Data collection, Government and Technology

New survey shows US adults split on COVID-19 cell phone tracking and data collection

Tech Republic Security

MAY 8, 2020

Governments and organizations are unleashing new technologies to fight the spread of the coronavirus, adding to privacy and data collection concerns.

Data collection

Data collection Government Technology

AI Governance

Centraleyes

MAY 27, 2024

What is the Centraleyes AI Governance Framework? The AI Governance assessment, created by the Analyst Team at Centraleyes, is designed to fill a critical gap for organizations that use pre-made or built-in AI tools. What are the requirements for AI Governance? The primary goals of the AI Governance assessment are threefold.

Government

Government Risk Technology Data collection

On Chinese "Spy Trains"

Schneier on Security

SEPTEMBER 26, 2019

It's also why the United States has blocked the cybersecurity company Kaspersky from selling its Russian-made antivirus products to US government agencies. Meanwhile, the chairman of China's technology giant Huawei has pointed to NSA spying disclosed by Edward Snowden as a reason to mistrust US technology companies.

Surveillance

Surveillance Wireless Government Internet

5G Security

Schneier on Security

JANUARY 14, 2020

Because the companies that make the equipment are subservient to the Chinese government, they could be forced to include backdoors in the hardware or software to give Beijing remote access. The technology will quickly become critical national infrastructure, and security problems will become life-threatening. What's more, U.S.

Data collection

Data collection Software Marketing Government

CloudSorcerer – A new APT targeting Russian government entities

SecureList

JULY 8, 2024

In May 2024, we discovered a new advanced persistent threat (APT) targeting Russian government entities that we dubbed CloudSorcerer. It’s a sophisticated cyberespionage tool used for stealth monitoring, data collection, and exfiltration via Microsoft Graph, Yandex Cloud, and Dropbox cloud infrastructure.

Government

Government Malware Data collection DNS

Cybersecurity Weekly Update – 24 February 2025

Security Boulevard

FEBRUARY 23, 2025

Home Office Contractor's Data Collection Sparks Privacy Concerns The Home Office faces scrutiny after revelations that its contractor, Equifax, collected data on British citizens while conducting financial checks on migrants applying for fee waivers.

Cybersecurity

Cybersecurity Government Data collection Encryption

Cyber Playbook: Information Technology vs Operational Technology – How to Leverage IT to Secure Your OT Systems

Herjavec Group

JANUARY 31, 2022

Information Technology (IT) primarily refers to hardware, software, and communications technologies like networking equipment and modems that are used to store, recover, transmit, manipulate, and protect data. . Operational technology has seen innovations that allowed it to become safer, more efficient, and more reliable.

Technology

Technology Cybersecurity InfoSec Software

NEW TECH: How a ‘bio digital twin’ that helps stop fatal heart attacks could revolutionize medicine

The Last Watchdog

DECEMBER 7, 2021

Without much fanfare, digital twins have established themselves as key cogs of modern technology. Related: Leveraging the full potential of data lakes. A digital twin is a virtual duplicate of a physical entity or a process — created by extrapolating data collected from live settings. This is very exciting stuff.

Engineering

Engineering Data collection Artificial Intelligence Technology

CSTA Turns 400 – Proof That Technology Integrations Is Exactly What You Are Looking For

Cisco Security

AUGUST 26, 2021

With the addition of Kenna Security into our program we now have over 250 technology partners and over 400 integrations for our mutual customers to utilize. An integration with Cigent Technology is now available for Secure Endpoint customers to integrate with. Kenna has a healthy 3rd Party ecosystem of technology partners.

Technology

Technology Firewall VPN Authentication

SHARED INTEL: VCs pumped $21.8 billion into cybersecurity in 2021 — why there’s more to come

The Last Watchdog

JUNE 13, 2022

Among them: an expanding digital footprint, growing attack surfaces, and increasing government regulation. Still, given the impact data science has had on other areas of software development, it seems likely that in the coming years one or more of these proposed solutions will yield a significant improvement in identity management systems.

Cybersecurity

Cybersecurity Artificial Intelligence Software Marketing

Supply Chain Security 101: An Expert’s View

Krebs on Security

OCTOBER 12, 2018

— had allegedly inserted hardware backdoors in technology sold to a number of American companies. Sager said he hadn’t heard anything about Supermicro specifically, but we chatted at length about the challenges of policing the technology supply chain. Below are some excerpts from our conversation. TS: Exactly.

