NEWS & UPDATES

There is growing importance for organisations to protect against hacking. In light of a number of infamous hacks that have occurred in recent years, it’s clear that we’re all at risk of third-party actors hacking into our servers and systems.

We have seen millions of documents and files being hacked from a number of organisations worldwide. Malicious actors can get in with simple vulnerabilities, like an organisation’s failure to update their Outlook webmail system. One simple error like this could lead to the whole organisation’s data servers being accessed!
Read More

In recent years, the healthcare industry has been a big target for cyber-hackers, and there have been some huge cases reported. The healthcare industry leads the way in terms of the highest number of breaches and leaks in the U.K. and in other countries too, and in one example we’ll take a look at here, a hospital suffered a medical data breach that reportedly affected some 30,000 patients.

A medical breach involving 30,000 patients is absolutely monumental!
Read More

Xerpla Limited boasts of a range of services for companies who really want to get their business off the ground. The London-based firm say they provide innovative design, advertising, and web hosting and consultancy services for their customers.

However, they may be using the cheapest way to reach as many people as possible.

The Information Commissioner’s Office (ICO) received 14 complaints over emails sent from the firm, and therefore began investigating them. The ICO found that the firm was responsible for sending over 1,257,580 million spam emails to promote and advertise products and services on behalf of their customers.
Read More

Cyberattacks and data breaches have soared in recent years, and the U.S. has suffered huge amounts of breaches that has also affected U.K. organisations and citizens too.

They’re a worry because they can identify weaknesses in a country similar to us in terms of technological reliance and development. In this article, we’ll take a quick look at seven of the biggest government data breaches from across the pond in the U.S.
Read More

Amazon recently launched their Amazon Web Service (AWS) – a completely separate arm to their huge retail business. The ever-expanding company has been hugely successful, primarily by embracing the modern method of online retail.

The AWS is marketed at all businesses and organisations: large, small, and even start-ups. Its services include database storage, analytics and management services, and they pride themselves on providing ‘flexibility, scalability and reliability’. The seemingly impressive service has already attracted many high profile companies and organisations including British Gas; Just Eat; Channel 4 and Trainline.
Read More

A “hacktivist” is a person (or group) who hack into systems for political reasons or with a “socially-motivated” interest. In terms of the latter, the idea for some is to raise awareness of weaknesses so they can be plugged.

Last year for example, the Hungarian Human Rights Foundation (HHRF) website was accessed by a “hacktivist”. The cyberhacker said that they were able to access 20,000 accounts including personal information; but it was not an act borne from malicious intent…
Read More

It seems our anti-virus cybersecurity protection software may apparently be putting us at risk. This juxtaposition is reportedly shared by the British Government who will avoid using the Russian-made Kaspersky anti-virus software over national security concerns.

The software works by accessing a lot of information; scanning it all for malicious coding. It’s this access to large amounts of information that is apparently worrying the British government.
Read More

The U.S. Supreme Court is to hear a second significant case on digital privacy. Although digital data privacy is something that is fast becoming a common issue of debate, there remains a struggle to distinguish what the boundaries are when it comes to owning it or using it.

In this case, the dispute is between technology-giant Microsoft and the U.S. federal government. In 2013, U.S. prosecutors in a drug trafficking investigation obtained a warrant to search a suspect’s emails. It took the warrant to Microsoft demanding access to emails, and they put up a fight to stop access to them.
Read More

Cybersecurity consultancy firm Accenture reportedly held an incredible amount of sensitive customer data on four cloud servers that were not password-protected. There were some 137GB of data on Amazon’s cloud bucket that included decryption keys, and without a password, the account was essentially available for access by the public.

The unsecured servers were discovered by a security research firm, UpGuard, in mid-September. They found:

• Secret Application Programming Interfaces
• Authentication credentials
• Certificates
• Decryption keys
• Customer information

Read More

The U.S. National Football League has reportedly seen a huge data leak where 1,113 players had their personal information posted online.

The website for the NFL Players Association also included contact information for the players and their agents in the reach. Exposed information apparently included:

• Email addresses and mobile telephone numbers
• Home addresses of agents
• IP addresses for users when signing in
• Logged information for the website was accessed
• Advisor fee percentages

Read More

It’s a potentially deadly combination: healthcare data and mobile apps.  In fact, one of the world’s largest diagnostics service providers had its security wall breached as a result of a mobile app exposing medical data. So, it has happened.

Reportedly, around 34,000 customers had personal and medical information accessed during the breach. The information included customers’ names, dates of birth, health records and some telephone numbers.

Thankfully, the breach did not include any financial details like bank account numbers, sort codes and NI numbers. But it raises serious doubts over whether the healthcare industry is really secure enough to combine with the mobile app industry. Is it just too risky?
Read More

The Information Commissioner’s Office (ICO) has fined Easyleads Limited £260,000.00 after they reportedly made 16,730,340 automated marketing calls without obtaining proper consent from the recipients.

In total, 551 complaints were made to the ICO.

Easyleads were found to have violated the Data Protection Act and the Private Electronic Communications Regulation (PECR) for the illegal calls, and the fine was imposed as a result of their actions.
Read More