StockX, a sneaker trading platform, is facing a lawsuit over a data breach that resulted in more than 6.8 million customer records being exposed. Filed on Monday in U.S District Court, the lawsuit is on behalf of a minor from Kansas and other minors whose personal data “was accessed, acquired, stolen and re-sold by hackers […]
Posted on 23rd August 2019 in GDPR.
The Irish government has been criticised by the Irish Data Protection Commissioner (IDPC) for the way in which a public ID card has been implemented. The IDPC claims there is no legal basis for public entities to oblige individuals to use the card when receiving services, reports reveal. First brought in in 2011, the public service […]
Posted on 22nd August 2019 in GDPR.
Users will now be able to view all their data that is shared by third-party websites and apps to Facebook. The new setting will allow users to clear their history, prevent any future activity from being tracked, and selectively stop specific websites from sending users browsing activity to Facebook. The feature simply removes the connection […]
Posted on 21st August 2019 in GDPR.
A British teenager has pleaded guilty to money laundering, hacking, and breaching a Sexual Harm Prevention Order. Elliot Gunton, 19, resident of Norwich, offered hacking-for-hire services and supplied personal data in exchange for cryptocurrencies. After conducting a search in his home to ensure that Gunton was not violating his Sexual Harm Prevention Order, which had […]
Posted on 20th August 2019 in GDPR.
The European Central Bank (ECB) confirmed that it has suffered a data breach at its Banks’ Integrated Reporting Dictionary (BIRD) website. In a short statement released on Thursday, the bank had stated that an unauthorised party had breached the security measures that were put in place to protect BIRD. Subsequently, the contact data of 481 […]
Posted on 19th August 2019 in GDPR.
A new malware has been discovered that is able to record the screen of an infected machine and identify a user who is viewing porn. Researchers at IT security company ESET, first observed the malware dubbed “Varenyky” in May 2019. A month later, researchers saw the first malicious document infecting a victim’s computer which had […]
Posted on 16th August 2019 in GDPR.
Researchers at SafeBreach demonstrated how the vulnerability could be exploited to achieve privilege escalation. Researchers discovered an issue with the pvmSvc.exe, a central control service, which was being executed as NT AUTHORITY/SYSTEM. Once executed, a missing DLL file was trying to load. “In our VM, the c:\python27 has an ACL which allows any authenticated user to write […]
Posted on 15th August 2019 in GDPR.