Computers and Electronics

Computers and Electronics Internet Internet Technology

MY TAKE: Even Google CEO Sundar Pichai agrees that it is imperative to embed ethics into AI

The Last Watchdog

JULY 27, 2020

Either way, a singular piece of technology – artificial intelligence (AI) — is destined to profoundly influence which way we go from here. At the moment, there’s little to constrain corporations or government agencies from using AI however they want. based Hypergiant Industries, a supplier of AI technologies.

Surveillance

Surveillance Government Accountability Artificial Intelligence

How AI Could Write Our Laws

Schneier on Security

MARCH 14, 2023

Consider, for example, a 2013 Massachusetts bill that tried to restrict the commercial use of data collected from K-12 students using services accessed via the internet. It turns out there is a natural opening for this technology: microlegislation. Training data is available. Political scientist Amy McKay coined the term.

Energy and Utilities

Energy and Utilities Artificial Intelligence Technology Government

Canada ordered ByteDance to shut down TikTok operations in the country over security concerns

Security Affairs

NOVEMBER 6, 2024

The Canadian government ordered ByteDance to wind up TikTok Technology Canada, Inc. However, the government pointed out that Canadians can still access and use TikTok by choice, the use of a social media platform is a personal choice. s operations in Canada through the establishment of TikTok Technology Canada, Inc.

Government

Government Mobile Media Technology

Norway suspends its COVID-19 contact tracing app due to privacy concerns

Security Affairs

JUNE 16, 2020

Contact tracing technologies played an essential role in the containment of the pandemic in several countries, including South Korea, Singapore, Israel, and other nations. Datatilsynet is a Norwegian Government agency responsible for managing the Personal Data Act of 2000, concerning privacy concerns.

Data collection

Data collection Advertising Government Technology

DCAP Systems: Protecting Your Data with Advanced Technology

SecureWorld News

APRIL 30, 2023

DCAP incorporates the Data Access Governance ( DAG ) approach, aimed at controlling and managing access to unstructured data, along with additional tools for classifying the data and analyzing user actions. Data access control raises many questions not only among users but sometimes also among security professionals.

Technology

Technology Unstructured Data Data breaches Information Security

MY TAKE: ‘Network Detection and Response’ emerges as an Internet of Things security stopgap

The Last Watchdog

APRIL 9, 2020

Data collected by IoT devices will increasingly get ingested into cloud-centric networks where it will get crunched by virtual servers. And industry groups and government regulators are stepping up efforts to incentivize IoT device makers to embed security at the device level. There’s no stopping the Internet of Things now.

Internet

Internet Internet IoT Technology

North Korean APT group Kimsuky allegedly hacked South Korea’s atomic research agency KAERI

Security Affairs

JUNE 19, 2021

The security breach took place on on May 14, and the institute discovered it only on May 31, then the research institute reported the incident to the government and launched an investigation. Early this month, researchers from Malwarebytes published a report on the Kimsuky APT’s operations aimed at South Korean government.

Hacking

Hacking VPN Internet Internet

Privacy Roundup: Week 11 of Year 2025

Security Boulevard

MARCH 17, 2025

Surveillance Tech in the News This section covers surveillance technology and methods in the news. Of course, personalized in this context means leveraging extensive amounts of data collected on people. More information on what sites this tool can pull from can be found on a Google Docs spreadsheet uploaded by 404media.

Surveillance

Surveillance Data breaches Spyware Malware

Happy 13th Birthday, KrebsOnSecurity!

Krebs on Security

DECEMBER 29, 2022

Internal Revenue Service website for months: Anyone seeking to create an account to view their tax records online would soon be required to provide biometric data to a private company in Virginia — ID.me. Super Bowl Sunday watchers are treated to no fewer than a half-dozen commercials for cryptocurrency investing.

