fbpx

Download free GDPR compliance checklist!

Category Archives for "Security"

Over a third of US citizens have been victims of ID theft through 2019

Over one third (38%) of Americans have been victims of identity theft or data breaches in the past year, according to a survey conducted by YouGov plc on behalf of ScoreSense.

The study also found that, although the majority of Americans (77%) are concerned about these threats, less than half (48%) are taking measures to protect themselves by utilizing tools to monitor their credit or prevent ID theft.

Source: #Privacy: Over a third of US citizens have been victims of ID theft through 2019

Cybersecurity trend predictions for 2020

If there’s one thing we learnt in 2019, it’s that attacks are not only rising in numbers, but also in complexity and persistence.

Thanks to increasingly sophisticated technology, cyber security is quickly becoming a fast-evolving game of wits — one where defenders will need to dramatically step up their security game if they are to outmanoeuvre hackers at every turn.

Full article: #Privacy: Cybersecurity trend predictions for 2020

Dutch DPA fines company for not using 2FA

The Dutch Data Protection Authority imposed an order for incremental penalty payments of 150,000 euros per month with a maximum of 900,000 euros because the security level of the employer portal is not adequate.

A portal operated by UWV contains employee health data. DPA decided that because the UWV does not apply multi-factor authentication when granting access to the online employer portal, security is insufficient.

Source: AP forces UWV to better protect data with sanctions | Dutch Data Protection Authority

Interpol: Strong encryption helps online predators. Build backdoors

Multinational police agency Interpol is due to say that tech companies deploying strong encryption helps paedophiles – unless they build backdoors for police workers.

So-called “think of the children” rhetoric is a tried and trusted strategy for police workers who are determined to get their way with politicians. The agency has yet to issue the communique in question, though it is expected to be welcomed by Western governments increasingly fed up that their internal security agencies are unable to exercise China-style social control and surveillance over their populations.

Source: Interpol: Strong encryption helps online predators. Build backdoors • The Register

French government forms cybersecurity pact with major French companies

The French government signed a three-year cybersecurity pact with eight of the country’s leading companies, as major world nations step up security arrangements in the wake of recent high-profile hacking incidents.

Companies include Airbus, Dassault Aviation, Thales, Safran, Ariane group, MBDA, Naval Group and Nexter.

Source: French government forms cybersecurity pact with major French companies – Reuters

Ransomware increases 74.23% year on year

New research by Bitdefender identifies a significant rise in ransomware this year, in comparison to 2018.

In its Mid-Year Threat Landscape Report, researchers noted that since the fall of GrandCrab earlier this year, many spinoff ransomware families have filled the gap.

The top three threats facing business and consumers included coin-mining malware, commonly used in cryptojacking campaigns, exploits leveraging unpatched or previously known vulnerabilities and fireless attacks and banking trojans.

Source: #Privacy: Ransomware increases 74.23% year on year

Top 10 data security predictions for 2020

Data classification firm Titus has unveiled its “Top 10 Data Security Predictions for 2020″ – timely insights based on surveys and conversations with both public and private enterprises around the world as well as executive participation at major events.

Full article: #Privacy: Top ten data security predictions for 2020

Over 100K malicious sites using valid certificates

New research has uncovered suspicious retail look-alike domains using valid certificates.

Research conducted by Venafi, analysed suspicious domains targeting 20 major retailers in the US, UK, France, Germany and Australia. Over 100,000 lookalike domains using valid TLS certificates, to appear safe and trustworthy, were identified.

Source: #Privacy: Over 100K malicious sites using valid certificates

DNS-over-HTTPS will eventually roll out in all major browsers

All six major browser vendors have plans to support DNS-over-HTTPS (or DoH), a protocol that encrypts DNS traffic and helps improve a user’s privacy on the web.

The DoH protocol has been one of the year’s hot topics. It’s a protocol that, when deployed inside a browser, it allows the browser to hide DNS requests and responses inside regular-looking HTTPS traffic.

Source: DNS-over-HTTPS will eventually roll out in all major browsers, despite ISP opposition | ZDNet

Most organisations still misunderstand cloud security

A report based on a survey of over 700 respondents from the United States, Canada and UK, foundthat 60% of respondents misunderstand the shared responsibility model for cloud security and incorrectly believe the cloud provider is responsible for securing privileged access.

Furthermore, 68% of organisations are not employing a common security model or enforcing least privilege access to reduce risk, and the majority list security as their main challenge with cloud migrations.

Source: #Privacy: Most organisations still misunderstand cloud security, report reveals

1 2 3 106
>