Edward Kost writes: Volatile Cedar, a cybercriminal group affiliated with the Hezbollah Cyber Unit, has resurfaced after disappearing for almost 6 years. The criminal group was suddenly illuminated on the radar after suspicious activity on Oracle and Atlassian servers was discovered. Volatile cedar breached unpatched Atlassian and Oracle servers by exploiting the following vulnerabilities – CVE-2012-3152, CVE-2019-11581,…
Category: Commentaries and Analyses
The Netherlands: 440,000 EUR fine for hospital for inadequate authentication and logging
Demi Rietveld and Richard van Schaik of DLA Piper write: The Dutch Data Protection Authority (Autoriteit Persoonsgegevens, “Dutch DPA”) has published its decision to impose an administrative fine of EUR 440,000 on Amsterdam hospital OLVG due to the lack of sufficient measures to prevent access to medical records by unauthorised personnel. After complaints, the Dutch…
Brazilian authorities start probe as 102 million consumers are exposed in new leak
Angelica Mari reports that Brazil’s data protection authority is opening an investigation into reports of a data security incident impacting 102 million mobile numbers, allegedly from two mobile operators — Vivo and Claro. The companies deny, however, that the data that are up for sale on the dark web are from them. This is the…
WeChat Data Leak Leads To Arrest Of Tencent Executive Zhang Feng
Cullen Paradis reports: Zhang Feng, an executive at China’s most valuable public company Tencent Holdings, has been detained by authorities in connection to a data leak and corruption scandal. According to the Wall Street Journal, Zhang is accused of sending user data from the messaging app juggernaut WeChat to Sun Lijun, the former vice public security minister now…
Made in India Koo app denies claims of data leak, talks about Chinese connection
Sneha Saha reports: Koo app or the so-called Indian alternative of Twitter is gaining wide popularity in the country as the battle between the Indian government and the microblogging site continues. The social media app has been downloaded by over three million Android users already, which is a big number for a Made in India…
Employee Confidentiality and Data Theft: Recent UK Developments
Christopher Walter, Helena Milner-Smith, Louise Freeman, Dan Cooper, Mark Young, and Mark Welch of Covington and Burling write, in part: Unauthorized Access to Personal Data was an Offence under the Computer Misuse Act The ICO recently published details of its prosecution of a motor industry employee who, during her employment, compiled and transferred road traffic…