fbpx

Free tools and resources for Data Protection Officers!

Tag Archives for " report "

Employees are almost as dangerous to business security as hackers and cybercriminals

Non-malicious insiders are among the top three threat actors, according to an ISACA report. Employee mistakes and system errors are a larger threat to data security than hackers or insiders, one report found, while 75% of IT professionals say they are vulnerable to insider threats, another survey said.

Top three threat actors to businesses:

  1. Cybercriminals (32%)
  2. Hackers (23%)
  3. Non-malicious insiders (15%)

Source: Employees are almost as dangerous to business security as hackers and cybercriminals

ENISA publishes report on Industry 4.0 Cybersecurity

The EU Agency for Cybersecurity ENISA is stepping up its efforts to foster cybersecurity for Industry 4.0 by publishing a new paper on ‘Challenges and Recommendations for Industry 4.0 Cybersecurity’.

ENISA lists high-level recommendations in order to facilitate the promotion and wider take-up of Industry 4.0 and relevant innovations in a secure manner. The recommendations are addressed to different key stakeholders groups.

Full report: Industry 4.0 – Cybersecurity Challenges and Recommendations

 

GDPR: Europe Counts 65,000 Data Breach Notifications So Far

European privacy authorities have received nearly 65,000 data breach notifications since the EU’s General Data Protection Regulation went into full effect in May 2018.

In addition, regulators in 11 European countries have imposed almost €56 million in General Data Protection Regulation fines. Though biggest part of it comes from Google €50 million GDPR fine.

Source: GDPR: Europe Counts 65,000 Data Breach Notifications So Far

Companies’ Stock Value Dropped 7.5% after Data Breaches

After analyzing the top three breaches from the past three years, Bitglass found that in the aftermath of a data breach, a decrease in stock price was a notable repercussion identifiable for publicly traded companies.

Research also showed that these breaches have cost an average of $347 million in legal fees, penalties and remediation costs. “Marriott uncovered the breach while seeking GDPR compliance; the company is now being fined $912 million under the regulation,” the report said.

Source: Companies’ Stock Value Dropped 7.5% after Data Breaches – Infosecurity Magazine

An estimated 500K organizations have registered DPOs across Europe

As the EU General Data Protection Regulation approaches its first birthday, hundreds of thousands of privacy professionals have jobs tied to the milestone.

New IAPP research indicates that an estimated 500,000 organizations have registered data protection officers across Europe under the GDPR.

Full article: Study: An estimated 500K organizations have registered DPOs across Europe

Benchmarking Data on the First Anniversary of the GDPR

Organizations should already have most of the basic structures for compliance with GDPR in place – the ability to respond to data subject access requests, the extensive mapping and tracking of data that is processed, etc.

But how are organizations responding to data breaches when they occur? And how are they making some of the critical determinations around if they need to provide notification, to whom, and when?

Full article: Benchmarking Data on the First Anniversary of the GDPR

61% of IT professionals have experienced a serious data breach

McAfee revealed in its Grand Theft Data II – The Drivers and Shifting State of Data Breaches, that IT security professionals are struggling to secure their organisation despite improvements.

The report revealed that 61% of IT professionals have experienced at least one data breach at their current company and 48% at a previous company.

Source: 61% of IT professionals have experienced a serious data breach, research reveals

Reported data breach numbers increase by 56% for early January

A recently-published study shows that the number of reported data breaches for the first three months of 2019 was up by 56.4% in comparison with the same time frame in 2018.

The research comes from the new Data Breach Report issued by security analytics firm, Risk Based Security.

Source: Reported data breach numbers increase by 56% for early January

CNIL releases its 2018 annual report and announces its next challenges for 2019

On April 15 2019, the French Data Protection Authority (the “CNIL”) released its 2018 Annual Report.

In 2018 the CNIL:

  • received more than 11,000 data subjects’ complaints, which represents an increase of 32% as compared to 2017.
  • sought to provide professionals with guidelines and documentation and took into account the need for legal certainty in a context of increased sanctions and the demand for greater simplification for smaller businesses.
  • conducted 204 on-site inspections (including 20 on-site inspections of CCTV devices); 51 online inspections; 51 controls on a document production basis, and 4 hearings.
  • of the 310 controls carried out, only 11 sanctions were adopted by the Restricted Committee.

Source: CNIL releases its 2018 annual report and announces its next challenges for 2019 – Privacy, Security and Information Law Fieldfisher

Belgian Data Protection Authority Releases 2018 Annual Activity Report

On April 25, 2019, the Belgian Data Protection Authority (the “Belgian DPA”) published its Annual Activity Report for 2018 (the “Annual Report”), highlighting the main developments and accomplishments of the past year. New Authority On May 25, 2018, the Belgian Privacy Commission became the Belgian DPA.

Full article: Belgian Data Protection Authority Releases 2018 Annual Activity Report

>