Tuesday, November 5

Tag: data breach

Bigbasket Data Breach, Data of 20 million users put on Dark Web
News

Bigbasket Data Breach, Data of 20 million users put on Dark Web

New Delhi, Nov 8, 2020: India's leading online grocery platform Bigbasket faces a potential data breach that could leak the details of its 20 million users, according to cyber intelligence firm Cyble. The company has filed a police complaint in this regard with Cyber Crime Cell in Bengaluru and is verifying claims made by cyber experts. The cyber firm said that a hacker has put data allegedly belonging to Bigbasket on sale for around $40,000 (Rs 30 lakh). "In the course of our routine dark web monitoring, the research team at Cyble found the database of Big Basket for sale in a cybercrime market, being sold for over USD 40,000. The leak contains a database portion; with the table name ''member_member''. The size of the SQL file is about 15 GB, containing close to 20 million user d...
Zoom rolls out New Measures as Security fears Mount
News

Zoom rolls out New Measures as Security fears Mount

Videoconferencing platform Zoom is rolling out a number of measures meant to stem criticism over how it has handled security as users flock to the application during the coronavirus pandemic. Zoom chief executive Eric Yuan laid out steps Wednesday that the company is taking against problems such as data hacking and harassment by individuals who crash sessions in what is referred to as "Zoombombing." By week's end, paid account holders will be able to select which regions their data is routed through during their sessions in a move apparently aimed at concerns over the information passing through China where it might be subject to snooping. "As a reminder, meeting servers in China have always been geofenced with the goal of ensuring that meeting data of users outside of China stay...
Google Fined $170 mn for Sharing Kids YouTube Channel Data
News

Google Fined $170 mn for Sharing Kids YouTube Channel Data

Google agreed to pay USD 170 million to settle charges that it illegally collected and shared data from children on its YouTube video service, deal critics said was too soft on the internet giant. The settlement with the Federal Trade Commission and the New York State Attorney General is the largest amount in a case involving the Children's Online Privacy Protection Act, a 1998 federal law, officials said. Officials said YouTube violated the law that requires child-directed websites and online services to provide notice of their information practices and obtain parental consent prior to collecting personal information from children under 13. The company marketed itself as a destination for children and benefitted by selling advertising to toymakers and others seeking to connect wi...
Google will never sell data to 3rd parties: Sundar Pichai, Google CEO
Entrepreneurs Talk

Google will never sell data to 3rd parties: Sundar Pichai, Google CEO

Google will never sell any personal information of its users to third parties, CEO Sundar Pichai has said, amidst growing global concern over the misuse of personal data by some social media giants. In an opinion piece in The New York Times published on Tuesday, he also said that privacy cannot be a "luxury good" that is only available to people who can afford to buy premium products and services.The 46-year-old Indian-origin CEO of Google said he believed that privacy was "one of the most important topics of our time."People today are rightly concerned about how their information is used and shared, yet they all define privacy in their own ways, he said. "To make privacy real, we give you clear, meaningful choices around your data. All while staying true to two unequivocal policies:...
LinkedIn Accused of Violating Data Protection Rules of 18 Million Email Addresses
News

LinkedIn Accused of Violating Data Protection Rules of 18 Million Email Addresses

LinkedIn, the social network for the working world with close to 600 million users is being accused of violating data protection rules concerning around 18 million email addresses. These details were disclosed in a report published Friday by Ireland’s Data Protection Commissioner. This report covered activities in the first six months of this calendar year. In a list of investigations that have been reported concerning Facebook, WhatsApp and the Yahoo data breach, the DPC revealed one investigation that had not been reported before. The DPC found that LinkedIn in the US had obtained emails for 18 million people who were not already members of the social network, and then used these in a hashed form for targeted advertisements on the Facebook platform. “The complaint was ultimately a...
Govt Won’t Tolerate Misuse of Data to Influence Polls: IT Minister
INDIA

Govt Won’t Tolerate Misuse of Data to Influence Polls: IT Minister

IT Minister Ravi Shankar has warned social media companies against misusing user's data to influence upcoming 2019 elections, saying that it would no longer be tolerated. Moreover, the government is also looking forward to Justice Srikrishna Committee report on data protection and law. Speaking in the context, Prasad added, “We won’t tolerate misuse of data to influence elections. While the data of Indians has to be protected at any cost, India should also develop itself as a hub for data analysis.” The statement from IT Ministry comes in the wake of Facebook-Cambridge Analytica scandal wherein data of 5.62 lakh Indian users was compromised among 87 Mn global users. Denouncing such misuse of data, the minister vehemently proclaimed, In the wake of the recent data theft from Fa...
Facebook Again Failed to Protect Data of 3 Mn Users
News