Cryptocurrency

Cryptocurrency Cybercrime Computers and Electronics Scams

The Role of Differential Privacy in Protecting Sensitive Information in the Era of Artificial Intelligence

Security Affairs

MARCH 7, 2025

This article uses differential privacy in healthcare, finance, and government data analytics to explore the mathematical foundation, implementation strategies, and real-world applications of differential privacy. According to Erlingsson (2014), Google’s RAPPOR system collects user data while maintaining anonymity.

Artificial Intelligence

Artificial Intelligence Healthcare Data privacy Banking

China Data Security Law bars online companies with 1 million users

CyberSecurity Insiders

JANUARY 4, 2022

In simple words, online companies that have over one million users should go through a data processing activity taken up by Cyberspace Administration of China where it needs to submit details on how it collects, stores, uses, processes, transmits and discloses data to other governments when the need arises.

Data collection

Data collection Government Advertising Network Security

Masterclass in CIAM for Insurance: Balancing Security, Experience, and Consent

IT Security Guru

AUGUST 7, 2024

The insurance industry is experiencing a significant transformation fuelled by the ubiquity of digital technologies. These regulations stress the fair treatment of customers, transparent sales practices, robust governance and consent. In addition, the burden on IT is reduced through centralised and automated user management processes.

Insurance

Insurance Data collection Authentication Technology

SOC Technology Failures?—?Do They Matter?

Security Boulevard

DECEMBER 10, 2021

SOC Technology Failures?—?Do Most failed Security Operations Centers (SOCs) that I’ve seen have not failed due to a technology failure. Let’s stick to mostly technology focused failures. An astute reader will notice that in the list below, some of the purported technology failures are really process failures in disguise.

Technology

Technology CISO Data collection Threat Detection

Privacy predictions 2022

SecureList

NOVEMBER 23, 2021

Global connectivity underpins the most basic functions of our society, such as logistics, government services and banking. Governments in many countries push for easier identification of Internet users to fight cybercrime, as well as “traditional” crime coordinated online.

Government

Government Internet Internet Technology

GUEST ESSAY: 5 security steps all companies should adopt from the Intelligence Community

The Last Watchdog

DECEMBER 6, 2018

Businesses at large would do well to model their data collection and security processes after what the IC refers to as the “intelligence cycle.” This cycle takes a holistic approach to detecting and deterring external threats and enforcing best-of-class data governance procedures. infrastructure from cyber attacks.

Financial Services

Financial Services Data collection Manufacturing Cyber Attacks

MY TAKE: SMBs can do much more to repel ransomware, dilute disinformation campaigns

The Last Watchdog

SEPTEMBER 20, 2019

Local government agencies remain acutely exposed to being hacked. However, at this moment in history, two particularly worrisome types of cyber attacks are cycling up and hitting local government entities hard: ransomware sieges and election tampering. That’s long been true.

Ransomware

Ransomware Government Firewall Cyber Insurance

A Privacy Threat Model for The People of Seattle

Adam Shostack

JANUARY 2, 2025

Usually I threat model specific systems or technologies where the answers are more crisp. What data is collected, how, and by whom? Those who want to run a 'welcoming city' and those who distrust government data collection can all ask how Seattle's new privacy program will help us.

Data collection

Data collection Internet Internet Government

China-linked hackers target telcos to steal 5G secrets

Security Affairs

MARCH 17, 2021

Chinese-language threat actors are targeting telecom companies, as part of a cyber espionage campaign tracked as ‘Operation Diànxùn,’ to steal sensitive data and trade secrets tied to 5G technology. Hackers behind these campaigns are targering people working in the telecom industry.

Malware

Malware Data collection Technology Phishing

2024 Cybersecurity Laws & Regulations

eSecurity Planet

SEPTEMBER 21, 2024

The landscape of cybersecurity laws and regulations today is set to undergo significant changes, impacting businesses, government entities, and individuals alike. CISA encourages organizations to exchange information about cyber threats, vulnerabilities, and incidents to improve collective cybersecurity.

Cybersecurity

Cybersecurity Computers and Electronics Cyber threats Healthcare

TikTok faces ban in US unless it parts ways with Chinese owner ByteDance

Malwarebytes

MARCH 14, 2024

Since 2020, several governments and organizations have banned, or considered banning, TikTok from their staff’s devices, but a complete ban of an internet app would be a first in the US. For example, TikTok has repeatedly claimed the Chinese government never demanded access to US data and that TikTok would not comply if it did.

