...
- NATO and Bosnia and Herzegovina strengthen science and technology cooperation
January 17, 2023
The event, organised in cooperation with NATO Headquarters Sarajevo, highlighted the significant participation of scientists from Bosnia and Herzegovina in regional and international research efforts. In the past ten years, over a dozen activities have been developed with Bosnia and Herzegovina within the framework of NATO’s Science for Peace and Security Programme, in such topics ...
- Royal Mail export services severely disrupted after ‘cyber incident’
January 11, 2023
Britain’s Royal Mail said on Wednesday it was facing severe disruption to its international export services following what it described as “a cyber incident”. “We are temporarily unable to despatch items to overseas destinations,” Royal Mail, one of the world’s largest post and parcel firms, said in a service update on its website. It advised customers to ...