Data privacy and Risk - Cyber Security Informer

Why DSPM is Essential for Achieving Data Privacy in 2024

Security Affairs

OCTOBER 23, 2024

It becomes increasingly difficult to gain complete visibility or transparency that could help security and privacy teams discover sensitive data, identify its security and compliance postures, and mitigate risks. To add to the difficulty, the advent of Generative AI (GenAI) has brought unprecedented security and privacy risks.

Data privacy

Data privacy Unstructured Data Risk Data breaches

GUEST ESSAY: How ‘DPIAs” — data privacy impact assessments — can lead SMBs to compliance

The Last Watchdog

JANUARY 9, 2023

As the world becomes more digital and connected, it is no surprise that data privacy and security is a growing concern for small to medium sized businesses — SMBs. Related: GDPR sets new course for data privacy. Let’s look at some of the challenges faced by SMBs in today’s data privacy landscape.

Data privacy

Data privacy Small Business Data collection Cyber Risk

Delaware Personal Data Privacy Act (DPDPA)

Centraleyes

NOVEMBER 9, 2024

What is the Delaware Personal Data Privacy Act (DPDPA)? The Delaware Personal Data Privacy Act (DPDPA) is a state law created to protect the privacy of Delaware residents by regulating the collection, use, storage, and sharing of personal data by businesses. Who Must Comply With Delaware’s Privacy Act?

Data privacy

Data privacy Data collection Risk Accountability

23andMe's Collapse Sparks Urgent Data Privacy Reckoning

SecureWorld News

MARCH 25, 2025

The recent bankruptcy of 23andMe, a once-pioneering consumer genetics firm, is sending shockwaves through the cybersecurity and data privacy community. The real risk: corporate collapse For Casey Ellis, founder of Bugcrowd, this isn't just a security storyit's a structural vulnerability in the digital age.

Data privacy

Data privacy Data breaches Passwords Cybersecurity

Insecure Medical Devices — Illumina DNA Sequencer Illuminates Risks

Security Boulevard

JANUARY 8, 2025

The post Insecure Medical Devices Illumina DNA Sequencer Illuminates Risks appeared first on Security Boulevard. IEI-IEI, Oh: Running an obsolete OS, on obsolete hardware, configured with obsolete settings.

Risk

Risk Social Engineering Internet Internet

IBM Addresses AI, Quantum Security Risks with New Platform

Security Boulevard

OCTOBER 23, 2024

IBM is rolling out Guardian Data Security Center, a framework designed to give enterprises the tools they need to address the emerging cyberthreats that come the ongoing development of generative AI and quantum computing. The post IBM Addresses AI, Quantum Security Risks with New Platform appeared first on Security Boulevard.

Risk

Risk Data privacy Mobile Government

5 Best Practices for Data Privacy Compliance

Centraleyes

OCTOBER 28, 2024

With data breaches on the rise— over 3,200 incidents in the U.S. last year alone —businesses are increasingly under pressure to protect personal data and comply with evolving privacy regulations. Best Practices for Data Privacy Compliance Data privacy compliance tools protect sensitive information and build customer trust.

Data privacy

Data privacy Encryption Risk Data breaches

GUEST ESSAY: Rising cyber risks make business intelligence gathering more vital than ever

The Last Watchdog

JULY 5, 2022

The top reason, chosen from a proved list of ten, was ‘increased cyber security risks’, followed by the related concern, ‘new and/or increased data privacy regulations’. Context of risk. The Ukraine-Russia war is a grim example of geopolitical risk intersecting with cyber security risk. Cyber in a silo?

Cyber Risk

Cyber Risk Risk Marketing Data privacy

Understanding Cyber Threats During the Holiday Season

Security Boulevard

DECEMBER 22, 2024

Understanding Cyber Threats During the Holiday Season Understanding Cyber Threats During the Holiday Season The holiday season, while festive, presents heightened cybersecurity risks for businesses. Cybercriminals exploit increased online activity and reduced vigilance during this period.

Cyber threats

Cyber threats Data privacy Risk Cybersecurity

Increased GDPR Enforcement Highlights the Need for Data Security

Security Affairs

NOVEMBER 18, 2024

GDPR protects sensitive data like health and financial details, and its enforcement underscores the growing need for stronger data security measures. GDPR: The landscape of data privacy and protection has never been more critical. Data Privacy Framework and implementing robust data security practices.

