Here’s a round-up of interesting reading we found online today*;
Express reports 'Huge security breach at European Parliament - hundreds of MEPs compromised', A cybersecurity firm says it has found a huge data leak affecting thousands of EU officials. Yash Kadakia, the founder of Security Brigade and Shadow Map, said his group had found a major data breach. The security expert, a self-proclaimed "Code Monkey", was able to easily access data and passwords from members. After Brussels denied the claims, Mr Kadakia doubled down and revealed more details of the alleged breach.
Free report from IBM, "Avg total cost of a data breach: $3.92M.Data breaches can cause devastating financial losses and affect an organization’s reputation for years. From lost business to regulatory fines and remediation costs, data breaches have far-reaching consequences. In fact, in the annual Cost of a Data Breach Report, conducted by the Ponemon Institute and sponsored by IBM Security, it was noted that the average total cost of a data breach in 2019 was $3.92 million."
"New Zealand has lax rules around what information is collected about children online, with one researcher pushing for tighter rules to protect our youngest digital citizens. Warwick Rasmussen reports. Children are being subjected to "intensive corporate surveillance" while online, with weak regulations in New Zealand allowing businesses and third parties to capture data that builds a digital profile from young ages".
US Update on the law. On May 7, Republican members of the Senate Commerce, Science and Transportation Committee formally introduced the COVID-19 Consumer Data Protection Act of 2020 (the Act), which would put temporary rules in place regarding the collection, processing and transfer of data used to combat the spread of COVID-19.
JapanTimes reports "At least 1,000 phoney websites representing real institutions and companies have popped up since February, a Japanese security expert said Saturday. The sites include those for government agencies, news outlets and electronics makers as well as major foreign companies. They were apparently created between February and May, said Kenzo Masamoto, director of the Security Research Center at Macnica Networks Corp., an information security company in Yokohama"
*These sites aren’t affiliated with GDPR Community and these aren’t an advertisement, they’re simply site’s we’ve thought the community might have an interest in reading.