Cathay Pacific, one of the main airlines in Hong Kong, says records on as many as 9.4 million passengers may have been stolen in a data breach in March which has been made public last Wednesday. The airline said in a statement that there was “no evidence” that passenger data had been misused, but warned … Read more
Digital forensic examination revealed that an employee had an extensive history of visiting adult pornography websites. Many of the 9,000 web pages visited routed through websites that originated in Russia and contained malware. The analysis confirmed that many of the pornographic images were subsequently saved to an unauthorized USB device and personal Android cellphone connected … Read more
Twenty percent of Office 365 users who receive an e-mail with malicious link open this link within the first 5 minutes, according to Microsoft’s own research. The survey, in which billions of e-mails were analyzed, took place from January to September of 2018. According to researchers at Microsoft, 300.000 phishing campaigns were analyzed. 8 million … Read more
Denmark’s Data Protection Authority announced that it requires higher levels of protective measures for emails containing sensitive personal data. The use of email encryption is required starting at January 1, 2019 for these emails. Some types of personal information are more sensitive than others, and thus need more protection. These special categories of personal data … Read more
Bupa Insurance Services Limited (Bupa) has been fined £175,000 by the Information Commissioner’s Office (ICO) for failing to have effective security measures in place to protect customers’ personal information. Between 6 January and 11 March 2017, a Bupa employee was able to extract the personal information of 547,000 Bupa Global customers and offer it for … Read more
In 4 months, the French Data Protection Authority Cnil has received 742 notifications of personal data breaches, affecting 33.7 million people in France and abroad. Since the start on the 25th of May the European Data Protection Regulation (GDPR) requires companies to notify CNIL within 72 hours of any violation of personal data held by … Read more
