data breach

Twitter could face its first GDPR penalty within days

European data protection regulators have inched toward an enforcement decision for a Twitter breach that the company publicly disclosed in 2019, after a majority of EU data supervisors agreed to back

UK watchdog reduces Marriott data breach fine to $23.8M, down from $123M

The U.K.’s ICO has reduced the size of a data breach penalty for hotel business Marriott — dropping it to £14.4 million (~$23.8 million) in a final penalty notice, down from the £99 mill

Fragomen, a law firm used by Google, confirms data breach

Immigration law firm Fragomen, Del Rey, Bernsen & Loewy has confirmed a data breach involving the personal information of current and former Google employees. The New York-based law firm provides

UK’s ICO reduces British Airways data breach fine to £20M, after originally setting it at £184M

One of the biggest data breaches in U.K. corporate history has been closed off by regulators not with a bang, but a whimper. Today the Information Commissioner’s Office, the U.K.’s data wa

Decrypted: The major ransomware attack you probably didn’t hear about

Watching the news this past week was like drinking from a firehose. Speaking of which, you probably missed a busy week in cybersecurity, so here are the big stories from the past week. THE BIG PICTURE

Daily Crunch: Shopify confirms data breach

Shopify blames “rogue” employees for a data breach, Google Maps adds COVID-19 data and China pushes back against the TikTok deal. This is your Daily Crunch for September 23, 2020. The big

Shopify says two support staff stole customer data from sellers

Shopify has confirmed a data breach, in which two “rogue members” of its support team stole customer data from at least 100 merchants. In a blog post, the online shopping site said that it

Data breach at New York Sports Clubs owner exposed customer data

Town Sports International, the parent company of New York Sports Clubs and Christi’s Fitness gyms, is mopping up after a security lapse exposed customer data. Security researcher Bob Diachenko r

United Airlines’ website bug exposed traveler ticket data

A bug in United Airlines’ website let anyone access the ticket information for travelers who requested a refund. The airline’s website lets users check their refund status by entering thei

How to respond to a data breach

I cover a lot of data breaches. From inadvertent exposures to data-exfiltrating hacks, I’ve seen it all. But not every data breach is the same. How a company responds to a data breach — whethe

Decrypted: Uber’s former security chief charged, FBI’s ‘vishing’ warning

A lot happened in cybersecurity over the past week. The University of Utah paid almost half a million dollars to stop hackers from leaking sensitive student data after a ransomware attack. Two major A

Decrypted: How a teenager hacked Twitter, Garmin’s ransomware aftermath

A 17-year-old Florida teenager is accused of perpetrating one of the year’s biggest and most high-profile hacks: Twitter. A federal 30-count indictment filed in Tampa said Graham Ivan Clark used

Twitter warns investors of possible fine from FTC consent order probe

Twitter has disclosed it’s facing a potential fine of more than a hundred million dollars as a result of a probe by the Federal Trade Commission (FTC), which believes the company violated a 2011

Alcohol delivery service Drizly confirms data breach

Online alcohol delivery startup Drizly has told customers that it was hit by a data breach. In an email to customers, obtained by TechCrunch, the company said that a hacker “obtained” some

Instacart blames reused passwords for account hacks, but customers are still without basic two-factor security

Online shopping service Instacart says reused passwords are to blame for a recent spate of account breaches, which saw personal data belonging to hundreds of thousands of Instacart customers stolen an

Twitter won’t say if hackers accessed user DMs after breach

Twitter has said that there is “no evidence” that attackers obtained user account passwords after its security breach on Wednesday, which forced the company to lock down user accounts to p

Decrypted: Police hack criminal phone network; Randori raises $20M Series A

Last week was, for most Americans, a four-day work week. But a lot still happened in the security world. The U.S. government’s cybersecurity agencies warned of two critical vulnerabilities — o

How Have I Been Pwned became the keeper of the internet’s biggest data breaches

When Troy Hunt launched Have I Been Pwned in late 2013, he wanted it to answer a simple question: Have you fallen victim to a data breach? Seven years later, the data-breach notification service proce

Twitter says some business users had their private data exposed

Flip the “days since the last Twitter security incident” back to zero. Twitter said Tuesday that it has emailed its business customers, such as those who advertise on the site, to warn tha

Babylon Health admits ‘software error’ led to patient data breach

Babylon Health, a UK AI chatbot and telehealth startup which has been valued in excess of $2BN, has suffered an embarrassing data breach after a user of the app found he was able to access other patie
Load More