CyberSecurity Insiders

FEBRUARY 23, 2021

million or €50 million penalty in March 2020 by the France data watchdog for failing to provide transparent information to users about its rules and regulations pertaining to data collection related to its products and services. Google was awarded $56.6

Data collection 111

Data collection Marketing Data breaches Cybersecurity 111

Security Affairs

NOVEMBER 17, 2018

link ) was posted on Pastebin , the hacker claims to have compromised user’s email and also accused ProtonMail of sending user’s decrypted data to American servers. AmFearLiathMor also wrote that ProtonMail hasn’t configured the mandatory Subresource Integrity ( SRI ) allowing tampering and data collection.

Scams 111

Scams Hacking Data collection Advertising 111

Security Affairs

MARCH 14, 2019

In the course of further research it was revealed that GMO JS Sniffer has presumably been collecting customer payment data since November 2018. Typically, after customer data is stolen, it is usually resold on underground cardshops. Group-IB’s Threat Intelligence team discovered that GMO has been active since May 2018.

eCommerce 110

eCommerce Marketing Data breaches Advertising 110

SecureWorld News

AUGUST 16, 2023

Having your personal information involved in some type of cybersecurity incident or data breach is never fun. Their findings, which spanned data collected between 2018 and 2023, revealed an intriguing reality. It's always a painful process, and it's something that seemingly happens everyday.

Cybercrime 91

Cybercrime Passwords Data collection Data breaches 91

The Last Watchdog

SEPTEMBER 11, 2019

This skills deficit has been the top worry of IT pros for several years, according to tech consultancy ESG’s annual survey of IT pros; some 53% of the organizations participating in ESG’s 2018 -2019 poll reported a “problematic shortage” of cybersecurity skills. Digital transformation has only exacerbated this security skills gap.

Big data 159

Big data Firewall Digital transformation Software 159

eSecurity Planet

OCTOBER 11, 2022

In the ever-evolving fight against data loss , data breaches, and data theft in the 21st century, organizations worldwide have turned to a number of cybersecurity solutions, services, and software in an attempt to keep their data safe and secure from threats. Why Use Behavioral Analytics in Cybersecurity?

Advertising 126

Advertising Cybersecurity DDOS Data breaches 126

Privacy and Cybersecurity Law

MARCH 23, 2018

On March 14, 2018, IBM Security announced the results of a new global study on organizational cybersecurity readiness and resiliency entitled “The 2018 Cyber Resilient Organization.” 23% of respondents say they do not currently have a CISO or security leader.

Cybersecurity 40

Cybersecurity Data breaches Artificial Intelligence IoT 40

Malwarebytes

JANUARY 16, 2024

“The attack vector included the scanning and identification of externally facing Mac services to include the Apple Filing Protocol (AFP, port 548), RDP, VNC, SSH (port 22), and Back to My Mac (BTMM), which would be targeted with weak passwords or passwords derived from 3rd party data breaches.”

Malware 107

Malware Passwords Identity Theft Data collection 107

SC Magazine

JULY 12, 2021

Jared Polis, at the time Colorado’s governor-elect, speaks at a 2018 election night rally. And so as organizations collect more sensitive data, their employees should be more attuned, and… better trained on what constitutes sensitive data…”. Governor Polis last week signed the Colorado Privacy Act into law.

Education 109

Education Security Awareness Data privacy Social Engineering 109

Troy Hunt

DECEMBER 19, 2017

Yesterday, I wrote the first part of this 5-part series on fixing data breaches and I focused on education. The next few parts of this series all focus on cures - how do we fix data breaches once bad code has already been written or bad server configurations deployed? Data Collection Should be Minimised, Not Maximisation.

Data breaches 151

Data breaches Data collection B2B Mobile 151

Spinone

JULY 3, 2020

and you interact with their data in any way – you fall under the GDPR. You can remember the massive story with Facebook’s misuse of customer information in 2018; other big players like British Airways and Marriott International have also suffered from €200 million and €99 million GDPR fines , respectively.

Data breaches 52

Data breaches Marketing Data collection Antivirus 52

Cytelligence

FEBRUARY 4, 2020

Global cyber insurance premiums are expected to grow from $4 billion in 2018 to $20 billion by 2025. As the number of network intrusions, data breaches, ransomware attacks, and similar threats continues to increase in both frequency and severity, expertise in cyber incident response becomes critical to organizations and insurance companies.,”

Penetration Testing 45

Penetration Testing Insurance Data preservation Risk 45

SC Magazine

MARCH 30, 2021

Any sanctions, watch lists and so on… I don’t need to know the underlying report and the data that comes with the background check report… Let’s say this person is divorced, and he’s got three kids, he bought a car in 2018, and he’s got a mortgage payment or a lease. Especially in the gig economy.

