February 1, 2023 Public bodies are now required to develop privacy management programs and report privacy breaches that could be expected to result in serious harm. The new requirements, which were among amendments to the Freedom of Information and Protection of Privacy Act (FIPPA) enacted in November 2021, came into force today. They apply to…
UK: Former employee of Royal Automobile Club prosecuted for data protection violations
A prosecution reported by the Information Commissioner’s Office involving insider wrong-doing: A former employee of the RAC has been prosecuted for obtaining the personal data of individuals involves in road traffic collisions after 21 drivers were harassed by claims companies. Asif Iqbal Khan, 42, was fined £5,000, ordered to pay court costs of £937.40 and…
North Korean hackers stole research data in two-month-long breach
Bill Toulas reports: A new cyber espionage campaign dubbed ‘No Pineapple!’ has been attributed to the North Korean Lazarus hacking group, allowing the threat actors to stealthily steal 100GB of data from the victim without causing any destruction. The campaign lasted between August and November 2022, targeting organizations in medical research, healthcare, chemical engineering, energy,…
Members of Congress Call for IRS to Investigate Tax Companies Sharing Data with Facebook
Members of Congress Call for IRS to Investigate Tax Companies Sharing Data with Facebook The Markup revealed the companies’ practices last year By: Colin Lecher and Simon Fondrie-Teitler Three congressional Democrats are demanding that the Internal Revenue Service investigate tax preparation companies for sharing sensitive taxpayer data with Facebook after The Markup revealed the practice…
110,000 more users affected in mobile carrier LG Uplus’ data breach
Yonhap News reports: LG Uplus Corp. said Friday last month’s data breach affected a total of 290,000 users, about 110,000 more than initially suspected. On Jan. 10, the nation’s third-largest wireless carrier disclosed that personal data of 180,000 customers, including their names, birth dates and phone numbers, had been breached. Read more at Yonhap News.
Eight arrested for hacking bank accounts using ‘Nepali Keti’ app
Republica reports: Police have apprehended eight people involved in withdrawing hundreds of thousands of rupees by hacking bank accounts using an app called ‘Nepali Keti’. According to the police, the group of people used to get access to vital information of anyone who opened the app and then exploited the data to empty the bank…