The European Parliament’s headache over a major human resources data breach earlier this year just won’t fade. Austria-based digital rights group noyb on Thursday said it had filed two complaints against the European Union institution for infringing the bloc’s flagship privacy law, the General Data Protection Regulation (GDPR), over a data breach discovered before the summer.
In June, Parliament notified up to 9,000 staffers that it had suffered a data breach of its recruitment application PEOPLE, which contained staffers’ ID details, birth certificates, employment history, medical records, marriage certificates — which revealed sexual orientation — and proof of work dating back 10 years.
Read more…
Source: Politico Europe
Related:
- Cyber Attack Hits French Leading News Agency AFP
October 14, 2024
French news agency Agence France-Presse (AFP) suffered a cyber attack that disrupted its content delivery infrastructure and file transfer systems. It operates English, French, Arabic, Portuguese, and Spanish news channels and employs over 2,400 people in 150 countries. AFP said it was working to restore impacted systems and has engaged French cybersecurity agency ANSSI and law ...
- How did a ‘bank snooping’ scandal ensnare politicians in Italy?
October 14, 2024
Italian Prime Minister Giorgia Meloni is at the centre of a “snooping scandal” in which a bank branch employee at Italy’s biggest bank is alleged to have illegally accessed and “spied on” thousands of private accounts. A clerk at Banca Intesa Sanpaolo has been accused of gaining unauthorised access to more than 3,500 accounts belonging to ...
- London taxi drivers wrongly hit with Ulez charges after TfL cyber attack
October 13, 2024
Thousands of black cab drivers have been wrongly hit with Ulez and Congestion Charge fines after the cyber attack against London’s transport authority. The Licensed Taxi Drivers’ Association (LTDA) said it had received thousands of calls this week from panicking cabbies who had begun receiving automated penalties from Transport for London (TfL). Read more… Source: MSN News Sign up ...
- EU Network and Information Security (NIS) Directive: Parliament adopts new law to strengthen EU-wide resilience
October 11, 2024
Rules requiring EU countries to meet stricter supervisory and enforcement measures and harmonise their sanctions were approved by MEPs on Thursday. The legislation, already agreed between MEPs and the Council in May, will set tighter cybersecurity obligations for risk management, reporting obligations and information sharing. The requirements cover incident response, supply chain security, encryption and vulnerability disclosure, ...
- FBI: Update on SVR Cyber Operations and Vulnerability Exploitation
October 10, 2024
The Federal Bureau of Investigation (FBI) and pertners are releasing this joint Cybersecurity Advisory (CSA) to highlight the tactics, techniques, and procedures (TTPs) employed by the Russian Federation’s Foreign Intelligence Service (SVR) in recent cyber operations and provide network defenders with information to help counter SVR cyber threats. Since at least 2021, Russian SVR cyber actors ...
- European Council adopts new law on security requirements for digital products
October 10, 2024
The Council adopted today a new law on cybersecurity requirements for products with digital elements with a view to ensuring that products, such as connected home cameras, fridges, TVs, and toys, are safe before they are placed on the market (cyber resilience act). The new regulation aims to fill the gaps, clarify the links, and make ...