Data privacy

Data privacy Risk Surveillance Government

GUEST ESSAY: 5 tips for ‘de-risking’ work scenarios that require accessing personal data

The Last Watchdog

JANUARY 10, 2022

It’s possible to de-risk work scenarios involving personal data by carrying out a classic risk assessment of an organization’s internal and external infrastructure. Helping ensure data privacy. It is also possible to obfuscate personal data by replacing it with unique identifiers (UID). Randomizing data.

Risk

Risk Encryption Data privacy CISO

Opportunities and risks of AI coding assistants

BH Consulting

DECEMBER 6, 2024

However, a recent joint report by Frances National Cybersecurity Agency (ANSSI) and Germanys Federal Office for Information Security (BSI) highlights crucial security and privacy considerations for organisations adopting AI coding assistants. Developers and security teams should receive specific training on the risks and safe use of AI tools.

Risk

Risk Data privacy Information Security Software

Minnesota Passes Data Privacy Law, Joining Growing State Movement

SecureWorld News

MAY 21, 2024

On May 19, 2024, Minnesota officially joined the ranks of states enacting robust data privacy protections for consumers. The Minnesota Consumer Data Privacy Act (HF 4757 / SF 4782) was approved by the state legislature and is headed to the governor's desk for expected signature into law.

Data privacy

Data privacy CISO Small Business CSO

GUEST ESSAY: Privacy risks introduced by the ‘metaverse’ — and how to combat them

The Last Watchdog

OCTOBER 10, 2022

And instead of having to combine numerous data sources (like a smartphone, laptop, and wearable device) to build a user profile, VR constitutes a one-stop shop for all of the biometric, environmental, behavioral, and demographic data an application could ever hope to harvest. The story is not entirely pessimistic, however.

Risk

Risk Data privacy Data collection Technology

Navigating the Complexities of Data Privacy: Balancing Innovation and Protection

Security Boulevard

MARCH 27, 2024

As the digital landscape expands exponentially, so do efforts to safeguard personal data, notably through regulations and other actions. The post Navigating the Complexities of Data Privacy: Balancing Innovation and Protection appeared first on Security Boulevard.

Data privacy

Data privacy Security Awareness Mobile Risk

Protecting Retailers Against Cyber Risks on Black Friday and Cyber Monday

Thales Cloud Protection & Licensing

NOVEMBER 26, 2024

Protecting Retailers Against Cyber Risks on Black Friday and Cyber Monday josh.pearson@t… Tue, 11/26/2024 - 08:01 As Black Friday and Cyber Monday loom, the stakes for retailers extend far beyond enticing deals and record sales. trillion, the risk of a data breach extends beyond immediate financial losses. trillion and $5.28

Retail

Retail Cyber Risk Risk DDOS

Upcoming Speaking Engagements

Schneier on Security

SEPTEMBER 14, 2021

I’m speaking at the Cybersecurity and Data Privacy Law Conference in Plano, Texas, USA, September 22-23, 2021. I’m speaking at the fourth annual Managing Cyber Risk from the C-Suite conference—a virtual event conducted through Webex—on October 5, 2021. I’ll be speaking at an Informa event on November 29, 2021.

Data privacy

Data privacy Cyber Risk Risk Cybersecurity

U.S. Lawmakers Push to Ban DeepSeek from Government Devices

SecureWorld News

FEBRUARY 6, 2025

The move comes amid growing concerns that DeepSeek's generative AI capabilities pose a national security risk due to its direct links to the Chinese Communist Party (CCP) and China Mobile, a Chinese government-owned entity already banned by the U.S. Federal Communications Commission (FCC) for security concerns. For the U.S. What's next?

Government

Government Artificial Intelligence Data privacy Mobile

Webinar — AI vs. AI: Harnessing AI Defenses Against AI-Powered Risks

The Hacker News

SEPTEMBER 25, 2023

On the other end of this fencing match: risk. From IP leakage and data privacy risks to the empowering of cybercriminals with AI tools, generative AI There is broad agreement that tools like ChatGPT are unleashing waves of productivity across the business, from IT, to customer experience, to engineering.

Risk

Risk Data privacy Engineering

LW ROUNDTABLE: Compliance pressures intensify as new cybersecurity standards take hold

The Last Watchdog

DECEMBER 18, 2024

This shift is expected to place significant pressure on organizations that haven’t yet developed trusted data to manage risk effectively. And industries like healthcare face persistent targeting due to their outdated systems and high-value data. Failure risks fines or supplier bans.