Identity Theft

Identity Theft Government Media Data collection

NIST Report Highlights Rising Tide of Threats Facing AI Systems

SecureWorld News

JANUARY 17, 2024

Artificial intelligence (AI) promises to transform major sectors like healthcare, transportation, finance, and government over the coming years. National Institute of Standards and Technology (NIST). Continuous risk assessment and governance throughout the AI system lifecycle remains essential.

Artificial Intelligence

Artificial Intelligence Data collection Architecture Healthcare

Europe Makes First Move Toward Regulating AI with EU AI Act

SecureWorld News

JUNE 16, 2023

The EU is attempting to provide guardrails on a technology that is still not well understood but does present a lot of concerns from a legal perspective," said Jordan Fischer, cyber attorney and partner at Constangy, who recently moderated a panel discussion on "The Future of Privacy and Cyber: AI, Quantum and Mind Readers" at SecureWorld Chicago.

Artificial Intelligence

Artificial Intelligence Technology CISO Government

Key Aspects of Data Access Governance in Compliance and Auditing

Centraleyes

MAY 23, 2024

What is Data Access Governance? 80% of digital organizations will fail because they don’t take a modern approach to data governance. Gartner) Data is widely recognized as the most valuable business asset. Data access governance is a subset of data governance.

Government

Government Backups Accountability Data privacy

Threat Report Portugal: Q4 2020

Security Affairs

JANUARY 26, 2021

The Threat Report Portugal: Q4 2020 compiles data collected on the malicious campaigns that occurred from October to December, Q4, of 2020. Next, was Retail and Technology, as the most sectors affected in this season. The submissions were classified as either phishing or malware.

Threat Reports

Threat Reports Phishing Malware Banking

China setting up data traps says UK

CyberSecurity Insiders

DECEMBER 1, 2021

UK’s top intelligence agency MI6 has made an astonishing revelation yesterday, saying that the Chinese intelligence has set up data and dept traps to conquer the entire world by conducting espionage and indulging in extortion tactics later. The post China setting up data traps says UK appeared first on Cybersecurity Insiders.

Artificial Intelligence

Artificial Intelligence Data collection IoT Cyber Attacks

Human-AI Teaming in the Age of Collaborative Intelligence

SecureWorld News

NOVEMBER 26, 2024

With advancements in AI technologies like large language models (LLMs), mixed-reality systems, and multi-modal generative frameworks, the boundary between human and machine capabilities is increasingly blurred. Human-AI teaming redefines problem-solving by blending computational power with human intuition and creativity.

Government

Government Artificial Intelligence Healthcare Energy and Utilities

A chink in the armor of China-based hacking group Nickel

Malwarebytes

DECEMBER 7, 2021

Nickel’s techniques vary, but in the end the group’s activity has only one objective, namely to implant stealthy malware for getting into networks, stealing data, and spying on government agencies, think tanks, and human rights organizations. A long list of IOCs can be found at the end of this write-up about Nickel by MSTIC.

Hacking

Hacking Malware Surveillance Data collection

Left of SIEM? Right of SIEM? Get It Right!

Security Boulevard

JANUARY 12, 2022

In my opinion, this approach will help make your SIEM operation more effective and will help you avoid some still-not-dead misconceptions about this technology. Mostly data collection. Data collection sounds conceptually simple, but operationally it is still very difficult for many organizations. LEFT OF SIEM.

Data collection

Data collection Architecture Software Media

BORN Ontario data breach impacted 3.4 million newborns and pregnancy care patients

Security Affairs

SEPTEMBER 26, 2023

The Better Outcomes Registry & Network (BORN) is a program and database used in the healthcare sector, particularly in maternal and child health, to collect, manage, and analyze health information for the purpose of improving patient outcomes and healthcare services. million people.

Data breaches

Data breaches Healthcare Ransomware Hacking

Views from California: An Update on Privacy Litigation and Regulatory Enforcement

SecureWorld News

JULY 10, 2024

Specifically, the settlement required that Tilting Point Media pay $500,000 in civil penalties, along with an expansive list of injunctive relief requiring the app developer to take affirmative steps to ensure it properly discloses its data collection, and, more importantly, obtains proper consent—including parental consent when required.

