Katie Palmer reports: Odds are, you’ve gotten at least one of the unnerving letters in your mailbox this year: “We’re writing to inform you of a cybersecurity incident,” it might start. It’s the standard notice many health care organizations are required to provide when your protected health information gets exposed — and in 2023, data…
Category: Of Note
Online platform Carousell violated Hong Kong privacy laws, watchdog finds, after data of over 320,000 locals leaked
Harvey Kong reports: Popular online marketplace Carousell violated Hong Kong’s privacy laws, a watchdog said on Thursday, following the discovery of the personal data of more than 320,000 local users available for sale on the dark web. The Office of the Privacy Commissioner for Personal Data announced the findings from its investigation into the leak,…
Court of Justice of the European Union Rules That Fear May Constitute Damage Under the GDPR
Hunton Andrews Kurth writes: On December 14, 2023, the Court of Justice of the European Union (“CJEU”) issued its judgment in the case of VB v. Natsionalna agentsia za prihodite (C‑340/21), in which it clarified, among other things, the concept of non-material damage under Article 82 of the EU General Data Protection Regulation (“GDPR”) and the rules…
USD 300 million seized and 3,500 suspects arrested in international financial crime operation
From Interpol: LYON, FRANCE – A transcontinental police operation against online financial crime has concluded with almost 3,500 arrests and seizures of USD 300 million (approx. EUR 273 million) worth of assets across 34 countries. The six-month Operation HAECHI IV (July-December 2023) targeted seven types of cyber-enabled scams: voice phishing, romance scams, online sextortion, investment…
AlphV reacts to law enforcement action by allowing affiliates to attack hospitals, critical infrastructure
In response to the takedown notice on their original leak site and other damage done to their operations as described in the DOJ press release and warrant application that was unsealed today, AlphV posted this: As you all know, the FBI got the keys to our blog, now we’ll tell you how it was. First,…
Comcast Cable Communications notifies 35,879,455 consumers affected by Citrix incident
The timeline from their notification to consumers tells the sad story: Notice of Data Security Incident We are notifying you of a recent data security incident involving your personal information. This notice explains the incident, steps Xfinity has taken to address it, and guidance on what you can do to protect your personal information. What…