Cybersecurity

Cybersecurity CISO Risk Government

Top Cybersecurity Trends to Watch Out For in 2025

Centraleyes

DECEMBER 16, 2024

Tools like ChatGPT and Bard, powered by large language models, showcase how generative AI transforms business processesbut they also pose new risks. Securing these AI models and the data they generate. In a recent survey, 93% of respondents admitted to knowingly increasing their companys cybersecurity risks. The challenge?

Cybersecurity

Cybersecurity Insurance Cyber Insurance Risk

Sharing Information with AI and Understanding the Risks

ZoneAlarm

JANUARY 30, 2025

But as AI grows, so do the risks of sharing information with it. A new AI system called DeepSeek, developed in China, has raised fresh concerns about how information is … The post Sharing Information with AI and Understanding the Risks appeared first on ZoneAlarm Security Blog.

Artificial Intelligence

Artificial Intelligence Risk Data privacy

GUEST ESSAY: Addressing data leaks and other privacy, security exposures attendant to M&As

The Last Watchdog

JANUARY 27, 2022

At the same time, the acquired company needs to open access to critical systems in order to successfully transition all users and data into the acquiring company’s tech stack. So what are some of the specific security risks and challenges that organizations face and best practices to help close the cybersecurity gap in each stage?

Marketing

Marketing Data privacy Risk Accountability

Google Cloud Takes Steps to Guard Against Quantum Security Risks

Security Boulevard

FEBRUARY 24, 2025

Google Cloud is putting quantum-safe digital signatures into its Key Management Service, the latest steps int the cloud giant's plans to adopt post-quantum cryptography through its portfolio to mitigate security risks that likely will come with the arrival of fault-tolerant quantum computers.

Risk

Risk Data privacy Security Awareness Cybersecurity

Secure Communications: Relevant or a Nice to Have?

Jane Frankland

FEBRUARY 7, 2025

When data breaches escalate, cyber-attacks grow more sophisticated, nation states ramp up their digital warfare, and regulations tighten the noose, staying ahead isnt just an optionits your only line of defence. Still, the top response stood out clearlyprotecting data privacy.

Cyber Risk

Cyber Risk CISO Risk Encryption

Tile/Life360 Breach: ‘Millions’ of Users’ Data at Risk

Security Boulevard

JUNE 13, 2024

The post Tile/Life360 Breach: ‘Millions’ of Users’ Data at Risk appeared first on Security Boulevard. Location tracking service leaks PII, because—incompetence? Seems almost TOO easy.

Risk

Risk Social Engineering Data privacy Engineering

Texas scrutinizes four more car manufacturers on privacy issues

Malwarebytes

JANUARY 24, 2025

Paxton did single out a few mobile apps and warned them that they were violating Texas data privacy law. But according to the press release from the Attorney General, Allstate and other insurers used what they alleged to be covertly obtained data to justify raising Texans insurance rates.

Manufacturing

Manufacturing Insurance Data collection Data privacy

Sisense Hacked: CISA Warns Customers at Risk

Security Boulevard

APRIL 12, 2024

The post Sisense Hacked: CISA Warns Customers at Risk appeared first on Security Boulevard. A hard-coded credential catastrophe: The analytics firm kept big companies’ secrets in an insecure AWS bucket. Government says victims include the “critical infrastructure sector.”

Risk

Risk Hacking Government Digital transformation

‘Russia’ Breaches TeamViewer — ‘No Evidence’ Billions of Devices at Risk

Security Boulevard

JULY 1, 2024

The post ‘Russia’ Breaches TeamViewer — ‘No Evidence’ Billions of Devices at Risk appeared first on Security Boulevard. SolarWinds hackers strike again: Remote access service hacked—by APT29, says TeamViewer.

Risk

Risk Hacking Social Engineering Authentication

World Backup Day: A Clarion Call for Cyber Resilience

SecureWorld News

MARCH 31, 2025

To add more security, they should also be automated and encrypted to provide data privacy." Encryption and automation reduce the risk of human error and ensure consistency. Don't overlook mobile and shadow data Modern IT environments extend well beyond servers and cloud storage.

Backups

Backups Mobile Encryption CISO

Google's $32 Billion Bet on Cybersecurity: What Wiz Acquisition Means

SecureWorld News

MARCH 19, 2025

Eric Schwake, Director of Cybersecurity Strategy at Salt Security, sees both benefits and risks in the deal. However, drawbacks include diminished competition, concerns regarding vendor lock-in, and heightened data privacy issues." One of the primary tenets of Wiz is equally securing every cloud.

