The US medical supplies company Solara suffered an incident in 2019 which reportedly affected more than 114,000 patients and also some of its employees. The breach involved personal identifying information (PII) and protected health information (PHI), where cyber criminals had accessed Solara’s Microsoft Office 365 accounts. Solara’s investigation confirmed that the accessed email accounts contained...
The Canadian media outlet CP24 informs that it has received a news from IKEA according to which it would have notified the Office of the Privacy Commissioner of Canada of a data breach involving the personal information of nearly 100k customers. Find more on CP24 here.
According to the leading wire service in Italy, the Ansa, hackers had hit two Milan hospitals on Sunday 1 May and Monday 2 May. As a result of these attacks, the IT systems of the hospitals are down and they will have to restrict access to ERs and laboratory services Monday and Tuesday. Read more...
According to TechCrunch, a healthcare startup named myNurse, will shut down at the end of May due to a data breach exposing its users’ personal data.The breach was discovered on March 7 and consisted of an unauthorized individual accessing the app’s data. Demographic, health, and financial information were accessed, including medical histories, diagnoses, lab test...
According to the new directives issued by the Indian Government, organisations have six hours to report cybersecurity incidents. The requirement was proposed by India’s Computer Emergency Response Team (CERT-In) after identifying specific gaps at the origin of security incidents requiring more aggressive measures. Read more in this article from BleepingComputer.
The Irish Data Protection Commission (DPC) has imposed a fine of €17m on Meta Platforms Ireland Limited (formerly Facebook Ireland Limited). Its inquiry related to a series of twelve data breach notifications it received in the six month period between 7 June 2018 and 4 December 2018, for violations of the requirements of GDPR Articles...
The US Securities and Exchange Commission (SEC) today proposed amendments to its rules to enhance and standardize disclosures regarding cybersecurity risk management, strategy, governance, and incident reporting by public companies. Public companies may be required to report cybersecurity incidents within 4 days. These disclosures would be made to the investors as cybersecurity is an ‘emerging...
The Office of the Australian Information Commissioner (OAIC) is urging organisations to put accountability at the centre of their information handling practices, to give individuals greater confidence that their personal information will be handled fairly and securely when they engage with an organisation. Continue reading the related release from the OAIC here.
American Headquarters: European Office:
PrivacyRules Ltd.
201 East Fifth Street
Suite 1900 – #1362
Cincinnati, OH 45202, USA
Via dei Della Robbia 112
50132, Firenze
Italy (IT)Expertise