Security Affairs

MARCH 4, 2024

Consumer groups assert that Meta is not adhering to various rules established by the European privacy regulation GDPR: Fair Processing (Article 5(1)(a)): Personal data must be processed lawfully, fairly, and transparently. Consumer groups claim that Meta’s data collection is unfair and lacks transparency.

Data collection 138

Data collection Surveillance Hacking Information Security 138

The Hacker News

AUGUST 15, 2023

The findings come from Hudson Rock, which analyzed data collected from computers compromised between 2018 to 2023. A "staggering" 120,000 computers infected by stealer malware have credentials associated with cybercrime forums, many of them belonging to malicious actors.

Cybercrime 95

Cybercrime Data collection Malware Software 95

Krebs on Security

SEPTEMBER 9, 2019

In July, DHS’s Customs and Border Patrol (CPB) suspended all federal contracts with Perceptics , a contractor which sells license-plate scanners and other border control equipment, after data collected by the company was made available for download on the dark web.

Cybercrime 250

Cybercrime Government Data collection Internet 250

CyberSecurity Insiders

AUGUST 26, 2021

It helps in protecting the rights of citizens and offers a plan to companies on what to do and what not to do when it comes to data collection and its security. UK’s Information Commissioner’s Office (ICO) plays a vital role in regulating the GDPR and other data protection rights as per the Data Protection act of 2018.

Information Security 112

Information Security Data privacy Data collection Media 112

Heimadal Security

NOVEMBER 21, 2022

On Friday, November 18, 2022, the Indian government proposed a new online data protection regulation version. The post Digital Personal Data Protection Bill 2022 Is Under Discussion in India appeared first on Heimdal Security Blog. The proposal […].

Data collection 81

Data collection Government Cybersecurity 81

Hot for Security

FEBRUARY 12, 2021

Vastaamo’s problems first began in 2018, when it discovered that a database of customer details and – most shockingly – notes from therapy sessions had been accessed by hackers. ”

Data collection 145

Data collection Data breaches Ransomware 145

Security Affairs

DECEMBER 30, 2020

Customer proprietary network information (CPNI) is the data collected by telecommunications companies about a consumer’s telephone calls. The company reported the incident to the authorities and is investigating the incident with the heal of a cybersecurity firm.

Data breaches 145

Data breaches Mobile Telecommunications Wireless 145

Security Affairs

MAY 23, 2024

A previously unknown China-linked threat actor dubbed ‘Unfading Sea Haze’ has been targeting military and government entities since 2018. Bitdefender researchers discovered a previously unknown China-linked threat actor dubbed ‘Unfading Sea Haze’ that has been targeting military and government entities since 2018.

Malware 140

Malware Accountability Phishing Data collection 140

Security Affairs

OCTOBER 11, 2020

Data collected by the agency is used by the federal government to allocate over $675 billion in federal funds to tribal, local, and state governments every year. According to the DHS, threat actors will likely interfere with the upcoming 2020 US Presidential election, as well as to compromise the 2020 US Census.

Government 145

Government Advertising Hacking Data collection 145

Security Affairs

MAY 18, 2019

Even if in Italy the cells of the popular Anonymous collective are very active , the overall number of hacktivist attacks that caused in quantifiable damage to the victim has declined by 95 percent since 2015. Researchers analyzed data collected by IBM’s X-Force threat intelligence unit between 2015 and 2019.

Advertising 102

Advertising Data collection DDOS Healthcare 102

CyberSecurity Insiders

SEPTEMBER 8, 2021

Already, the cookies acceptance feature has been part of EU’s General Data Protection Regulation that came into effect in May 2018. By doing so, ICO wants to aim for a unified data protection for all web users in European Union. By doing so, ICO wants to aim for a unified data protection for all web users in European Union.

Data collection 99

Data collection Data privacy Data breaches Software 99

eSecurity Planet

DECEMBER 1, 2021

Businesses that have spent the past three-plus years adapting to the European Union’s far-reaching data privacy law now have to decide how they will respond to a similar law in China that has been criticized as being more vague in its wording and harsher in its penalties. Also read: Top GRC Tools & Software for 2021. PIPL vs. GDPR.

Data privacy 130

Data privacy Data collection Accountability Software 130

The Last Watchdog

OCTOBER 17, 2022

billion apps in 2021 alone, up more than 47 percent since 2018. This increased demand for apps also raises the need for improved data protection measures, which Google took steps to address with the new data safety section they launched in July 2022. Greediest data harvesters. In fact, Google Play users downloaded 111.3

Data privacy 192

Data privacy Media Data collection Data breaches 192

Security Affairs

DECEMBER 10, 2020

Go versions of the backdoor were used since 2018 , they initially start collecting info on the compromised system, and then sends it to the command and control server. The malware samples analyzed by the researchers were heavily obfuscated, but the analysis of the code allowed the experts to attribute them to the APT28.