Cybersecurity

Cybersecurity Marketing Data privacy Government

Thales Named Overall Leader in KuppingerCole’s Leadership Compass Data Security Platforms

Thales Cloud Protection & Licensing

MARCH 25, 2025

The meteoric rise of Generative AI (GenAI) enables businesses to process data faster, and in previously unimagined ways, but it also creates a slew of new risks around data privacy, security, and potential leaks. Adding Data Risk Intelligence to the Mix However, data protection needs to be proactive and not reactive.

Unstructured Data

Unstructured Data Marketing Threat Detection Encryption

‘Perfect 10’ Apple Supply Chain Bug — Millions of Apps at Risk of CocoaPods RCE

Security Boulevard

JULY 2, 2024

The post ‘Perfect 10’ Apple Supply Chain Bug — Millions of Apps at Risk of CocoaPods RCE appeared first on Security Boulevard. Tim looks grim: 10 year old vulnerabilities in widely used dev tool include a CVSS 10.0 remote code execution bug.

Risk

Risk Social Engineering Data privacy Software

FTX Collapse Highlights the Cybersecurity Risks of Crypto

eSecurity Planet

NOVEMBER 18, 2022

Security risks for end users take the form of two discrete methods: private key theft and ice phishing attacks,” said Christian Seifert, Researcher, Forta.org. Read more about Security Compliance & Data Privacy Regulations. Another source of vulnerabilities is the design of crypto systems and smart contracts.

Risk

Risk Cybersecurity Cryptocurrency Social Engineering

Thales Named Overall Leader in KuppingerCole’s Leadership Compass Data Security Platforms

Security Boulevard

MARCH 25, 2025

The meteoric rise of Generative AI (GenAI) enables businesses to process data faster, and in previously unimagined ways, but it also creates a slew of new risks around data privacy, security, and potential leaks. Adding Data Risk Intelligence to the Mix However, data protection needs to be proactive and not reactive.

Unstructured Data

Unstructured Data Marketing Threat Detection Encryption

Top 10 Cybersecurity Trends to Expect in 2025

Hacker's King

DECEMBER 24, 2024

Quantum Computing Threats While quantum computing offers immense potential, it also poses a serious risk to traditional encryption methods. Comprehensive audits and stricter contractual agreements will become commonplace to mitigate supply chain risks. Enhanced Focus on Data Privacy Data breaches have shown no signs of slowing down.

Cybersecurity

Cybersecurity Cyber Insurance IoT Insurance

A Deep Dive into the Last Vendor Breaches of 2024: What We Learned

Responsible Cyber

NOVEMBER 23, 2024

This escalation highlights the urgent need for organizations to prioritize the security of their vendor networks and assess their associated risks meticulously. Industries most affected by these breaches include healthcare, finance, and retail, where sensitive data is routinely shared with vendors for operational efficiency.

Risk

Risk Healthcare Education Cybersecurity

Almost 10% of GenAI Prompts Include Sensitive Data: Study

Security Boulevard

JANUARY 21, 2025

of prompts entered into generative AI models like ChatGPT, Copilot, and Gemini last year included sensitive information, putting personal and corporate data at risk of being leaked. The post Almost 10% of GenAI Prompts Include Sensitive Data: Study appeared first on Security Boulevard.

Risk

Risk Cybersecurity Data privacy Security Awareness

Risks of GenAI Rising as Employees Remain Divided About its Use in the Workplace

Security Boulevard

MAY 16, 2024

One in three office workers who use GenAI admit to sharing customer info, employee details and financial data with the platforms. The post Risks of GenAI Rising as Employees Remain Divided About its Use in the Workplace appeared first on Security Boulevard. Are you worried yet?

Risk

Risk Social Engineering Artificial Intelligence Data privacy

A Strategic Approach to Building a Comprehensive Third-Party Risk Framework

Security Boulevard

DECEMBER 3, 2024

Building a third-party risk management framework (TPRM) is an ongoing process that requires commitment, resources and continuous improvement. The post A Strategic Approach to Building a Comprehensive Third-Party Risk Framework appeared first on Security Boulevard.

Risk

Risk Data privacy Cybersecurity

Best Practices Q&A: The importance of articulating how cybersecurity can be a business enabler

The Last Watchdog

APRIL 1, 2024

Related: Data privacy vs data security However, this remains a novel concept at most companies. These key capabilities fall under the four competencies of oversight, process risk management, technology risk management, and human risk management. There is also a benefit of stronger business partnerships.

