Privacy News, Articles and Updates

Facebook in class action suit over privacy, data gathering infractions

Facebook accused of "standing idly by" while Aleksandr Kogan raided user accounts through a quiz app and shared the information with Cambridge Analytica and "made only the weakest attempts to prevent further access to this data.

Airbnb China announces it will share user data with government

Airbnb is notifying its users in China that the company will share guest's information with authorities to comply with national laws and regulations.

Facebook VP justifies company's data collection practices as central to its growth and mission

The memo penned by Andrew "Boz" Bosworth surfaced as the social media company is trying to restore user trust after Cambridge Analytica harvested data from the Facebook accounts of 50 million Americans without their consent.

Facebook sends auditors to Cambridge Analytica; FTC reportedly probing

Cambridge Analytica's harvesting of data on 50 million Americans and its support for the Brexit campaign have prompted internal and external probes of both Facebook and the data analytics firm.

Will Cambridge Analytica's data harvesting impact business use on Facebook?

The Information Commissioner's Office is investigating the manner in which data analytics firm Cambridge Analytica harvested millions of Facebook profiles and analysed them for political purposes and to target voters during Brexit.

Cellebrite reportedly can unlock every iPhone Model

Israel-based Cellebrite reportedly privately announced the capability to subvert the security of iOS 11 enabled devices including the latest iPhone, iPad, iPad mini, iPad Pro and iPod touch.

The privacy wars - individuals ask, where is our data and who has access?

We are seeing a shift in people's perception of how their personal data is collected, stored and used. Large-scale data breaches have raised the level of awareness in the general public, and shone a light on the role of data aggregators.

Private chats and user accounts could be exposed by Tinder security bug

An easy-to-exploit bug has left Tinder accounts and private chats exposed to hackers, revealed a researcher this week.

How to deflect unrequited love from hackers this Valentine's Day

Tips on keeping businesses safe this Valentine's day - treat online approaches as you would in 'real life' - with caution.

GDPR and cyber-security: An opportunity that cannot be ignored

Data controllers and processors are required to carefully think about the ways to effectively secure personal data and take all necessary steps in this respect to prevent possible infringements of the Regulation.

Data Protection Day: EC issues GDPR guidance

With just under four months to go before the General Data Protection Regulation (GDPR) takes effect, the European Commission (EC) published guidance last wee, meant to help organisations apply the new rules to their businesses.

74% of privacy-immature organisations hit by losses of more than £350,000

Many organisations have been investing in resources and processes to meet GDPR standards ahead of the May deadline according to Cisco's first Privacy Maturity Benchmark Study.

Researchers: Security of messaging apps breaks down during group chats

Vulnerabilities in the group communication protocols of three encrypted messaging apps - WhatsApp, Signal, and Threema - could allow attackers to willfully subvert their integrity and confidentiality.

Europe creates new security body separate from Nato - UK not included

To be known as PESCO, the body will allow member states to jointly develop military capabilities, invest in shared projects and enhance their respective armed forces.

Hackers target private schools in UK

Hackers are taking advantage of poorly secured systems at schools in the UK, nicking identifying data, typically through phishing attacks, that they could use to target parents with fake invoices and other means of cyber-crime.

IT valuation of PII data shows huge variations

US security professionals value their personally identifiable information more than twice as much as their UK counterparts, according to a new report.

BrickerBot creators announce retirement from active operations

The individual, or people, behind the BrickerBot malware attacks have decided to hang up their mouse and keyboard after claiming to have locked more than 10 million supposedly unsecure Internet of Things devices.

"Wearables are being adopted by the healthcare industry but data privacy concerns need to be addressed"

If we are to take advantage of the opportunities offered by wearables in healthcare, safeguarding of personal and sensitive data must be a prime concern, with features to support privacy and protection against misuse of data.

NIST 1.1 tackles cybersecurity metrics, supply chain

The second draft of the update to the US National Institute of Standards and Technology's cyber-security framework, NIST 1.1, may prove to be more impactful than the original version released in 2013.

Data on 31 million users leaked by smartphone keyboard app

After the developer of virtual keyboard app Ai.Type left a 577GB Mongo-hosted database unsecured, personal data on more than 31 million customers was exposed to anyone who has an internet connection.

Mozilla patches critical flaws in Firefox 57.0.1 update

Mozilla released a security update to address critical vulnerabilities in Firefox 57 which could allow a remote attacker to take control of an affected system.

Ex-NSA worker stole classified data, related to Kaspersky incident

A former NSA employee pleaded guilty to taking classified national defence information that was later stolen by Russian spies.

Shipping company Clarksons refuses to pay ransom, data leak expected

UK shipping giant Clarksons has beenhit by hackers who were successful in stealing sensitive and confidential data which may soon be leaked due to Clarksons' refusal to pay the ransom demanded by the hackers.

Morrisons supermarket held liable after employee leaks data

Supermarket chain Morrison's was found liable, in a first of its kind data leak class action suit, for the actions of a former employee who stole the data on thousands of his co-workers and posted it online.

Wireless data tracking case to decide if US citizens have privacy rights

'An individual has no reasonable expectation of privacy in information voluntarily disclosed' is the premise being taken to the US Supreme Court Wednesday, to clarify if law enforcement must obtain warrants to access wireless data

Updated: DVLA selling details to parking firms seeking fines criticised

There has been speculation about the impact of incoming GDPR on government schemes that monitise the data of citizens given to them for the delivery of a service, which is then sold on without the data owner's consent.

The role of good data protection in a post cyber world

We now see 'weaponisation' of personal data against civilian groups largely indifferent to observation; as we live our lives online, criminal methods get easier, and rewards greater, cyber-crime is getting organised warns Peter Groucutt.

Eavesdropper flaw leaks millions of private conversations

Developers leave API credentials in applications built on Twilio telephony platform allowing phone call eavesdropping.

FBI hasn't cracked Texas shooter's mobile phone

The FBI hasn't yet broken the phone belonging to a gunman who went on a shooting rampage in a Texas church, killing 26 and wounding 24.

ONS watching thousands via their mobiles in 3 London boroughs for census

Statisticians at the Office for National Statistics (ONS) have been tracking the movements of thousands of people, albeit anonymised, in an experiment' with Vodaphone that could replace census questions in England and Wales.