Risk 54

Risk Encryption Education Media 54

SecureWorld News

JANUARY 26, 2021

As part of the 2021 State of the State address, Governor Andrew Cuomo announced a comprehensive law that "will provide New Yorkers with transparency and control over their personal data and provide new privacy protections.". New York has already had laws on the books related to data security. It failed to progress in either sessions.

Data privacy 98

Data privacy Data collection Data breaches Cybersecurity 98

Krebs on Security

SEPTEMBER 9, 2019

In July, DHS’s Customs and Border Patrol (CPB) suspended all federal contracts with Perceptics , a contractor which sells license-plate scanners and other border control equipment, after data collected by the company was made available for download on the dark web.

Cybercrime 271

Cybercrime Government Data collection Internet 271

CyberSecurity Insiders

MAY 2, 2023

It amends the 2018 California Consumer Privacy Act (CCPA) introduced in response to rising consumer data privacy concerns. It has significantly impacted data collection and handling practices, giving consumers more control over how businesses handle their data. On the other hand, the CPRA relies on opt-out consent.

Data collection 52

Data collection Data breaches Password Management Data privacy 52

Responsible Cyber

NOVEMBER 26, 2024

CCPA California, USA Focuses on consumer rights, opt-out from data sales, transparency, less stringent than GDPR. PDPA Singapore Emphasizes purpose limitation, consent, breach notification to authorities, proportionate penalties. GDPR in Detail Adopted in 2018, GDPR is one of the most stringent data protection frameworks worldwide.

Data privacy 52

Data privacy Data breaches Data collection Encryption 52

Thales Cloud Protection & Licensing

AUGUST 30, 2018

On the heels of the sweeping Global Data Protection Regulation (GDPR) that took effect on May 25, 2018, the state of California moved quickly, passing its version of a consumer privacy law a month later, on June 28th. Right to DELETE your data. We’ve seen these issues around data breach notification laws.

Data breaches 54

Data breaches Data collection Data privacy Government 54

Malwarebytes

JANUARY 28, 2021

The General Data Protection Regulation is a robust set of rules for data protection created by the European Union (EU), replacing much older rules from the 1990s. It was adopted in 2016 and enforcement began in 2018. Crucially, should you get your data protection wrong somewhere along the way, big fines may follow.

Advertising 70

Advertising Data privacy Adware Spyware 70

Centraleyes

OCTOBER 10, 2024

The General Data Protection Regulation (GDPR) is a comprehensive data protection law enacted by the European Union (EU) in 2018. Its primary aim is to safeguard the personal data of EU residents and regulate how businesses and organizations process this data.

Data collection 52

Data collection Data breaches Data privacy Risk 52

Malwarebytes

JANUARY 20, 2023

Period-tracking app users scrambled to find the most secure app online , and one period-tracking app maker promised to encrypt user data so that, even if law enforcement made a request for their data, the data would be unintelligible. In August, the company confirmed a data breach that affected 5.4 million.

Data privacy 85

Data privacy Engineering Encryption Internet 85

Malwarebytes

AUGUST 4, 2023

After having taken Meta to task for various privacy violations and data breaches, Meta is now having to provide European users with a way to opt out of behavioural advertising. Two complaints from the European Center for Digital Right (NYOB) back in 2018 set the wheels in motion.

Advertising 98

Advertising Data breaches Data collection Marketing 98

Thales Cloud Protection & Licensing

JULY 11, 2019

Since the General Data Protection Regulation (GDPR) took effect on May 25th last year, data protection has become a very hot topic. On May 22, 2019, the European Commission published an infographic on compliance with and enforcement of the GDPR from May 2018 to May 2019 and it is clear that a lot of work still needs to be done.

Risk 97

Risk Encryption Accountability Government 97

Hot for Security

FEBRUARY 5, 2021

As organizations deploy new tools to fight the spread of COVID-19 – including contact tracing apps, digital monitoring, home tests and vaccine appointment booking – US Democrats have introduced a bill seeking to set strong and enforceable privacy and data security rights for health information.

Data collection 64

Data collection Insurance Data breaches Education 64