Kathleen de Villa reports: The Commission on Audit (COA) has called out the National Privacy Commission (NPC) for its “inadequate” information dissemination efforts, as shown by the dismal number of data privacy officers and systems in both the government and the private sector. Despite being compulsory under the law, only 7.7 percent, or 164 of…
White House Clears HIPAA Security Rule Update
Chris Riotta reports: The U.S. Department of Health and Human Services is ramping up digital efforts to protect Americans in a year that’s witnessed hackers targeting sensitive patient data and major breaches at Ascension and UnitedHealth. HHS is set to unveil a notice of proposed rulemaking requiring healthcare companies to encrypt data, conduct routine compliance…
Massive VW Group Data Leak Exposed 800,000 EV Owners’ Movements, From Homes To Brothels
Thanos Pappas reports: Many people worry about hackers stealing their personal data, but sometimes, the worst breaches come not from shadowy cybercriminals but straight from the companies we trust. According to a new report from Germany, the VW Group stored sensitive information for 800,000 electric vehicles from various brands on a poorly secured Amazon cloud—essentially leaving…
2024’s Data Breaches: Breaches Handled Badly
There are always a ton of articles at the end of every year recapping what went wrong. Over on TechCrunch, Zack Whittaker and Carly Page have their annual list of breaches handled poorly. This year’s list includes 23andMe, Change Healthcare, Synnovis, Snowflake, Columbus Ohio, Salt Typhoon, Moneygram, and HotTopic. DataBreaches generally agrees with their recap,…
Brazilian Man Charged With Making Extortionate Threats To Publicize Stolen Data Obtained By Unlawful Computer Intrusion
December 23, Newark, N.J. – A citizen and resident of Brazil was charged with making extortionate threats to publicize data stolen from the Brazilian subsidiary of a New Jersey company, U.S. Attorney Philip R. Sellinger announced. Junior Barros De Oliveira, 29, of Curitiba, Brazil was charged with four counts of extortionate threats involving information obtained…
Japan Airlines recovers from cyberattack, confirms no customer data leaks
Financial Express reports: Japan Airlines (JAL) has resolved a system malfunction caused by a large-scale cyberattack, assuring the customers that no data breaches or virus infections have taken place. The ticket sales for same day flights have started again. However, certain specific domestic flight services such as an upgrade option, airport standby continues to be unavailable….