Page 3 - Data Breach

Govt unable to protect citizen's detail: Cong slams Centre over data breach

The Congress on Tuesday intensified its attack on the Centre over the alleged data breach on CoWIN platform and accused it of not being able to protect the personal details of crores of people. Asserting that the CoWIN portal was completely safe with adequate safeguards for data privacy, the government has dismissed as "mischievous" the claims of data breach on the platform and said the matter has been reviewed by the country's nodal cyber security agency CERT-In. Congress president Mallikarjun Kharge said neither does the Narendra Modi government care about the right to privacy of citizens nor about national security. "Overall, the situation is clear. The Modi government neither cares about the fundamental right to privacy of 140 crore people nor about national security. Data privacy law has not been made and no national security policy has been implemented on cyber attacks," he said in a tweet in Hindi. "No matter how much an irresponsible Modi government covers up the CoWIN data

Data breach reports from CoWIN without any basis, clarifies Health Ministry

The Union Health Ministry on Monday said reports claiming breach of data of beneficiaries registered on the CoWIN platform were "without any basis", and that it has requested the country's nodal cyber security agency CERT-In to look into the issue and submit a report. While asserting that the CoWIN portal is completely safe with adequate safeguards for data privacy, it said an internal exercise has been initiated to review the existing security measures of CoWIN. There are reports alleging breach of data from the Co-WIN portal of the Union health Ministry, which is repository of all data of beneficiaries who have been vaccinated against COVID19, the health ministry said in a statement. "It is clarified that all such reports are without any basis and mischievous in nature. Co-WIN portal of Health Ministry is completely safe with adequate safeguards for data privacy," it said. The ministry, however, said it has requested the Indian Computer Emergency Response Team (CERT-In) to look

Microsoft to pay $20 mn to settle US charges of 'illegal' children's data

Microsoft will pay a fine of $20 million to settle Federal Trade Commission charges that it illegally collected and retained the data of children who signed up to use its Xbox video game console. The agency charged that Microsoft gathered the data without notifying parents or obtaining their consent, and that it also illegally held onto the data. Those actions violated the Children's Online Privacy Protection Act, the FTC stated. In a blog post, Microsoft corporate vice president for Xbox Dave McCarthy outlined additional steps the company is now taking to improve its age verification systems and to ensure that parents are involved in the creation of child accounts for the service. These mostly concern efforts to improve age verification technology and to educate children and parents about privacy issues. McCarthy also said the company had identified and fixed a technical glitch that failed to delete child accounts in cases where the account creation process never finished. Microsof

British Airways, Boots staff's payroll data compromised by cyberattack

British Airways, owned by IAG, said it had notified affected employees and was providing them with support

Hackers target US dental insurance firm, steals data of 9 mn patients

The personal information of nearly nine million people in the US has been compromised in an apparent ransomware attack on one of the country's largest dental health insurers

Amazon Ring to pay $5.8 mn over unlawfully accessing consumer videos

California-based Ring, which was purchased by Amazon in February 2018, sells internet-connected, video-enabled home security cameras, doorbells, and related accessories and services

Beijing had access to app data: Fired ByteDance executive in law suit

A former executive fired from TikTok's parent company ByteDance made a raft of accusations against the tech giant Friday, including that it stole content from competitors like Instagram and Snapchat, and served as a "propaganda tool" for the Chinese government by suppressing or promoting content favourable to the country's interests. The allegations were made in a complaint Friday by Yintao Yu, the head of engineering for ByteDance's US operations from August 2017 to November 2018, as part of a wrongful termination lawsuit filed earlier this month in San Francisco Superior Court. Yu claims he was fired for disclosing "wrongful conduct" he saw at the company. In the complaint, Yu alleges the Chinese government monitored ByteDance's work from within its Beijing headquarters and provided guidance on advancing "core communist values." Yu said government officials had the ability to turn off the Chinese version of ByteDance's apps, and maintained access to all company data, including ...

Ex-Uber security chief Sullivan sentenced for data-breach cover-up

The former chief security officer for Uber was sentenced to probation Thursday for trying to cover up a 2016 data breach in which hackers accessed tens of millions of customer records from the ride-hailing service. Joseph Sullivan was sentenced to a three-year term of probation and ordered to pay a fine of $50,000, the U.S. attorney's office announced. Sullivan, 54, of Palo Alto was convicted by a federal jury in San Francisco last October of obstructing justice and concealing knowledge that a federal felony had been committed. It was believed to be the first criminal prosecution of a company executive over a data breach. Sullivan was hired as Uber's chief security officer in 2015. In November 2016, Sullivan was emailed by hackers, and employees quickly confirmed that they had stolen records on about 57 million users and also 600,000 driver's license numbers, prosecutors said. After learning of the breach, Sullivan began a scheme to hide it from the public and the Federal Trade ..

Angel One reports data breach, says no impact on client securities, funds

Stock broking firm, which manages 13 million clients, said certain client profile data like name, email, mobile number and client holding data may have been accessed in an unauthorised manner

Ransomware attacks, human error main cause of cloud data breaches: Report

Half of IT professionals surveyed in India believe that security threats are increasing in volume or severity

Pak Army Chief's personal data breach prompts formal inquiry by Parliament

A powerful panel of Pakistan's Parliament has sought a criminal investigation against officials of a government agency who allegedly accessed the personal information of Army chief General Asim Munir and his family, a media report said on Friday. According to the Dawn newspaper, two Pakistani journalists claimed in a vlog earlier this week that in October 2022, personal data and travel records of Gen. Munir's family were allegedly accessed by National Database and Registration Authority (NADRA) officers in a bid to stop his appointment as the Chief of Army Staff. NADRA also confirmed the news of the personal information of the Army chief's family being accessed and stolen. At a Public Accounts Committee of Parliament (PAC) meeting on Thursday, chaired by Member of the National Assembly Noor Alam Khan, expressed serious concerns over media reports about the breach, the report said. Khan said that those involved in the data theft should be behind bars, adding that Military Intelligen

About 52% of organisations suffered data breach in past 2 years globally

Nearly 48 per cent of Indian organisations say their security stack is too complex, compared to 28 per cent in the rest of the world

Cyberabad police crackdown after data of 670 mn people stolen: What we know

Last week, the Police arrested a Faridabad resident Vinay Bhardwaj, who was allegedly involved in stealing, holding and selling personal and confidential data

Over 18 mn Indian citizens' personal data exposed in data broker breaches

India is the second-most affected country when it comes to data broker breaches, and more than 1.8 crore (18.7 million) personal records of Indian citizens were compromised

T-Mobile says intruder breached network, stole data of 37 mn customers

T-Mobile said Thursday in a filing with the Security and Exchange Commission that the breach was discovered January 5

Software company CircleCi confirms hackers stole data of some customers

Several customers have already informed the company of unauthorised access to their systems

Twitter security headaches mount with data leak of over 230 mn users

The database, which was posted on Wednesday, contains the names and email addresses of politicians, journalists and bankers, among others

Toyota Motor's Indian unit warns of a possible customer data breach

Toyota India said it has notified the relevant Indian authorities of the data breach at Toyota Kirloskar Motor, a joint venture with Indian conglomerate Kirloskar Group

How to secure personal data amid a breach: Here's a list of dos and don'ts

As a series of data hacks, sale or ransom calls spook organisations in India, here is a list of dos and don'ts for personal data protection

Post-pandemic world reels from surge in cyberattacks; here's how to be safe

Take a look some of the biggest data breaches of 2022 and how you can protect yourself