Privacy organization noyb has filed a complaint about Ryanair with the Italian privacy regulator because of the facial scan that new customers must undergo. All customers who want to book a flight via the Ryanair website or app must create an account. This is a permanent account, says noyb. “This often involves combining and retaining

The Japanese crypto exchange DMM was robbed of $308 million in bitcoin earlier this year via a rogue recruiter on LinkedIn, the FBI and Japanese police report (pdf). An employee of Ginco, the company to which crypto exchange DMM had entrusted the wallet management system, was approached via LinkedIn by someone posing as a recruiter.

The American cyber agency CISA today advised to only communicate end-to-end encrypted, as well as to stop using SMS-based multi-factor authentication (MFA) and personal VPN services. The advice is contained in a document on best practices for mobile communications and is suitable for everyone, but especially for ‘highly targeted’ individuals, according to the description (pdf).

The US government’s proposals to break Google’s search monopoly will affect Firefox and other smaller, independent browsers, and will only strengthen the position of a handful of strong players, Mozilla said. The US Department of Justice recently asked a federal court to take several measures to break Google’s monopoly on the search engine market. For

The American authorities are considering a ban on the sale of routers from manufacturer TP-Link, The Wall Street Journal (WSJ) reports based on sources. TP-Link routers are said to regularly contain vulnerabilities for which the manufacturer does not release updates, according to anonymous sources quoted by the WSJ. The company would also not cooperate with

Online age verification systems are surveillance systems that threaten everyone’s privacy and anonymity, according to the American civil rights movement EFF, in response to a law recently passed in Australia that bans social media for people under the age of 16. To enforce the age ban, social media platforms must take “reasonable measures” to verify

The maker of the Kaspr extension, a paid extension for Google Chrome that allows LinkedIn users to see the contact details of profiles they visit, has illegally collected contact details on LinkedIn and other websites, French privacy regulator CNIL ruled today. The authority has fined Kaspr 240,000 euros. LinkedIn users have four options to display

An American chain of addiction clinics has leaked the data of more than 422,000 patients. This includes name, address information, telephone number, date of birth, medical file number, social security number and health insurance information that have come into the hands of attackers, American Addiction Centers said in a letter to affected patients. Treatment information

A critical path traversal vulnerability in the Fortinet Wireless Manager (FortiWLM) could allow an unauthenticated attacker to gain access to sensitive files. The impact of the vulnerability is rated 9.6 on a scale of 1 to 10. Fortinet has released security updates to fix the problem. Through the Fortinet Wireless Manager, an ‘application suite’, organizations