Malware 132

Malware Phishing Government Data collection 132

CyberSecurity Insiders

FEBRUARY 23, 2021

million or €50 million penalty in March 2020 by the France data watchdog for failing to provide transparent information to users about its rules and regulations pertaining to data collection related to its products and services. Google was awarded $56.6

Marketing 111

Marketing Data collection Data breaches Cybersecurity 111

Troy Hunt

NOVEMBER 13, 2024

Apparently, before a child reaches the age of 13, advertisers will have gathered more 72 million data points on them. I knew I'd seen a metric about this sometime recently, so I went looking for "7,000", which perfectly illustrates how unaware we are of the extent of data collection on all of us.

Data breaches 282

Data breaches Passwords B2B Technology 282

Security Affairs

APRIL 22, 2019

Data collected by SafeGuard confirm the intensification of the presence of Russian bots on Twitter. In November 2018, Twitter announced to have deleted more than 10,000 accounts managed by bots that were posting messages to influence U.S.

Advertising 108

Advertising Media Data collection Accountability 108

Security Affairs

NOVEMBER 17, 2018

link ) was posted on Pastebin , the hacker claims to have compromised user’s email and also accused ProtonMail of sending user’s decrypted data to American servers. AmFearLiathMor also wrote that ProtonMail hasn’t configured the mandatory Subresource Integrity ( SRI ) allowing tampering and data collection.

Scams 111

Scams Hacking Data collection Advertising 111

Security Affairs

NOVEMBER 16, 2018

Hong Kong, 16.11.2018 – Group-IB, an international company that specializes in preventing cyber attacks, presented the findings of its latest Hi-Tech Crime Trends 2018 report at the FinTech Security Conference in Hong Kong organized by Binary Solutions Limited in partnership with Group-IB. Attacks on Crypto. Group-IB in Asia.

Cybercrime 108

Cybercrime Hacking Banking Phishing 108

Security Affairs

SEPTEMBER 3, 2018

— WikiLeaks (@wikileaks) August 31, 2018. — WikiLeaks (@wikileaks) September 2, 2018. — Ancilla (@ncilla) September 3, 2018. @JulianAssange associate and author of "Information Security for Journalists" @ArjenKamphuis has disappeared according to friends ( @ncilla ) and colleagues.

Advertising 78

Advertising Data collection Information Security Mobile 78

The Last Watchdog

APRIL 9, 2020

Data collected by IoT devices will increasingly get ingested into cloud-centric networks where it will get crunched by virtual servers. trillion by 2026, up from $190 billion in 2018. There’s no stopping the Internet of Things now. And fantastic new IoT-enabled services will spew out of the other end.

Internet 195

Internet Internet IoT Technology 195

Security Affairs

OCTOBER 10, 2018

Security firm Group-IB has estimated that in H2 2017-H1 2018 cyber attacks caused $49.4 Group-IB, an international company that specializes in preventing cyber attacks, has estimated that in H2 2017-H1 2018 cyber attacks caused $49.4 million (2.96 billion rubles) of damage to Russia’s financial sector. million (2.96 million (2.96

Cyber Attacks 108

Cyber Attacks Banking Cyber threats Phishing 108

Security Affairs

MARCH 14, 2019

In the course of further research it was revealed that GMO JS Sniffer has presumably been collecting customer payment data since November 2018. Typically, after customer data is stolen, it is usually resold on underground cardshops. Group-IB’s Threat Intelligence team discovered that GMO has been active since May 2018.

eCommerce 110

eCommerce Marketing Data breaches Advertising 110

SecureWorld News

NOVEMBER 30, 2022

The DPC discussed the inquiry : "The scope of the inquiry concerned an examination and assessment of Facebook Search, Facebook Messenger Contact Importer and Instagram Contact Importer tools in relation to processing carried out by Meta Platforms Ireland Limited ('MPIL') during the period between 25 May 2018 and September 2019.

Data breaches 82

Data breaches Data collection Media Cybersecurity 82

Security Affairs

NOVEMBER 19, 2019

CERT-GIB’s report is based on data collected and analyzed by the Threat Detection System (TDS) Polygon as part of operations to prevent and detect threats distributed online in H1 2019 in more than 60 countries. In 2018, their number grew to 3.6%, while in H1 2019 saw an unusual rise of up to 27.8%. The revival of ransomware.

