Wednesday, January 27, 2021
  • Setup menu at Appearance » Menus and assign menu to Top Bar Navigation
Advertisement
  • AI Development
    • Artificial Intelligence
    • Machine Learning
    • Neural Networks
    • Learn to Code
  • Data
    • Blockchain
    • Big Data
    • Data Science
  • IT Security
    • Internet Privacy
    • Internet Security
  • Marketing
    • Digital Marketing
    • Marketing Technology
  • Technology Companies
  • Crypto News
No Result
View All Result
NikolaNews
  • AI Development
    • Artificial Intelligence
    • Machine Learning
    • Neural Networks
    • Learn to Code
  • Data
    • Blockchain
    • Big Data
    • Data Science
  • IT Security
    • Internet Privacy
    • Internet Security
  • Marketing
    • Digital Marketing
    • Marketing Technology
  • Technology Companies
  • Crypto News
No Result
View All Result
NikolaNews
No Result
View All Result
Home Internet Security

Facebook initially considered breach not eligible for notification in Australia

March 27, 2019
in Internet Security
Facebook initially considered breach not eligible for notification in Australia
586
SHARES
3.3k
VIEWS
Share on FacebookShare on Twitter

Facebook in September revealed it was the target of a network incident that saw attackers exploit a code vulnerability, allowing them to steal access tokens that are used to keep Facebook users logged in when they switch over to a public profile view via the “View As” feature. The vulnerability comprised of three separate bugs.

Initially, Facebook overshot the number of affected users, but the 50 million figure dropped to just over 29 million in early October.

You might also like

Predictive policing is just racist 21st century cyberphrenology

10-years-old Sudo bug lets Linux users gain root-level access

F5 Networks fiscal Q1 revenue, profit beat expectations, revenue outlook higher as well

As revealed in email communications made public by the Office of the Australian Information Commissioner (OAIC) following a freedom of information (FOI) request, Facebook on October 13 had determined that data for up to 111,813 Australian users may have been accessed as a result of the incident.

However, Facebook a few days prior did not think the incident was an eligible breach under Australia’s Notifiable Data Breaches (NDB) scheme.

Under the NDB scheme, agencies and organisations in Australia that are covered by the Privacy Act are required to notify individuals whose personal information is involved in a data breach that is likely to result in “serious harm”, as soon as practicable after becoming aware of a breach.

“At this stage we do not consider the incident to be a an eligible data breach under the Australian Notifiable Data Breaches scheme, however, we will continue to keep you and users informed about the incident and any developments,” the social media giant’s legal team wrote in an email on October 1 to the OAIC.

In general terms, an eligible data breach under the Commonwealth scheme refers to the unauthorised access, loss, or disclosure of personal information that could cause serious harm to the individual whose personal information has been compromised.

Examples of a data breach include when a device containing customers’ personal information is lost or stolen, a database containing personal information is hacked, or personal information is mistakenly provided to the wrong person.

In its October 13 update to the OAIC where Facebook revealed that over 100,000 Australians may have had their data obtained, it disclosed that the full name, email address, and phone number of an estimated 47,912 Australian accounts were potentially exposed.

Further, an estimated 62,306 Australian users may have had additional information obtained, including: Username, full name, nickname, email address, phone number, gender, language spoken, relationship status, religion, hometown, current listed location, recently checked-in locations, birthday, the devices used by the user to access Facebook, education history, work history, any websites listed on the user’s profile, if the user was verified by Facebook, search queries on Facebook, and potentially the top 500 accounts the user follows.

For an estimated 1,595 further Australian users, in addition to the information potentially obtained in relation to the first two groups of users, the attackers may also have their hands on users’ timeline posts, their entire list of friends, groups they are members of, and the names of conversations in Facebook’s Messenger application.

Not sure if you need to disclose a breach? Read this: Notifiable Data Breaches scheme: Getting ready to disclose a data breach in Australia  

While discussing this incident with the OAIC, Facebook in December advised that it was the subject of another potential breach, this time affecting people who used Facebook login to share photos with third-party app developers.

“We can confirm we do not currently believe the incident meets the requirements of the notifiable data breach reporting scheme. We hope to provide further information on your enquiries shortly,” the email sent to the OAIC on December 15 reads.

A Facebook investigation revealed that 1,500 apps built by 876 developers might have been able to access the non-public photos of up to 6.8 million users.

