AIESEC, a non-profit that bills itself as the “world’s largest youth-run organization,” exposed more than four million intern applications with personal and sensitive information on a server without a password. Bob Diachenko, an independent security researcher, found an unprotected Elasticsearch database containing the applications on January 11, a little under a month after the database […]
View More Youth-run agency AIESEC exposed over 4 million intern applicationsCategory: data security
Uber’s bill for 2016 breach and cover-up rises by $1M+ on EU fines
The legal bill for Uber’s 2016 data breach, which affected some 57 million customers, revealing names, email address and phone numbers, has increased by more than a million dollars. Two months ago the ride-hailing giant agreed to pay $148M to resolve legal inquiries pertaining to the breach in the U.S., with that settlement covering all 50 states and […]
View More Uber’s bill for 2016 breach and cover-up rises by $1M+ on EU finesVision Direct reveals breach that skimmed customer credit cards
European online contact lens supplier Vision Direct has revealed a data breach which compromised full credit card details for a number of its customers, as well as personal information. Compromised data includes full name, billing address, email address, password, telephone number and payment card information, including card number, expiry date and CVV. It’s not yet […]
View More Vision Direct reveals breach that skimmed customer credit cardsMozilla adds website breach notifications to Firefox
Mozilla is adding a new security feature to its Firefox Quantum web browser that will alert users when they visit a website that has recently reported a data breach. When a Firefox user lands on a website with a breach in its recent past they’ll see a pop up notification informing them of the barebones […]
View More Mozilla adds website breach notifications to FirefoxCognigo raises $8.5M for its AI-driven data protection platform
Cognigo, a startup that aims to use AI and machine learning to help enterprises protect their data and stay in compliance with regulations like GDPR, today announced that it has raised an $8.5 million Series A round. The round was led by Israel-based crowdfunding platform OurCrowd, with participation from privacy company Prosegur and State of […]
View More Cognigo raises $8.5M for its AI-driven data protection platformChildren are being “datafied” before we’ve understood the risks, report warns
A report by England’s children’s commissioner has raised concerns about how kids’ data is being collected and shared across the board, in both the private and public sectors. In the report, entitled Who knows what about me?, Anne Longfield urges society to “stop and think” about what big data means for children’s lives. Big data practices […]
View More Children are being “datafied” before we’ve understood the risks, report warnsePrivacy: An overview of Europe’s other big privacy rule change
Gather round. The EU has a plan for a big update to privacy laws that could have a major impact on current Internet business models. Um, I thought Europe just got some new privacy rules? They did. You’re thinking of the General Data Protection Regulation (GDPR), which updated the European Union’s 1995 Data Protection Directive […]
View More ePrivacy: An overview of Europe’s other big privacy rule changeSales engagement startup Apollo says its massive contacts database was stolen in a data breach
Apollo, a sales engagement startup boasting a database of more than 200 million contact records, has been hacked. The YC Combinator-backed company, formerly known as ZenProspect, helps salespeople connect with prospective customers. Using its massive prospect database of 200 million contacts at 10 million companies, Apollo matches sellers with potential buyers. Apollo said that the […]
View More Sales engagement startup Apollo says its massive contacts database was stolen in a data breachChegg resets 40 million user passwords after data breach
Chegg, a technology giant specializing in textbook rental, has confirmed a data breach affecting some 40 million customers. In a filing with the Securities and Exchange Commission, the company said it will reset all user passwords after hackers gained access to the company’s customer database. That database includes users for Chegg’s website but also other […]
View More Chegg resets 40 million user passwords after data breachDoorDash customers say their accounts have been hacked
Food delivery startup DoorDash has received dozens of complaints from customers who say their accounts have been hacked. Dozens of people have tweeted at @DoorDash with complaints that their accounts had been improperly accessed and had fraudulent food deliveries charged to their account. In many cases, the hackers changed their email addresses so that the […]
View More DoorDash customers say their accounts have been hackedFrance records big jump in privacy complaints since GDPR
Another European data protection agency has reported a sharp rise in the numbers of complaints since the EU updated its privacy framework four months ago, when GDPR came into force, updating regional data protection rules and introducing much higher penalties for privacy violations. France’s CNIL agency said today that it’s received 3,767 complaints since May 25, when GDPR […]
View More France records big jump in privacy complaints since GDPRUK data protection complaints more than double under new GDPR rules
The number of complaints filed with the UK data protection watchdog has more than doubled since the introduction of new European regulations. There were 6,281 complaints filed with the Information Commissioner’s Office between May 25 when the new GDPR rules went into effect and July 3, a rise of more than double from the 2,417 […]
View More UK data protection complaints more than double under new GDPR rules