The federal government of Canada has presented a bill by which it would compel companies in the energy, telecommunications, finance, and transportation sectors to either increase their cybersecurity systems or face expensive penalties in case of a breach. The bill is entitled Act Respecting Cyber Security and was presented by Canadian Industry Minister Francois-Philippe Champagne...
A research by Recorded Future’s Inskit Group has analysed the spike in cyber attacks against Latin American institutions between January and May 2022. It suggests that those institutions were easy targets for ransomware attackers due to lack of proper cybersecurity hygiene in the region. The research concludes that those cyber attacks “could constitute a credible national...
The US based Shields Health Care Group (SHCG) reported a healthcare cyberattack impacting about 2 million patients who received various kinds of health services at more than 30 locations across New England. SHCG discovered suspicious activity on its network on 28 March 2022, related to access to certain of its systems from March 7 to...
The US communications giant Verizon has just released its 2022 Data Breach Investigation Report where it analyses over 23,000 incidents and 5,200 confirmed breaches from around the world. Find the report here.
In a recent press release the US Federal Trade Commission (FTC) has once more stressed the importance of good incident response and breach disclosure as part of a reasonable information security program, which is also underlined in some of its guidelines. The FTC underlines that when security breaches do occur, timely, accurate, and actionable security...
The Canadian Arnprior Regional Health announced that it suffered a cyber attack compromising data dating back since 1996. The center has published the list of medical data that might have been impacted, while investigation is still ongoing. The impacted information includes names, dates of birth, contact information, health card numbers, dates of hospital visits including...
The Italian DPA (Garante per la protezione dei dati personali) has sanctioned Uber with a €4.240m fine for lack of transparency in the privacy policies, and missed notifications for a data breach occurred in 2017. Find the decision of the Garante (in Italian) here.
The US medical supplies company Solara suffered an incident in 2019 which reportedly affected more than 114,000 patients and also some of its employees. The breach involved personal identifying information (PII) and protected health information (PHI), where cyber criminals had accessed Solara’s Microsoft Office 365 accounts. Solara’s investigation confirmed that the accessed email accounts contained...
American Headquarters:
PrivacyRules Ltd.
151 West 4th Street
Suite 200
Cincinnati, OH 45202, USA
European Office:
Via dei Della Robbia 112
50132, Firenze
Italy (IT)