April 12, 2024 at 03:50PM Summary: The article highlights the importance of file scanning within uploader applications to safeguard against cyber threats like malware. It emphasizes compliance with security standards and the use of tools like the OWASP file upload cheat sheet and Trend Vision One™ – File Security to enhance data security. The article … Read more
February 13, 2024 at 11:57AM France’s data protection agency CNIL is investigating massive data breaches at two healthcare payment management companies, potentially affecting over 33 million people. The cyberattack targeted Viamedis and Almerys, compromising personal data such as marital status and social security numbers. CNIL will ensure the companies comply with GDPR rules on victim … Read more
February 8, 2024 at 10:45AM Two French healthcare payment service providers, Viamedis and Almerys, experienced data breaches impacting 33 million individuals. The exposed data includes personal and insurance details, but not financial information. The breaches could lead to phishing, identity theft, and insurance fraud risks. The General Data Protection Regulation (GDPR) will require Viamedis and … Read more
January 30, 2024 at 11:54AM Italian regulators informed OpenAI that its ChatGPT chatbot violated the European Union’s data privacy regulations. The country’s data protection authority, Garante, discovered breaches and temporarily banned the chatbot in Italy. OpenAI has 30 days to respond to the allegations. Regulators in the U.S. and EU are also examining AI startups … Read more
January 30, 2024 at 06:12AM The Italian data protection authority has accused OpenAI of violating GDPR laws regarding ChatGPT’s data collection, leading to a 30-day response window. Similar concerns arise with Google’s Bard chatbot, while Apple opposes proposed U.K. Investigatory Powers Act amendments, citing threats to user privacy and security updates. This ongoing issue highlights … Read more
January 24, 2024 at 05:06AM France’s data protection agency fined Amazon’s French warehouses unit 32 million euros for an “excessively intrusive” surveillance system monitoring employee performance through package processing scanners. The system raised alerts for inactivity exceeding 10 minutes and fast handling of packages. The surveillance violated EU’s data protection regulation. The fine equals about … Read more
January 24, 2024 at 02:32AM A password-less database with 1.3 million Dutch COVID-19 testing records was exposed online, including personal data like names, birth dates, and passport numbers. The database belonged to CoronaLab, a recommended commercial COVID-19 test provider in the Netherlands. Despite attempts to notify them, no response was received, and it took three … Read more
January 22, 2024 at 06:12AM France’s data protection authority fined Yahoo 10 million euros for disregarding users’ rejection of internet-tracking cookies and implying loss of access to email accounts if they refused. Investigations revealed visitors who rejected cookies still had digital trackers deposited and Yahoo Mail users were warned about losing access to services if … Read more