GDPR

Just one month later, the Currys PC World/Dixons Travel hack would have cost them a heck of a lot more

DSG Retail, the parent company of Currys PC World and Dixons Travel, has been fined £500,000 for a hack which lasted from July 2017 to April 2018.

But if the breach had lasted for just one month longer, they could have expected a much MUCH larger penalty.

bitdefender.com

1&1 Telecom GmbH hit by almost €10 million GDPR fine over poor security at call centre

1&1 Telecom GmbH has been hit with one of the largest fines dished out so far under European GDPR legislation, Germany’s federal privacy watchdog has announced.

Read more in my article on the Hot for Security blog.

Google contractors told to stop listening to conversations captured on your Home assistant… for now, in Europe at least

Google has agreed to temporarily stop listening to audio captured by its Google Home smart speaker across the European Union… after an investigation was started by German regulators.

bitdefender.com

Marriott faces £99.2 million fine after hack exposed 393 million hotel guest records

The UK’s Information Commissioner’s Office (IOC) has announced its intention to fine the US hotel group Marriott International £99.2 million (US $123 million) for a data breach that exposed the personal details of hundreds of millions of guests.

Read more in my article on the Hot for Security blog.

tripwire.com

British Airways faces record £183 million GDPR fine after data breach

British Airways is facing a record fine of £183 million, after its systems were breached by hackers last year and the personal and payment card information of around 500,000 customers were stolen.

Read more about what you need to know in my article on the Tripwire State of Security blog.

bitdefender.com

La Liga fined €250,000 after Android app spied on football fans

The Spanish football league La Liga has been hit with a fine after its official Android app was found sneakily listening to people’s surroundings when soccer matches were being played.

Read more in my article on the Hot for Security blog.

Smashing Security #130: Doctored videos, Bcc blunders, and a diva

You won’t believe who had to report themselves to the data protection agency for a breach, or who has been sharing doctored videos of political rivals, or how much money you can make selling a laptop infected with malware… and how Carole gets her diva on.

All this and much more is discussed in the latest edition of the award-winning “Smashing Security” podcast by computer security veterans Graham Cluley and Carole Theriault.

Smashing Security #112: Payroll scams, gold coin heists, web giants spanked

Business email compromise evolves to target your company’s payroll, how the world’s largest gold coin was stolen from a Berlin museum, and are internet giants feeling the heat yet over data security?

All this and much more is discussed in the latest edition of the award-winning “Smashing Security” podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by people hacker Jenny Radcliffe.

bitdefender.com

Data breach disclosure is still taking too long, report reveals as GDPR looms

The accepted wisdom in the field of cybersecurity is that things are getting worse, and that more businesses are losing control of more data than ever before.

What a bunch of pessimists we are… The truth, however, might be rather different.

Read more in my article on the Bitdefender Business Insights blog.

Why you might want to tell Facebook you now live in Europe

If you’re concerned that you might be getting a worse deal from Facebook than your European cousins, maybe you could find some way to make your Facebook profile look like you’re based in Europe?

Failing that, there’s always the option to delete your account.

Most UK law firms aren’t ready for GDPR, claims report

A survey finds that “only 25%” legal sector IT decision-makers say that their firms were GDPR ready.

Only? 25% sounds pretty good to me!

This company deliberately deleted its customer email mailing list. Maybe you should too

With much tougher data protection regulations coming into force in May 2018 in the form of GDPR, it may be a canny move to securely wipe such information sooner rather than later.

Smashing Security #030: GDPR – The good and the bad

Podcast hosts Graham Cluley and Carole Theriault are joined by special guest Kevin Gorsline to discuss the European Union’s General Data Protection Regulation (GDPR), and what it means for your business even if you’re not based in Europe.