Craig A. Newman of Patterson Belknap writes: By today, financial institutions are required to meet their next deadline for compliance with New York’s cybersecurity law. The regulation – enacted in March 2017 –includes a series of rolling deadlines that require banks and insurance companies covered by the law to meet varying data security requirements. Today’s…
Category: Of Note
More than 85% of China’s app users have had their data leaked: survey
Masha Borak reports: A survey has found that 85.2 % of app users in China have experienced data leaks, according to a report by the China Consumer Association. For the vast majority of them (86.5%), the leaks resulted in receiving harassing calls and messages from sales departments and advertisers, while three quarters complained of getting…
Spyware Company That Marketed To Domestic Abusers Gets Hacked
Lorenzo Franceschi-Bicchierai reports: A company that sells spyware to consumers specifically and openly marketing its product to domestic abusers got hacked. The hacker, who only goes by the initials L.M., told Motherboard in February that he gained access to the servers of TheTruthSpy, a company that sells an Android and iOS spy app to consumers,….
Leaked data from Chinese hotel chain may affect 130 million customers
Nicole Jao reports: Personal data and booking information from 13 hotels operated by Huazhu Hotels Group (华住酒店集团) has reportedly been leaked in what could be the largest data breach in China in five years, according to Chinese cybersecurity media FreeBuf (in Chinese). This morning, a post on a Chinese dark web forum titled “Huazhu-owned hotels…
Aadhaar details of over 60k students on APCCE website
Anupama N reports: Vijayawada: The officials of Commissionerate of College Education, Andhra Pradesh, have put the privacy of thousands of students at risk by publishing their Aadhaar card details on the website. In a major goof up by the officials, details of 64,807 students have been put up on the website, for the viewing of…
Spyware Company Leaves ‘Terabytes’ of Selfies, Text Messages, and Location Data Exposed Online
Lorenzo Franceschi-Bicchierai reports: A company that markets cell phone spyware to parents and employers left the data of thousands of its customers—and the information of the people they were monitoring—unprotected online. The data exposed included selfies, text messages, audio recordings, contacts, location, hashed passwords and logins, Facebook messages, among others, according to a security researcher…