Tag Archives for " publication "

IAB releases Transparency & Consent Framework

IAB Europe and IAB Technology Laboratory on April 24 released the market-ready technical specifications for the Transparency & Consent Framework following a 30-day public consultation in March and April 2018.

The official release version of the standard reflects extensive feedback from publishers, agencies, and ad tech companies collected during the consultation period. As with all standards, it is expected that this standard will be iterated with new features and attributes in the future.

Source: IAB Europe and IAB Tech Lab Release Cross-Industry Transparency & Consent Framework For Adoption

Exporting the EU Privacy Regime Through Trade Instruments?

On January 31, 2018, the European Commission endorsed horizontal clauses on cross-border data flows, data protection and privacy in trade and investment agreements.

These clauses, if agreed on by EU member states, will serve as the starting point for negotiations on provisions to be included in Free Trade Agreements and Bilateral Investment Treaties between the European Union and third countries.

Source: Exporting the EU Privacy Regime Through Trade Instruments? – Publications – Mayer Brown

Ransomware reigns supreme in 2018, as phishing attacks continue to trick employees

Ransomware was the cause of 39% of malware-related data breaches, more than double that of last year, according to Verizon’s annual Data Breach Investigations Report.

This is the report’s 11th edition, analyzing more than 53,000 security incidents and 2,216 breaches from 65 countries.

Source: Ransomware reigns supreme in 2018, as phishing attacks continue to trick employees – TechRepublic

Cyber Resiliency Considerations for the Engineering of Trustworthy Secure Systems

This is the initial public draft of NIST’s newest guideline that provides a flexible systems engineering-based framework to help organizations address the Advanced Persistent Threat (APT).

Draft NIST Special Publication 800-160 Volume 2, Systems Security Engineering: Cyber Resiliency Considerations for the Engineering of Trustworthy Secure Systems, is the first in a series of specialty publications developed to support NIST Special Publication 800-160 Volume 1, the flagship Systems Security Engineering guideline.

Source: SP 800-160 Vol. 2 (DRAFT), Systems Security Engineering: Cyber Resiliency | CSRC

ESAs weigh benefits and risks of Big Data

The Joint Committee of the European Supervisory Authorities (ESAs) published today its final report on Big Data analysing its impact on consumers and financial firms.

Overall, the ESAs have found that while the development of Big Data poses some potential risks to financial services consumers, the benefits of this innovation currently outweigh these. Many of the risks identified by the ESAs are mitigated by existing legislation.

Source: ESAs weigh benefits and risks of Big Data

ENISA publishes the first comprehensive study on cyber Threat Intelligence Platforms

ENISA has released the first comprehensive study on cyber Threat Intelligence Platforms (TIPs) focused on the needs of consumers, users, developers, vendors and the security research community.

The study channels its efforts into identifying some of the key opportunities and limitations of existing platforms and solutions, since information exchange formats and tools remain central items on the agenda of the cybersecurity community in general, and particularly of incident responders.

Source: ENISA publishes the first comprehensive study on cyber Threat Intelligence Platforms — ENISA

A blueprint to help business compliance leaders realize digital transformation

Digital transformation is more than a buzzword. It is the launchpad for companies across the economy transforming their business models to capitalize on the new opportunities being unleashed by innovations rapidly transforming our world.

However, digital transformation requires more than flipping a switch as companies find themselves navigating a new world of legal risk and compliance in their journey.

Today we are pleased to share the release of a new Microsoft book, “Digital Transformation in the Cloud: What enterprise leaders and their legal and compliance advisors need to know” to act as a guide, with Microsoft’s full perspective on the challenges and concerns businesses face when embracing digital transformation.

Source: A blueprint to help business compliance leaders realize digital transformation – Microsoft on the Issues

Fourth Annual Data Security Incident Response Report Released – Building Cyber Resilience

On Monday Data Privacy Monitor published its fourth annual Data Security Incident Response Report, which provides an analysis of the more than 560 cyber incidents handled by the team in 2017.

Reflecting on the increasingly sophisticated nature of attacks, the aggressiveness by regulators in researching breaches and the expectations of highly developed responses, the report offers intelligence to help entities reduce their risk profile, build resilience, and be better prepared to respond when incidents occur.

Source: Fourth Annual Data Security Incident Response Report Released – Building Cyber Resilience

The Center for Internet Security Publishes CIS Controls Version 7

This week the Center for Internet Security (CIS) released CIS Controls Version 7 , the newest (and free) iteration of 20 very important cybersecurity recommendations that we recommend whenever we lecture. The CIS Controls are a prioritized set of actions any organization can follow to improve their cybersecurity posture.

The new controls were developed to align with current cyber threats. CIS collaborated with a global community of cybersecurity experts – leaders in academia, industry, and government – to secure input from volunteers at every level.

Source: The Center for Internet Security Publishes CIS Controls Version 7

1 2 3
>