Here we go again… 80,000 Facebook user accounts compromised

Those behind the attack told the BBC Russian Service that they had access to 120 million accounts, although this has been branded “unlikely” by Digital Shadows, whose researchers were called in to investigate.

In fact, the seller, “FBSaler,” provided a total dataset to reporters of around 257,000 profiles.

The largest number of profiles (30%) are Ukrainian, followed by Russia (9%), although users from the US, UK and Brazil are also said to be represented.Just 81,000 are certain to have been compromised, as private messages were included. The remaining 176,000 may have simply had profile information like names, addresses, contact numbers, and interests taken because accounts were left wide open by users.

The accounts are not thought to be linked to the Cambridge Analytica scandal, or the more recent breach of 30 million accounts which occurred after attackers obtained access tokens.

> Read entire article Over 80,000 Facebook user accounts compromised | Phil Muncaster | InfoSecurity
Advertisements

Alphabet shuts down Google+ after data leak it has known about since March is exposed

Google will shut down the consumer version of its social network Google+ after announcing data from up to 500,000 users may have been exposed to external developers by a bug that was present for more than two years in its systems.

The company said in a blog on Monday it had discovered and patched the leak in March of this year and had no evidence of misuse of user data or that any developer was aware or had exploited the vulnerability.

Shares of its parent company Alphabet Inc, however, were down 1.5% at US$1150.75 in response to what was the latest in a run of privacy issues to hit the United States’ big tech companies.

> Read entire article Alphabet shuts down Google+ after data leak it has known about since March is exposed | Financial Post

A note from our Data Protection Officer

Keep calm and don’t panic, GDPR becomes law in 3 days.

In recent days, I have heard various comments that include ”This is like Y2K and it is yet another opportunity for consultants to make money”. To counter this argument, GDPR will go on beyond May 25th and will live on until the next revision. Whilst some will make money or not, this misses the point.

Remember, even if you do not work in Europe, when you manage the personal data of European ‘data subjects’, you have to play by the rules too.We take the protection of your data very seriously at ContinuityLink and as the Data Protection Officer, I share my knowledge with our team and ask for their views. This ensures that everyone can claim ownership for ‘our’ policies and plans.

We would like to help you comply with the GDPR legislation. Whilst Data Protection has been around for many years, one of the important improvement of this EU’s legislation is to have a common set of rules across its 28 members.

Why not enroll in a CDPO course to learn what it is all about, how to implement the procedures and protect your customers’ data?

Ian Francis
Data Protection Officer
ContinuityLink

Certified Data Protection Officer training and certification in Amsterdam on 19-23 February

The General Data Protection Regulation (GDPR) is set to take effect on 25 May 2018.

One of the major requirements is the mandatory appointment of a dedicated Data Protection Officer (DPO). The role of the DPO is complex. DPOs will need to possess comprehensive knowledge and understanding of data protection laws, not just as they relate to companies operating in the EU but globally.

The Certified Data Protection Officer training course will enable you to develop the necessary knowledge, skills and competence to effectively implement and manage a compliance framework with regard to the protection of personal data.

Complete training description | More events in this city | Other locations for this training

ContinuityLink
Your Resilience Partner

www.continuitylink.com
+1 514 572-4517
questions@continuitylink.com

Top 5 impacts of GDPR on the European financial services industry

With less than 200 days until the deadline to comply with GDPR, Brickendon takes a look at how the legislation will affect the financial services industry.

GDPR aims to create a standardised framework that will govern the way organisations handle data. The deadline for complying with the legislation is May 25, 2018.

Amid growing concerns surrounding the safety of personal data from identity theft, cyberattacks, hacking or unethical usage, the EU has introduced new legislation to safeguard its citizens. The EU General Data Protection Regulation (GDPR) aims to standardise data privacy laws and mechanisms across industries, regardless of the nature or type of operations.

Most importantly, GDPR aims to empower EU citizens by making them aware of the kind of data held by institutions and the rights of the individual to protect their personal information. All organisations must ensure compliance by May 25, 2018.

Is your organization GDPR compliant?

Develop the knowledge, skills and competence to effectively implement and manage a compliance framework for the protection of personal data. Become a Certified Data Protection Officer with ContinuityLink. Find out more about the CDPO training and certification.

While banks and other financial firms are no strangers to regulation, adhering to these guidelines requires the collection of large amounts of customer data, which is then collated and used for various activities, such as client or customer onboarding, relationship management, trade-booking and accounting. During these processes, customer data is exposed to a large number of different people at different stages – and this is where GDPR comes in.

So, what does the introduction of GDPR actually mean for financial institutions, and which areas should they be focusing on? Brickendon’s data experts take a look at five key areas of the GDPR legislation that will have the biggest impact on the sector.

> Read complete article Top five impacts of GDPR on the European financial services industry | World Finance