Facebook Again Failed to Protect Data of 3 Mn Users

Barely two months after the Cambridge Analytica data scandal, Facebook is the subject of another data controversy as a third-party app in the form of a personality quiz, was able to collect and distribute sensitive Facebook data from over 3 million people. The data contained Facebook users’ answers for the personality trait test, and while it didn’t disclose the users’ names, it did contain their age, gender and relationship status. Additionally, status updates of over 150,000 users were exposed. The data was supposed to be shared and used among approved researchers exclusively through a specially designated website for that purpose but, reports suggest that a username and password to access the side could be found “in less than a minute” on any search engine, therefore meaning that ...
These Tweets Reveal How “India’s Two Leading Parties” Data Can be Easily Hack
INDIA

These Tweets Reveal How “India’s Two Leading Parties” Data Can be Easily Hack

CleverTap, a five-year-old US-based startup founded by three Indians is facing the heat after a pseudonymous researcher alleged that Indian PM Modi's Namo app was disclosing private information like name, email, mobile number, device information, and location, to servers controlled by the firm without the user's consent. The hacker & researcher known as Elliot Alderson on twitter, in a series of tweets, pointed the privacy lapses in the NaMO App and alleged that mobile marketing platform CleverTap was the beneficiary of the data transfer. Tweet 1- 1/ In this request, the @narendramodi's #Android #application sends silently and without the user's consent, his IP address and a unique identifier of his phone. This personal data is sent to the website https://t.co/XTWhe9kc5T whic...
Indian Government Issues Notice to Cambridge Analytica Against Data Breach
News

Indian Government Issues Notice to Cambridge Analytica Against Data Breach

While Facebook data leak controversy is still in hot waters, the Centre has sent a six-point notice to British political firm Cambridge Analytica seeking answers on whether it is involved in any projects that include the use of private data of Indian citizens in any form. The Ministry of Electronics and Information Technology has issued a notice against the data mining company which has been previously accused of stealing data of about 50 million Facebook users in order to influence United States Presidential Elections in 2016. In addition, Cambridge Analytica is also defamed for influencing elections results via illegal modes such as bribes, fake news and political contacts in many countries. The government has asked the company to reveal full details on how it has been using the da...
Editors Guild Condemns FIR Against Tribune Reporter Who Exposed Aadhar Leaks
INDIA

Editors Guild Condemns FIR Against Tribune Reporter Who Exposed Aadhar Leaks

The Editors Guild of India is deeply concerned over reports that the Deputy Director of the Unique Identification Authority of India (UIDAI) had registered an FIR against Rachna Khaira, a reporter of The Tribune, in the Crime Branch of the Delhi Police. The reporter has been booked under IPC sections 419 (punishment for cheating under impersonation), 420 (cheating), 468 (forgery), 471 (using a forged document) and also under sections of the IT Act and the Aadhar Act. The Tribune report of January 3 by Khaira had exposed how, for a small sum of money made to a payment bank, an agent of a private group would allegedly create a gateway to access details contained in an individual’s Aadhar card. Using a false identity, Khaira had posed as an interested party and claimed in her report that s...
Former Yahoo CEO, Equifax CEO to testify at U.S. Senate hearing
USA

Former Yahoo CEO, Equifax CEO to testify at U.S. Senate hearing

Former Yahoo Chief Executive Marissa Mayer and the current and former CEOs of Equifax Inc will testify before a U.S. Senate panel on Nov. 8 on two massive data breaches, the committee said Wednesday. Verizon Communications Inc, the largest U.S. wireless operator, acquired most of Yahoo Inc’s assets in June. Yahoo disclosed in October that a 2013 data breach affected all 3 billion of its accounts, compared with an estimate of more than 1 billion disclosed in December. The Senate Commerce Committee said Mayer, interim Equifax CEO Paulino do Rego Barros Jr. and former Equifax CEO Richard Smith would testify, as well as Karen Zacharia, Verizon’s deputy general counsel and chief privacy officer. Verizon and Equifax did not immediately comment. Mayer plans to appear, a representative fo...