Tag Archives for " report "

Global companies lacking GDPR oversight of sub-contractors

The majority of global companies admit that they do not have appropriate oversight of third parties and sub-contractors despite the imminent implementation of new data protection regulations.

A new survey by consulting firm Deloitte revealed that 57% of global organisations admitted they did not have appropriate visibility of subcontractors engaged by their third parties, a further 21% are unsure of oversight practices, and just 2% routinely review the risk subcontractors pose to their organisation.

Source: Global companies lacking GDPR oversight of sub-contractors

NIST releases latest version of its Cybersecurity Framework

On April 16, 2018, the National Institute of Standards and Technology (NIST) unveiled Version 1.1 of its widely known Cybersecurity Framework, which incorporates changes based on feedback collected through comments, questions, and workshops held in 2016 and 2017.

The Cybersecurity Framework aims to focus on industries vital to national and economic security, including energy, banking, communications, and defense, and provides a universal structure that can be tailored to varied methods of cybersecurity by compiling effective standards, guidelines, and practices into one framework.

Source: NIST releases latest version of its Cybersecurity Framework

75% of consumers won’t buy your product if they don’t trust you to protect their data

More than three quarters of US consumers now say that a company’s ability to keep their data private is ‘extremely important,’ according to IBM.

Some 75% of consumers said they will not buy a product—no matter how great the product is—from a company if they don’t trust that company to protect their data.

Source: 75% of consumers won’t buy your product if they don’t trust you to protect their data – TechRepublic

GDPR Privacy Policy Fail: Only 34% of EU Sites Compliant

Just a third of websites in the EU and even fewer in the UK have their privacy policy in order ahead of major new legislation set to land next month.

The European General Data Protection Regulation (GDPR) represents the biggest change to the EU’s privacy laws in almost a generation.

Source: GDPR Privacy Policy Fail: Only 34% of EU Sites Compliant – Infosecurity Magazine

McAfee: 26% of companies have suffered cloud data theft

Enterprises are moving their data to the cloud, but not everybody is certain that the cloud is as secure as it could be, according to the third annual report on cloud security from cybersecurity firm McAfee. This is due in part to the fact that one in four companies has been hit with cloud data theft.

McAfee released its third annual report ahead of the RSA security conference in San Francisco this week. The survey polled 1,400 global information technology professionals in the fourth quarter.

Source: McAfee: 26% of companies have suffered cloud data theft | VentureBeat

Digital Advertising, Online Content, and Privacy

In late 2017, the Network Adwertising Initiative (NAI) was given the opportunity to apply for a pilot survey program in order to run opinion polls and market research on internet users.

With this chance to learn more about consumer opinions, we sent out a survey that obtained the responses of 10,000 U.S. consumers to find out more about what they think about online privacy, digital advertising, the ad-supported internet, and ad blocking. The survey was conducted January 29th to February 1st, 2018.

Takeaways and the survey results: Blog | NAI: Network Advertising Initiative

Healthcare Industry Worst in Stopping Insider Data Breaches

The healthcare industry is the worst when it comes to stopping insider data breaches, according to Verizon’s 2018 Data Breach Investigations Report released April 10.

The report found that the healthcare industry was the only sector that had more internal actors (56 percent) behind data breaches than external actors (43 percent).

Source: Healthcare Industry Worst in Stopping Insider Data Breaches

GDPR Pushes Up Demand For Data Privacy Officers

New numbers out Wednesday on the cost for companies to implement the European Union’s General Data Protection Requirements (GDPR) compliance vary widely, depending on the industry and the number of employees.

While 80% of companies with between 1 and 9 employees expect compliance to cost their business under $50,000, 92% of those working at an enterprise of more than 1,000 employees expect GDPR compliance to cost their business more than $50,000.

Source: GDPR Pushes Up Demand For Data Privacy Officers 04/12/2018

27% of employees fall prey to phishing attacks

According to a report from Positive Technologies, hackers continue to target the weak link in any company’s security posture: Humans.

The firm studied its 10 largest pen testing projects performed for clients in 2016 and 2017. These tests included 3,332 emails sent to employees with links to websites, password entry forms, and attachments, mimicking the work of hackers.

Source: Don’t skimp on IT security training: 27% of employees fall prey to phishing attacks – TechRepublic

1 2 3 12
>