Security Affairs

JULY 6, 2020

Xchanging employs over 7,000 people worldwide and offers IT outsourcing, infrastructure including network managed services, software products and application management. The company disclosed the security breach on July 5, but it is not clear when it has discovered the attack. Securities and Exchange Commission (SEC).

Ransomware 76

Ransomware Insurance Financial Services Manufacturing 76

Security Affairs

APRIL 6, 2023

Data leak affected QBANK, Defence Bank, Bloom Money, Admiral Money, MA Money, and Reed. Using leaked data, threat actors could potentially breach banks’ backend infrastructure and consequently the infrastructure of their clients. Among the leaked data, researchers found Google and Liveness API keys.

IT 84

IT Financial Services Access Risk 84

Security Affairs

APRIL 20, 2023

ICICI Bank leaked millions of records with sensitive data, including financial information and personal documents of the bank’s clients. A misconfiguration of the bank systems exposed millions of records with sensitive data. A misconfiguration of the bank systems exposed millions of records with sensitive data.

Personal data 96

Personal data Phishing Risk Financial Services 96

Data Matters

SEPTEMBER 24, 2019

Today, more than 120 countries have privacy and data protection laws or regulations in place. Many of the new or modernized laws tend to be based on comprehensive legislation, rather than sectoral rules, as data needs to move across industry groups and borders. An Overview of the BDPA.

Personal data 68

Personal data GDPR Data Privacy Privacy 68

Data Matters

APRIL 20, 2021

This development indicates that sponsors and fiduciaries may soon be subject to focused scrutiny over their cybersecurity practices in DOL investigations and adds to the multiple existing sources of cybersecurity legal risk in the wake of data breaches or insufficient cybersecurity controls.

Cybersecurity 68

Cybersecurity Insurance Risk Compliance 68

IT Governance

JULY 31, 2019

State-sponsored hackers breach Greece’s top-level domain registrar (unknown). Department of Health Services email hacked exposing patient data (14,591). University of Alabama discovers 10-year-old account breach (1,400). Pennsylvania-based software firm and healthcare provider accuse each other of data theft (unknown).

Data breaches 111

Data breaches Ransomware Personal data Government 111

DLA Piper Privacy Matters

MARCH 30, 2023

Two-thirds of the GDPR fines issued by EU data protection authorities last year where from the DPC, illustrating a continued commitment to enforcement. Two-thirds of the GDPR fines issued by EU data protection authorities last year where from the DPC, illustrating a continued commitment to enforcement.

Personal data 52

Personal data GDPR Compliance Financial Services 52

IT Governance

MARCH 11, 2024

66,702,148 known records breached in 103 newly disclosed incidents Welcome to this week’s global round-up of the biggest and most interesting news stories. At the end of each month, these incidents – and any others that we find – will be used to inform our monthly analysis of data breaches and cyber attacks. Data breached: 6.9

Data Privacy 87

Data Privacy Privacy Security Data breaches 87

Krebs on Security

APRIL 11, 2024

New York City based Sisense has more than 1,000 customers across a range of industry verticals, including financial services, telecommunications, healthcare and higher education. “If they are hosting customer data on a third-party system like Amazon, it better damn well be encrypted,” Weaver said.

Encryption 249

Encryption Passwords Access Financial Services 249

IT Governance

JANUARY 23, 2024

At the end of each month, these incidents – and any others that we find – will be used to inform our monthly analysis of data breaches and cyber attacks. The data set is a collection of 1 billion credentials sourced from stealer logs and hosted on the illicit.services website. Data breached: 70,840,771 email addresses.

Data Privacy 52

Data Privacy Privacy Manufacturing Retail 52

eSecurity Planet

JANUARY 21, 2021

Data privacy regulations like the EU’s General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA) can be hard to navigate for businesses of any size, but GRC tools can simplify and streamline compliance with all of the requirements. Its features include: Compliance education & management.

Compliance 67

Compliance Risk Government Retail 67

IT Governance

DECEMBER 11, 2023

At the end of each month, these incidents – and any others that we find – will be used to inform our monthly analysis of data breaches and cyber attacks. Data breached: more than 59 million data records. BianLian claims to have exfiltrated 5 TB of data, comprising millions of sensitive documents. Akumin Inc.

Data Privacy 101

Data Privacy Energy and Utilities Privacy Manufacturing 101

IT Governance

JANUARY 16, 2024

At the end of each month, these incidents – and any others that we find – will be used to inform our monthly analysis of data breaches and cyber attacks. The data is no longer publicly available. Data breached: >223,000,000 records. Data breached: >7,000,000 records. Data breached: 5,500,000 records.

Data Privacy 52

Data Privacy Privacy Manufacturing Retail 52

eSecurity Planet

JANUARY 21, 2021

Data privacy regulations like the EU’s General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA) can be hard to navigate for businesses of any size, but GRC tools can simplify and streamline compliance with all of the requirements. Its features include: Compliance education & management.

Compliance 57

Compliance Risk Government Retail 57

KnowBe4

JUNE 20, 2023

1 Root Cause of Data Breaches Verizon's DBIR always has a lot of information to unpack, so I'll continue my review by covering how stolen credentials play a role in attacks. So, what does the report say about the most common threat actions that are involved in data breaches? million simulated phishing security tests.

Data breaches 76

Data breaches Phishing Security awareness Ransomware 76

DLA Piper Privacy Matters

APRIL 2, 2020

In the context of this global crisis, cyber risk management involves balancing the productivity of a workforce with ensuring confidentiality, integrity and availability of the company’s own systems and data, as well as that of their supply chain. Secure systems enabling remote access.

Cybersecurity 52

Cybersecurity Phishing Authentication Access 52

DLA Piper Privacy Matters

MARCH 4, 2021

In its second full year overseeing and regulating the GDPR in Ireland, the Data Protection Commission ( DPC ) has published its 2020 Annual Report , highlighting key observations, emerging guidance, and large scale inquiries and decisions of 2020. 90% of the recorded breach cases were concluded in 2020.

GDPR 105

GDPR Compliance Data breaches Marketing 105

IT Governance

APRIL 29, 2024

At the end of each month, these incidents – and any others that we find – will be used to inform our monthly analysis of data breaches and cyber attacks. Data scraping or web scraping is a typically automated process that extracts information from websites, allowing criminals to compile datasets containing personal information.

Data Privacy 94

Data Privacy Privacy Manufacturing Security 94

Data Matters

APRIL 23, 2018

A high-profile cyber incident may cause substantial financial and reputational losses to an organization, including the disruption of corporate business processes, destruction or theft of critical data assets, loss of goodwill, and shareholder and consumer litigation. Encrypting critical data assets. Managing digital identities.

Cybersecurity 60

Cybersecurity Risk Passwords Authentication 60

Data Matters

MAY 17, 2022

It used to be that data breaches were all about cyber-crooks hacking computer systems to steal personal information, followed by an affected company sending regretful notification letters offering a year or two of complimentary credit monitoring. In your grandfather’s data breach—e.g., All rights reserved. Persistence.

Cybersecurity 97

Cybersecurity Government Authentication Ransomware 97