UniCredit Suffers Third Breach Despite Investing Billions in Cybersecurity

Despite investing 2.4 billion euros since 2016 to upgrade its cybersecurity profile, Italian banking institution UniCredit has suffered its third recent data breach, this time impacting 3 million customers. The company said in a short data breach announcement on its website that Read More …

YouTube fined $170m for collecting children’s personal data

Google’s video site YouTube has been fined $170m to settle allegations it collected children’s personal data without their parents’ consent. The Federal Trade Commission (FTC) fined Google $136m and the company will pay an additional $34m to New York state to resolve similar allegations. Read More …

Brazilian citizen data under threat with sale of national tech firms

One of the state-controlled firms the Brazilian government is planning to sell has voiced concerns around areas including citizen data protection as the privatization agenda advances. Employees at the Social Security Technology and Information Company (Dataprev) released a manifesto following Read More …

Some of Russia’s surveillance tech leaked data for more than a year

A Russian security researcher has found that hardware equipment meant to be used by Russian authorities to intercept internet traffic had been leaving data exposed on the internet. The leaky equipment were SORM devices. These are hardware wiretaps that all Read More …

UK watchdog to investigate King’s Cross facial recognition tech used to spy on public

The UK’s Information Commissioner’s Office (ICO) is launching an investigation into the use of facial recognition technology at King’s Cross following media reports of the covert practice. On Thursday, UK Information Commissioner Elizabeth Denham said the use of cameras to Read More …

Fingerprints of 1M Exposed in Public Biometrics Database

Researchers discovered the personal and biometrics data of more than a million people left publicly exposed on a database owned by Suprema, a biometric security company. Data includes facial recognition and fingerprint information collected by the UK metropolitan police, small Read More …

British Airways E-Ticketing Flaw Exposes Passenger Flight, Personal Data

A vulnerability in British Airways’ e-ticketing system could enable a bad actor to view passengers’ personal data or change their booking information. A security bug discovered in British Airways’ e-ticketing system has the potential to expose passengers’ data, including their Read More …

Kazakh government will intercept the nation’s HTTPS traffic

Internet service providers (ISPs) based in Kazakhstan are being instructed to force their users to install government-issued root certificates on their devices to allow agencies to intercept web traffic. The increasingly-widespread Hyper Text Transfer Protocol Secure (HTTPS) refers to the transmission of Read More …