The European Parliament’s headache over a major human resources data breach earlier this year just won’t fade. Austria-based digital rights group noyb on Thursday said it had filed two complaints against the European Union institution for infringing the bloc’s flagship privacy law, the General Data Protection Regulation (GDPR), over a data breach discovered before the summer.
In June, Parliament notified up to 9,000 staffers that it had suffered a data breach of its recruitment application PEOPLE, which contained staffers’ ID details, birth certificates, employment history, medical records, marriage certificates — which revealed sexual orientation — and proof of work dating back 10 years.
Read more…
Source: Politico Europe
Related:
- From Albania to the Middle East: The Scarred Manticore is listening
October 31, 2023
Check Point Research, in collaboration with Sygnia’s Incident Response Team, has been tracking and responding to the activities of Scarred Manticore, an Iranian nation-state threat actor that primarily targets government and telecommunication sectors in the Middle East. Scarred Manticore, linked to the prolific Iranian actor OilRig (a.k.a APT34, EUROPIUM, Hazel Sandstorm), has persistently pursued high-profile organizations, ...
- Police Service of Northern Ireland reprimanded over unlawful data sharing
October 28, 2023
The Police Service of Northern Ireland (PSNI) has been reprimanded for unlawfully sharing personal data on 174 people with a law enforcement agency in the United States. It follows an investigation by the UK data watchdog, the Information Commissioner’s Office (ICO). The ICO said multiple infringements of the Data Protection Act occurred between 2018 and late ...
- Sheffield Hallam cryptocurrency investigation game wins European Commission Award
October 24, 2023
A first-of-its kind cryptocurrency-tracing training game co-created by Sheffield Hallam University’s Centre of Excellence in Terrorism, Resilience, Intelligence and Organised Crime Research (CENTRIC) has won a prestigious European Commission Award. Cryptopol was developed and co-created by researchers in CENTRIC and Europol, the law enforcement agency of the EU, in 2019. It simulates a cryptocurrency investigation ...
- Irish-linked spyware used in brazen attacks
October 21, 2023
The Irish government is set to investigate a digital surveillance alliance that has been accused of letting its smartphone spyware “run wild across the world”, BBC News NI understands. It comes after Intellexa Limited and its parent company Thalestris were named in a damning report by a leading human rights body. The firms are registered at ...
- Europol: Ragnar Locker ransomware gang taken down by international police swoop
October 20, 2023
This week, law enforcement and judicial authorities from eleven countries delivered a major blow to one of the most dangerous ransomware operations of recent years. This action, coordinated at international level by Europol and Eurojust, targeted the Ragnar Locker ransomware group. The group were responsible for numerous high-profile attacks against critical infrastructure across the world. In ...
- Hacker leaks millions more 23andMe user records on cybercrime forum
October 18, 2023
The same hacker who leaked a trove of user data stolen from the genetic testing company 23andMe two weeks ago has now leaked millions of new user records. On Tuesday, a hacker who goes by Golem published a new dataset of 23andMe user information containing records of four million users on the known cybercrime forum ...