Dipak Mondal reports: At 12 noon yesterday, the GST Network (GSTN), the IT backbone of the Goods and Services Tax, put out a tweet saying that it had detected “some activity in the cyberspace by unscrupulous elements because of which some taxpayers may have experienced difficulties/delays in accessing the GST portal which otherwise is working…
Category: Non-U.S.
AU: Woolworths gave customer data to NSW Health
Casey Tonkin reports: Woolworths gave data about customers who use its Everyday Rewards scheme to NSW Health in order to assist contact tracers. At the outbreak of the recent Berala cluster linked to a BWS in Sydney’s west, Woolworths analysed information from its Everyday Rewards loyalty scheme to find customers who visited the store at times when…
Giant leak exposes data from almost all Brazilians
Leonard Manson reports: On Tuesday morning (19), the dfndr lab, PSafe’s cybersecurity laboratory, reported a huge leak in a Brazilian database that may have exposed the CPF number and other confidential information of millions of people. According to the experts, who use artificial intelligence techniques to identify malicious links and fake news, the leaked data…
An Overview of Cybersecurity Law in Taiwan
John Eastwood, Nathan Snyder, Wendy Chu, David Rosenthal and Lloyd G. Roberts III of Eiger write: 1. GOVERNING TEXTS In Taiwan, there are two main branches of legislation pertaining to information security: legislation on cybersecurity and legislation protecting personal data. While the information security aspects of personal data protection legislation (mainly the PDPA) only apply…
Ucar reveals cyberattack earlier this year
Lesechos reports (translation): The vehicle rental company Ucar revealed on Wednesday January 20 that it had been the target of ransomware earlier this year. The hackers found a gateway into its servers and rushed into it. “The full analysis of the attack, its depth and the associated issues, is still ongoing, ” said Nicolas Martin,…
EDPB Publishes Guidelines on Examples regarding Data Breach Notification
Hunton Andrews Kurth writes: On January 18, 2021, the European Data Protection Board (“EDPB”) released draft Guidelines 01/2021 on Examples regarding Data Breach Notification (the “Guidelines”). The Guidelines complement the initial Guidelines on personal data breach notification under the EU General Data Protection Regulation (“GDPR”) adopted by the Article 29 Working Party in February 2018. The new draft…