Ransomware 100

Ransomware Antivirus Malware Banking 100

Security Affairs

AUGUST 11, 2023

The SystemBC platform has been offered for sale on various underground forums at least since 2018 as a “malware as a service,” or MaaS. ” reads the report published by Data collected related to multiple incidents analyzed by Kaspersky suggest the attack was conducted by the Russian-speaking RaaS cybercrime Pistachio Tempest or FIN12.

Malware 98

Malware Data collection Healthcare Cybercrime 98

Security Affairs

NOVEMBER 28, 2020

Experts from threat intelligence firm KELA , speculate the threat actor could have obtained the credentials buying “Azor logs,” which are lots of data stolen from computers infected with the AzorUlt info-stealer trojan.

Accountability 126

Accountability Cybercrime Hacking Retail 126

SecureList

OCTOBER 29, 2024

Known since 2018, Amadey has been the subject of numerous security reports. The purpose here is likely to generate further revenue for its operators by boosting views of these websites, similar to adware: Payload: Amadey Trojan We recently discovered that the same campaign is now spreading the Amadey Trojan as well.

Adware 123

Adware Malware Cryptocurrency Password Management 123

Malwarebytes

MAY 31, 2023

However, Ring continued to allow hundreds of other employees and third-party contractors access to all video data, regardless of whether they actually needed it in order to perform their jobs. In January 2018, a male employee used his access rights to spy on a female colleague's videos, looking her up using her email address.

Engineering 98

Engineering Data collection Government Accountability 98

Security Affairs

NOVEMBER 17, 2018

Group-IB Threat Intelligence continuously detects and analyses data uploaded to card shops all over the world,” – said Dmitry Shestakov, Head of Group-IB ?ybercrime According to Group-IB’s annual Hi-Tech Crime Trends 2018 report, on average, from June 2017 to August 2018, 1.8 ybercrime research unit.

Banking 111

Banking Cybercrime Advertising Data collection 111

Malwarebytes

DECEMBER 16, 2021

The fine covers the period from July 2018, when the “Law on the Processing of Personal Data (Personal Data Act)” was established, until April 2020, when Grindr changed the consent solution. Nevertheless, this is the highest fee to date from the Norwegian Data Protection Authority.

Advertising 120

Advertising Marketing Data collection Mobile 120

eSecurity Planet

APRIL 26, 2022

Company Sector Year Status Vicarius Vulnerability management 2022 Private Dragos ICS and OT security 2021 Private Safeguard Cyber Risk management 2021 Private CyberGRX Risk management 2019 Private Signifyd Fraud protection 2018 Private RedOwl Security analytics 2015 Acquired: Forcepoint. Accel Investments. Andreessen Horowitz (a16z).

Cybersecurity 127

Cybersecurity Technology Marketing Healthcare 127

Security Affairs

NOVEMBER 15, 2022

The authorities started the investigation into Google collection practice following a 2018 Associated Press article that revealed Google “records your movements even when you explicitly tell it not to.”.

Consumer Protection 98

Consumer Protection Accountability Data collection Advertising 98

Malwarebytes

DECEMBER 5, 2022

The act, which amended and expanded California's consumer privacy law that was built on the California Consumer Privacy Act (CCPA) of 2018 , is set to take effect on January 1, 2023. The CPRA is sometimes called the " CCPA 2.0 " and will affect the personal data of Californians collected from January 1, 2022 onwards.

Data collection 79

Data collection Mobile Risk Cybersecurity 79

Security Affairs

MARCH 7, 2019

” In April 2018, Akamai reported that threat actors compromised 65,000 home routers by exploiting vulnerabilities in Universal Plug’N’Play (UPnP) , experts tracked the botnet as UPnProxy. In December 2018 the company provided an update to its initial analysis revealing a disconcerting scenario, UPnProxy is still up and running.

Cyber Attacks 107

Cyber Attacks Advertising Firmware Data collection 107

Schneier on Security

MARCH 13, 2019

It even collects what it calls " shadow profiles " -- data about you even if you're not a Facebook user. This data is combined with other surveillance data the company buys, including health and financial data. Collecting and saving less of this data would be a strong indicator of a new direction for the company.

Advertising 233

Advertising Surveillance Engineering Encryption 233

Security Affairs

JUNE 21, 2019

” Turla attackers used many other tools and malware in the latest campaigns, such as a custom dropper to deliver the Neptun backdoor, a USB data collecting tool, a hacking tool that combines four NSA tools ( EternalBlue , EternalRomance , DoublePulsar , SMBTouch ).

Government 107

Government Advertising Hacking Data collection 107