Caredig ap Tomos reports: Sensitive data relating to students’ self-identification continued to be shared with students running elections on Cambridge Students’ Union’s voting platform months after the issue was originally raised. Sources have told Varsity that countless students were “effectively outed without even knowing it” because of the ‘breach’ of sensitive data, which took nine months to…
Category: Non-U.S.
No evidence of personal data leak amid national security probe: NHIA
CNA reports: The National Health Insurance Administration (NHIA) on Thursday said there is no evidence that three current and former employees stole data amid a recent probe launched by prosecutors into the National Health Insurance (NHI) system. The suspects — a woman surnamed Hsieh (謝) who is a division chief at the NHIA, a male…
New Cybersecurity Directives (NIS2 and CER) Enter into Force in EU
Hunton Andrews Kurth writes: On January 16, 2023, the Directive on measures for a high common level of cybersecurity across the Union (the “NIS2 Directive”) and the Directive on the resilience of critical entities (“CER Directive”) entered into force. The NIS2 Directive repeals the current NIS Directive and creates a more extensive and harmonized set of rules on cybersecurity…
Ph: Comelec, Smartmatic cleared of data privacy violations in 2022 polls
Hana Bordey reports: The National Privacy Commission (NPC) has cleared the Commission on Elections and the Smartmatic Group of Companies of alleged violation of the Data Privacy Act (DPA) over the supposed breach of election data during the 2022 national and local polls. This was announced by Comelec spokesperson Rex Laudiangco in a press statement…
DNV Confirms Ransomware Attack Impacting 1,000 Ships
Mike Schuler reports: Classification society DNV is confirming that a recent ransomware cyber attack on its fleet management software has impacted around 1,000 ships. The cyber attack was discovered on the evening of Saturday, January 7, on its ShipManager fleet management and operations platform, forcing the class society to shut down the software’s IT servers. DNV now…
European data protection authorities issue record €2.92 billion in GDPR fines
Michael Hill reports: European data regulators issued a record €2.92 billion in fines last year, a 168% increase from 2021. That’s according to the latest GDPR and Data Breach survey from international law firm DLA Piper, which covers all 27 Member States of the European Union, plus the UK, Norway, Iceland, and Liechtenstein. This year’s biggest fine…