Data collection

Data collection Computers and Electronics Internet Internet

Microsoft AI “Recall” feature records everything, secures far less

Malwarebytes

MAY 22, 2024

On Monday, the computing giant unveiled a new line of PCs that integrate Artificial Intelligence (AI) technology to promise faster speeds, enhanced productivity, and a powerful data collection and search tool that screenshots a device’s activity—including password entry—every few seconds.

Artificial Intelligence

Artificial Intelligence Passwords Accountability Media

Addressing the Unique Obstacles in Healthcare Through Policy-Based Access Control

CyberSecurity Insiders

OCTOBER 19, 2022

In particular, the need for smart technology that manages who can access what and when is at high demand within the healthcare industry. Data’s Lifetime Impact. The impact of valuable data isn’t lost on healthcare organizations, but the challenge they face is how to use data for future use.

Healthcare

Healthcare Data collection Data privacy Technology

Microsoft disrupts China-based hacking group Nickel

Malwarebytes

DECEMBER 7, 2021

Nickel’s techniques vary, but in the end the group’s activity has only one objective, namely to implant stealthy malware for getting into networks, stealing data, and spying on government agencies, think tanks, and human rights organizations. A long list of IOCs can be found at the end of this write-up about Nickel by MSTIC.

Hacking

Hacking Malware Surveillance Data collection

New survey shows US adults split on COVID-19 cell phone tracking and data collection

AI Governance

Trending Sources

On Chinese "Spy Trains"

5G Security

CloudSorcerer – A new APT targeting Russian government entities

Cybersecurity Weekly Update – 24 February 2025

Cyber Playbook: Information Technology vs Operational Technology – How to Leverage IT to Secure Your OT Systems

NEW TECH: How a ‘bio digital twin’ that helps stop fatal heart attacks could revolutionize medicine

CSTA Turns 400 – Proof That Technology Integrations Is Exactly What You Are Looking For

SHARED INTEL: VCs pumped $21.8 billion into cybersecurity in 2021 — why there’s more to come

Supply Chain Security 101: An Expert’s View

MY TAKE: Even Google CEO Sundar Pichai agrees that it is imperative to embed ethics into AI

How AI Could Write Our Laws

Canada ordered ByteDance to shut down TikTok operations in the country over security concerns

Norway suspends its COVID-19 contact tracing app due to privacy concerns

DCAP Systems: Protecting Your Data with Advanced Technology

MY TAKE: ‘Network Detection and Response’ emerges as an Internet of Things security stopgap

North Korean APT group Kimsuky allegedly hacked South Korea’s atomic research agency KAERI

Privacy Roundup: Week 11 of Year 2025

Happy 13th Birthday, KrebsOnSecurity!

The Role of Differential Privacy in Protecting Sensitive Information in the Era of Artificial Intelligence

China Data Security Law bars online companies with 1 million users

Masterclass in CIAM for Insurance: Balancing Security, Experience, and Consent

SOC Technology Failures?—?Do They Matter?

Privacy predictions 2022

GUEST ESSAY: 5 security steps all companies should adopt from the Intelligence Community

MY TAKE: SMBs can do much more to repel ransomware, dilute disinformation campaigns

A Privacy Threat Model for The People of Seattle

China-linked hackers target telcos to steal 5G secrets

2024 Cybersecurity Laws & Regulations

TikTok faces ban in US unless it parts ways with Chinese owner ByteDance

NIST Report Highlights Rising Tide of Threats Facing AI Systems

Europe Makes First Move Toward Regulating AI with EU AI Act

Key Aspects of Data Access Governance in Compliance and Auditing

Threat Report Portugal: Q4 2020

China setting up data traps says UK

Human-AI Teaming in the Age of Collaborative Intelligence

A chink in the armor of China-based hacking group Nickel

Left of SIEM? Right of SIEM? Get It Right!

BORN Ontario data breach impacted 3.4 million newborns and pregnancy care patients

Views from California: An Update on Privacy Litigation and Regulatory Enforcement

Microsoft AI “Recall” feature records everything, secures far less

Addressing the Unique Obstacles in Healthcare Through Policy-Based Access Control

Microsoft disrupts China-based hacking group Nickel

Stay Connected