The office led by Information and Privacy Commissioner Angelene Falk is still investigating Facebook over the Cambridge Analytica scandal that saw over 300,000 Australian users have their information misused.

The OAIC has not released any further information on any of its Facebook investigations following the release of its email communications with the social media giant.

RELATED COVERAGE

Credit: Source link

Previous Post

Machine learning is not real learning argues a new paper

Next Post

6 Key Data Science Concepts You Can Master Through Online Learning

Related Posts

Predictive policing is just racist 21st century cyberphrenology
Internet Security

Predictive policing is just racist 21st century cyberphrenology

January 27, 2021
10-years-old Sudo bug lets Linux users gain root-level access
Internet Security

10-years-old Sudo bug lets Linux users gain root-level access

January 27, 2021
F5 Networks fiscal Q1 revenue, profit beat expectations, revenue outlook higher as well
Internet Security

F5 Networks fiscal Q1 revenue, profit beat expectations, revenue outlook higher as well

January 27, 2021
Apple fixes another three iOS zero-days exploited in the wild
Internet Security

Apple fixes another three iOS zero-days exploited in the wild

January 27, 2021
Firefox support for Flash ends on January 26
Internet Security

Firefox 85 removes Flash and adds protection against supercookies

January 27, 2021
Next Post
6 Key Data Science Concepts You Can Master Through Online Learning

6 Key Data Science Concepts You Can Master Through Online Learning

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Recommended

Plasticity in Deep Learning: Dynamic Adaptations for AI Self-Driving Cars

Plasticity in Deep Learning: Dynamic Adaptations for AI Self-Driving Cars

January 6, 2019
Microsoft, Google Use Artificial Intelligence to Fight Hackers

Microsoft, Google Use Artificial Intelligence to Fight Hackers

January 6, 2019

Categories

  • Artificial Intelligence
  • Big Data
  • Blockchain
  • Crypto News
  • Data Science
  • Digital Marketing
  • Internet Privacy
  • Internet Security
  • Learn to Code
  • Machine Learning
  • Marketing Technology
  • Neural Networks
  • Technology Companies

Don't miss it

Predictive policing is just racist 21st century cyberphrenology
Internet Security

Predictive policing is just racist 21st century cyberphrenology

January 27, 2021
Apple Warns of 3 iOS Zero-Day Security Vulnerabilities Exploited in the Wild
Internet Privacy

Apple Warns of 3 iOS Zero-Day Security Vulnerabilities Exploited in the Wild

January 27, 2021
Airport Runway Foreign Object Debris (FOD) Detection System to bolster with Advancement in Sensor Technology!
Data Science

Airport Runway Foreign Object Debris (FOD) Detection System to bolster with Advancement in Sensor Technology!

January 27, 2021
New machine learning tool predicts schizophrenia
Machine Learning

New machine learning tool predicts schizophrenia

January 27, 2021
10-years-old Sudo bug lets Linux users gain root-level access
Internet Security

10-years-old Sudo bug lets Linux users gain root-level access

January 27, 2021
In the Wake of the SolarWinds Hack, Here’s How Businesses Should Respond
Internet Privacy

In the Wake of the SolarWinds Hack, Here’s How Businesses Should Respond

January 27, 2021
NikolaNews

NikolaNews.com is an online News Portal which aims to share news about blockchain, AI, Big Data, and Data Privacy and more!

What’s New Here?

  • Predictive policing is just racist 21st century cyberphrenology January 27, 2021
  • Apple Warns of 3 iOS Zero-Day Security Vulnerabilities Exploited in the Wild January 27, 2021
  • Airport Runway Foreign Object Debris (FOD) Detection System to bolster with Advancement in Sensor Technology! January 27, 2021
  • New machine learning tool predicts schizophrenia January 27, 2021

Subscribe to get more!

© 2019 NikolaNews.com - Global Tech Updates

No Result
View All Result
  • AI Development
    • Artificial Intelligence
    • Machine Learning
    • Neural Networks
    • Learn to Code
  • Data
    • Blockchain
    • Big Data
    • Data Science
  • IT Security
    • Internet Privacy
    • Internet Security
  • Marketing
    • Digital Marketing
    • Marketing Technology
  • Technology Companies
  • Crypto News

© 2019 NikolaNews.com - Global Tech Updates