Swedish telecommunications provider Tele2 and local online retailer CDON have been fined by the country's data protection regulator IMY more than $1.1 million and less than $30,000, respectively, for using Google Analytics, which was found to be in violation of the European Union's General Data Protection Regulation rules, according to TechCrunch.
Google's supplementary measures for protecting European users' data sent to the U.S. were inadequate, noted the IMY, which said that the company was not able to show the effectiveness of its IP address trunctation usage.
"In its audits, IMY considers that the data transferred to the U.S. via Google's statistics tool is personal data because the data can be linked with other unique data that is transferred. The authority also concludes that the technical security measures that the companies have taken are not sufficient to ensure a level of protection that essentially corresponds to that guaranteed within the EU/EEA," said the regulator, which noted that Google Analytics was also used by Dagens Industries and Coop but no fines have been given to both companies.
Ontario's perinatal, newborn, and child registry Better Outcomes Registry & Network had sensitive data from nearly 3.4 million individuals compromised in late May as a result of the widespread MOVEit hack conducted by the Cl0p ransomware operation, reports BleepingComputer.
Major U.S. consumer product leasing firm Progressive Leasing has disclosed that some of its systems have been impacted by a cyberattack that resulted in the significant compromise of personally identifiable information belonging to its customers and other individuals, according to The Record, a news site by cybersecurity firm Recorded Future.
T-Mobile has denied being impacted by a cyberattack in April that compromised employee information after VX-Underground reported that it had been notified by threat actors of the attack, which occurred immediately after the telecommunications provider was breached in March, according to The Record, a news site by cybersecurity firm Recorded Future.