Canan Sevgili of Reuters reports: Turkey’s Personal Data Protection Board (KVKK) has fined Amazon.com’s gaming platform Twitch 2 million lira ($58,000) over a data breach, the official Anadolu Agency reported on Saturday. KVKK launched an investigation after a 125 GB data leak. It found that Twitch had failed to take adequate security measures beforehand, addressing…
Category: Non-U.S.
Authority: Up to 300k people impacted in City of Helsinki’s massive data breach
YLE News reports: The Safety Investigation Authority of Finland (Otkes) is continuing an investigation of a massive data breach that targeted the City of Helsinki last spring. Otkes said investigators have already collected more than 90 percent of the data involved in the exceptionally large-scale breach. The City first announced news of the breach in the spring….
Hackers now sending physical malicious letters, Swiss authorities warn
Ernestas Naprys reports: Is there anything threat actors won’t do to gain initial access? Swiss authorities are warning about a new sophisticated cybersecurity threat – malicious counterfeit letters. Cyber bandits have launched a malicious campaign across Switzerland using counterfeit letters that appear to be from MeteoSwiss (the Federal Office of Meteorology and Climatology). The victims…
Ransomware attack on Bucharest: data of hundreds of thousands of citizens involved
The following is an automated machine translation. Matthew Garvey reports: The data of approximately 200,000 citizens of Sector 5 (such as CNP, first and last name, address, among others) were put up for sale by the hackers who launched a cyber attack on the City Hall at the end of October. The attackers also gained…
Germany drafts law to protect researchers who find security flaws
Bill Toulas reports: The Federal Ministry of Justice in Germany has drafted a law to provide legal protection to security researchers who discover and responsibly report security vulnerabilities to vendors. When security research is conducted within the specified boundaries, those responsible will be excluded from criminal liability and the risk of prosecution. “Those who want…
Hackers claimed the FREE S.A.S. data had been sold. One now claims that wasn’t true. (1)
On October 26, FREE S.A.S., a major ISP in France, confirmed that it had been hacked after a threat actor calling himself “drussellx” listed customer data up for auction on a popular hacking forum. Drussellx claimed to have acquired the information of 19.2 million subscribers on October 17, 2024. The breach “affects all FREE Mobile and…