Almost 1M Belgian users hit by Orange cyberattack. Regulators warn of an increase in data breaches.
by Sypher | Published in News - August 25, 2025
Welcome to #SypherPrivacyTalks — Your news and article roundup. Bringing you the top privacy & compliance stories of the week.
Almost 1M Belgian users hit by Orange cyberattack
🚨 Telecoms company Orange has reported a cyber-attack affecting 850,000 of its Belgian customers. Orange Belgium confirmed that attackers had accessed customers' names, phone numbers, SIM details, tariff plans and PUK codes. However, the company stressed that no passwords, emails or financial data had been taken..… read more
Another recent example of a data breach involves the HR company Workday.
Related US news: AT&T may pay customers up to $7,500 in $177 million data breach settlement.
Hundreds of thousands of Grok chats exposed in Google results
💬 Almost 300,000 conversations with Elon Musk’s AI chatbot, Grok, were exposed online when shared chat links became visible in Google searches, raising significant privacy concerns… read more
Romania: GDPR fine of thousands of euros for a Cluj-based accounting firm after it was hacked
💶 A Romanian accounting firm, Elite Conta SRL, was fined approximately 3,000 euros under the GDPR following a cyberattack in 2024 that exposed personal data. The company recently stated that the fine was issued over a year later, and emphasised that it does not reflect the firm's current security measures.… read more (article in Romanian)
Zero Trust + AI: Privacy in the Age of Agentic AI
thehackernews.com • 5 min read
🤖 Agentic AI, which acts autonomously on users’ behalf, raises new privacy risks concerning not only data access, but also inference, control and trust. Current legislation, such as the GDPR, is inadequate in this respect, and a new social contract is required to regulate AI as active members of society. ... read more
Decoding the NIS2 Directive: Practical guidelines from the EU Agency for Cybersecurity on NIS2 risk management and skills
📜 To help companies comply with the EU’s NIS2 Directive, ENISA has published two guides: a 170-page technical playbook on implementing security measures, and a roles framework that links legal requirements to cybersecurity job responsibilities. Together, these guides aim to translate NIS2’s broad mandates into practical, actionable steps for organisations… read more
--
Get connected with us on LinkedIn or by subscribing to our weekly newsletter. We do our best to select the most interesting and relevant content in our field and deliver it to you in a bite-sized format, so you can stay up to date on topics such as Privacy Management & Compliance.
Photo by iStock.com/Jean-Luc Ichard
