The White House has launched the Cyber Trust Mark labeling program for connected devices to assist consumers in determining whether IoT products are cyber secure.
Google's argument to dismiss the privacy lawsuit was that the plaintiffs should have been aware that third-party apps that make use of Google Analytics tools might continue to collect location data about them independently. The judge determined that a "reasonable user" could not be expected to know that.
While the fine will hardly break either of the two tech titans, the ruling could provide a precedent on data collection that could prove much more costly in the future if applied to everything else made available on app stores.
Zagg has disclosed a credit card data breach after an unauthorized third party injected malicious code into their BigCommerce platform via a third-party add-on, FreshClick.
A new report cites insider sources in naming Charter Communications, Consolidated Communications and Windstream among the breached US telecom companies. The sources also state that the Salt Typhoon campaign may have started in late 2023.
German automaker Volkswagen suffered a massive data leak, affecting over 800,000 electric vehicle owners, with over half of EVs leaking precise location data.
Over 2.6 million people may have been affected by a massive supply chain attack leveraging over 35 compromised Chrome extensions to take over Facebook Ad accounts.
After five years of legal back-and-forth, Apple has agreed to settle the Siri privacy suit brought by California device users that found the voice assistant unexpectedly listening in on their daily lives.
The Cambridge Analytica scandal of 2018 is still not quite out of the news yet, as investigations around the world continue to wrap up. Australia's Information Commissioner has agreed to a $50 million AUD privacy settlement over the violations.
The state-sponsored hackers stole unclassified documents during the raid, but little else is known about what they accessed. The attackers appear to have obtained the API key from a third-party vendor called BeyondTrust.