The European Parliament’s headache over a major human resources data breach earlier this year just won’t fade. Austria-based digital rights group noyb on Thursday said it had filed two complaints against the European Union institution for infringing the bloc’s flagship privacy law, the General Data Protection Regulation (GDPR), over a data breach discovered before the summer.
In June, Parliament notified up to 9,000 staffers that it had suffered a data breach of its recruitment application PEOPLE, which contained staffers’ ID details, birth certificates, employment history, medical records, marriage certificates — which revealed sexual orientation — and proof of work dating back 10 years.
Read more…
Source: Politico Europe
Related:
- Ring doorbell owners warned of bank raiding attack as thieves target Brits
March 21, 2024
Home security gadgets like Ring doorbells are increasingly being targeted by cyber crooks and their nasty phishing campaigns. Cybersecurity experts at Trustwave have warned Ring customers – and owners of similar gadgets from other brands – that home security tech is being used against the people its supposed to protect. Read more… Source: The Sun
- UK: Criminal investigation into council cyber attack
March 20, 2024
Ccriminal investigation has started into a cyber attack that has disrupted Leicester City Council’s systems for more than a week. The council said it could not comment on the nature of the incident while the investigation was ongoing. It told the Local Democracy Reporting Service it still could not say if there had been a data ...
- British authorities investigating the Princess of Wales medical records breach
March 20, 2024
British authorities said Wednesday they are investigating a possible breach of the medical records of Catherine, Princess of Wales. The Information Commissioners Office said the inquiries follow a “breach report” it had received. “We can confirm that we have received a breach report and are assessing the information provided,” it said. Read more… Source: Yahoo News
- Fluffy Wolf sends out reconciliation reports to sneak into corporate infrastructures
March 19, 2024
The group has adopted a simple yet effective approach to gain initial access: phishing emails with an executable attachment. This way, Fluffy Wolf establishes remote access, steals credentials, or exploits the compromised infrastructure for mining The BI.ZONE Threat Intelligence team has detected a previously unknown cluster, dubbed Fluffy Wolf, whose activity can be traced back to ...
- Microsoft Announces Suspension of Cloud Services in Russia Amid EU Sanctions
March 18, 2024
Microsoft has announced that it will suspend access to its cloud services for companies based in Russia, effective March 20. This move comes as a direct response to the European Union’s 12th package of sanctions against Russia, specifically EU regulation 833/2014. The suspension includes a wide range of cloud-based products, significantly impacting Russian businesses that rely ...
- Russia foiled 280,000 DDoS cyberattacks against remote electronic voting system
March 17, 2024
Speaking at a news conference in Moscow, Ella Pamfilova, head of Russia’s Central Election Commission, said that the overall turnout in the presidential election as of 3:45 p.m. Moscow time (1245GMT), taking into account remote electronic voting, is 70.81%. Pamfilova also said that about 280,000 DDoS cyberattacks against remote electronic voting had been foiled, including 215,000 ...