Tag: gdpr
101 articles
UK Manufacturers Face Rampant Cyberattacks, ESET Report Finds
UK manufacturers are under siege, with a staggering eight in ten experiencing a cyberattack in the past year, resulting in financial losses and a growing sense of vulnerability. As our critical infrastructure comes under threat, the question on everyone's mind is: how long before the chaos spills into our daily lives?
ICO Slams UK Scammers with Critical £100,000 Fine
The Information Commissioner's Office has hit Birmingham-based scammers TMAC with a £100,000 fine for making over 4.2 million unwanted calls to UK residents, a move aimed at putting a stop to the nuisance. But will this hefty penalty be enough to deter others from following in their footsteps?
France database: Exclusive critical leak of 1.2M accounts
An unknown attacker reportedly exfiltrated 1.2 million bank-account records from France’s central database, turning administrative efficiency into a nationwide privacy and security crisis. Read on to see what happened, who’s at risk, and how one failed lock can expose millions.
Gartner Warns: Stunning Shadow AI Risk to 40% of Firms
Turns out the handy AI tools employees love could be your companys hidden threat: Gartner warns that by 2030, 40% of firms will face security or compliance incidents from shadow AI—unsanctioned consumer or third‑party models that can leak PII, payment data and trade secrets. Convenience is great until it becomes a costly regulatory and financial headache.
Shadow AI: Stunning Risk as 1 in 4 Use Unapproved Tools
What if a quarter of your team were quietly sharing company secrets with unapproved AI? Shadow AI—employees turning to consumer models to speed tasks—is convenient but can expose PII, IP and trigger costly compliance headaches.
LinkedIn AI Exclusive: One-Week Opt-Out or Risk
Heads up: LinkedIn is giving users in Europe, Canada and Hong Kong just seven days to opt out. If you don’t act, your public posts could be used to train Microsoft’s AI.
cyber risk management: Must-Have Best Legal Defense
Cyber incidents aren’t just IT headaches — they’re legal minefields that can trigger fines, lawsuits and boardroom liability. Align contracts, AI governance, vendor controls and BYOD policies so technical breaches don’t become costly legal crises.
Data minimisation: Stunning GDPR Win Against Experian
The Dutch data watchdog fined Experian €2.7m for collecting and keeping more personal data than necessary, a sharp reminder that GDPR’s data‑minimisation rules aren’t optional. The ruling signals that data brokers and businesses must justify every data point they hold — or face stricter enforcement that could reshape product design, retention policies and privacy controls.
58-hour delay: Stunning £14m fine exposes risky lapse
The ICO fined Capita £14m after a 58‑hour delay in reporting a 2023 breach that exposed 6.6 million records — a stark reminder that slow incident response can magnify harm and erode public trust.
Capita fined £14m: Shocking Risky Wake-up Call
When the company you trust with your data leaves the front door ajar, millions can pay the price — Capita was fined £14m after a 2023 breach exposed 6.6 million records, a sharp reminder that outsourcing data demands airtight security and clear accountability.
Microsoft 365 Education Risky: Stunning GDPR Alert
An Austrian regulator has ruled Microsoft 365 Education illegally tracked pupils, a landmark GDPR decision that could force cloud giants to adopt privacy-by-default settings and clarify who’s truly responsible for protecting kids’ data. Parents and schools deserve tools that safeguard students without breaking classroom tech.
pasting personally identifiable information: Risky Stunning
We keep pasting customer names, order numbers and card details into ChatGPT because it’s fast — but one casual prompt can lead to fines, fraud and lost trust. Make safe AI the easy choice: use sanctioned tools, DLP and clear rules before your next prompt.
stronger data access rules: Must-Have, Best Cybercrime Fix
Europol warns that AI, encryption and decentralized tech are letting cybercriminals outrun investigators — Europe needs clearer, faster data laws so crimes don’t slip through legal cracks. Officials say we can and must modernise access rules with strong safeguards to protect both security and privacy.
block UK access: Risky Exclusive ICO Showdown
Imgur’s sudden decision to block UK users after an ICO regulatory notice raises a stark question: can tech platforms really sidestep data-protection rules by simply cutting off access? The ICO says no — and this standoff could cost users services, reshape where creators host content, and test whether regulators can hold global platforms accountable.
supply chain breach: Risky Harrods Alert — Must-Read
If you shopped online at Harrods, a supply‑chain breach may have exposed customer data — a reminder that even luxury brands aren’t immune when a trusted vendor is compromised. Check your accounts, enable MFA, and watch for phishing while retailers tighten vendor security and transparency.
Gucci and Alexander McQueen: Exclusive Risky Data Breach
Luxury shoppers were jolted this week after a reported breach tied to ShinyHunters exposed millions of email addresses linked to Gucci and Alexander McQueen. Change your passwords, enable MFA, and watch for phishing while the brands investigate and disclose what was taken.
data destruction: Must-Have Guide to Avoid Risky Fines
Upgrading hardware? Improperly decommissioned SSDs and laptops can leave recoverable data that leads to fines, lawsuits and reputational damage—follow media-specific sanitization, certified destruction and auditable disposal practices to avoid costly penalties.
data breaches in schools: Urgent Exclusive Warning
A new ICO warning shows student hacks are increasingly exposing sensitive school data and could be training tomorrow’s cybercriminals. Schools urgently need practical security upgrades, ethics lessons and better funding to protect pupils and restore parental trust.
fitness call recordings: Stunning Privacy Risk
Imagine your gym keeping 1.6 million unprotected call recordings—names, payment details and even voiceprints—on an open database anyone could access. This wake‑up call shows how easily convenience becomes a privacy disaster unless companies encrypt, limit retention and lock down access now.
cookie privacy failures: Stunning Harsh Fines Exposed
France’s privacy watchdog hit Google and SHEIN with big fines for dropping tracking cookies and serving ads without proper consent — a wake-up call that could reshape online advertising and give users real control over their data.
cybersecurity legislation: Must-Have Rules, Risky Tradeoffs
A new CIISec poll shows most security professionals want tougher, clearer cybersecurity laws—urging policymakers to create practical, enforceable rules that boost defenses without stifling innovation. If lawmakers listen and invest in enforcement and workforce skills, stronger regulation could deliver real protection for businesses and citizens.
hotel booking system Risky Breach: Stunning 100k Leak
Imagine strangers knowing where you slept last summer — and maybe even what you paid — because Italy’s digital agency confirmed a massive breach of hotel bookings affecting nearly 100,000 records since June. If you stayed in Italy recently, check your accounts, beware phishing, and know hotels are scrambling to secure systems and notify guests.
Hackers Breach Dutch Lab: Stunning Privacy Risk
Half a million people who trusted a Dutch cancer‑screening lab with their most intimate health details have had that trust shattered after hackers stole sensitive records — a breach that threatens patient privacy, public‑health confidence, and the future of screening programs. As investigators work to pin down the scope, this crisis is a clear wake‑up call for stronger cybersecurity, better policies, and swift support for those affected.
GDPR shoplifters photos Risky Warning — Must-Read
The U.K.’s ICO warns that sharing photos of suspected shoplifters can breach GDPR and unfairly tarnish people before guilt is proven. Retailers need to balance crime prevention with privacy rights and legal risk.