Cybersecurity

Cybersecurity CISO B2B Risk

Tennessee Information Protection Act

Centraleyes

NOVEMBER 9, 2024

The Tennessee Information Protection Act (TIPA), effective July 1, 2025, is a state-level data privacy law that regulates how companies manage and protect consumers’ personal data within Tennessee. Ensure strong data security practices and manage consumer requests efficiently within specified timeframes.

Data privacy

Data privacy Advertising Risk Data breaches

EPA IG Office: ‘High-Risk’ Security Flaws in Hundreds of Water Systems

Security Boulevard

NOVEMBER 19, 2024

drinking water systems it assessed, 97 had "critical" or "high-risk" security flaws and another 211 had less dangerous vulnerabilities, risking threats from stolen data to disrupted service. The post EPA IG Office: ‘High-Risk’ Security Flaws in Hundreds of Water Systems appeared first on Security Boulevard.

Risk

Risk Cyber Attacks Data privacy Security Awareness

How to Protect Privacy and Build Secure AI Products

Security Affairs

JULY 18, 2024

Building and maintaining this trust requires rigorous testing, continuous monitoring, and transparent communication about potential risks and limitations. Developers must implement robust safeguards, while buyers should be informed about these measures to effectively mitigate risks.

Data privacy

Data privacy Technology Identity Theft Risk

Why DSPM is Essential for Achieving Data Privacy in 2024

GUEST ESSAY: How ‘DPIAs” — data privacy impact assessments — can lead SMBs to compliance

Trending Sources

Delaware Personal Data Privacy Act (DPDPA)

23andMe's Collapse Sparks Urgent Data Privacy Reckoning

Insecure Medical Devices — Illumina DNA Sequencer Illuminates Risks

IBM Addresses AI, Quantum Security Risks with New Platform

5 Best Practices for Data Privacy Compliance

GUEST ESSAY: Rising cyber risks make business intelligence gathering more vital than ever

Understanding Cyber Threats During the Holiday Season

Increased GDPR Enforcement Highlights the Need for Data Security

GUEST ESSAY: 5 tips for ‘de-risking’ work scenarios that require accessing personal data

Opportunities and risks of AI coding assistants

Minnesota Passes Data Privacy Law, Joining Growing State Movement

GUEST ESSAY: Privacy risks introduced by the ‘metaverse’ — and how to combat them

Navigating the Complexities of Data Privacy: Balancing Innovation and Protection

Protecting Retailers Against Cyber Risks on Black Friday and Cyber Monday

Upcoming Speaking Engagements

U.S. Lawmakers Push to Ban DeepSeek from Government Devices

Webinar — AI vs. AI: Harnessing AI Defenses Against AI-Powered Risks

LW ROUNDTABLE: Compliance pressures intensify as new cybersecurity standards take hold

Top Cybersecurity Trends to Watch Out For in 2025

Sharing Information with AI and Understanding the Risks

GUEST ESSAY: Addressing data leaks and other privacy, security exposures attendant to M&As

Google Cloud Takes Steps to Guard Against Quantum Security Risks

Secure Communications: Relevant or a Nice to Have?

Tile/Life360 Breach: ‘Millions’ of Users’ Data at Risk

Texas scrutinizes four more car manufacturers on privacy issues

Sisense Hacked: CISA Warns Customers at Risk

‘Russia’ Breaches TeamViewer — ‘No Evidence’ Billions of Devices at Risk

World Backup Day: A Clarion Call for Cyber Resilience

Google's $32 Billion Bet on Cybersecurity: What Wiz Acquisition Means

Thales Named Overall Leader in KuppingerCole’s Leadership Compass Data Security Platforms

‘Perfect 10’ Apple Supply Chain Bug — Millions of Apps at Risk of CocoaPods RCE

FTX Collapse Highlights the Cybersecurity Risks of Crypto

Thales Named Overall Leader in KuppingerCole’s Leadership Compass Data Security Platforms

Top 10 Cybersecurity Trends to Expect in 2025

A Deep Dive into the Last Vendor Breaches of 2024: What We Learned

Almost 10% of GenAI Prompts Include Sensitive Data: Study

Risks of GenAI Rising as Employees Remain Divided About its Use in the Workplace

A Strategic Approach to Building a Comprehensive Third-Party Risk Framework

Best Practices Q&A: The importance of articulating how cybersecurity can be a business enabler

Tennessee Information Protection Act

EPA IG Office: ‘High-Risk’ Security Flaws in Hundreds of Water Systems

How to Protect Privacy and Build Secure AI Products

Stay Connected