Free tools and resources for Data Protection Officers!

Category Archives for "Security"

Your VPN could be a privacy trap

When people turn to a VPN service, they expect full-on anonymity. Particularly when the VPN service says, “we do NOT keep any logs that can identify … a user” or “we have a strict zero-logs policy.”

These days, it seems that when it comes to claims about VPN logging policy, it is mostly just marketing speak. Many VPN services actually keep logs of user activity despite making claims to the contrary — in other words, they are disguised privacy traps waiting to be triggered.

Source: Your VPN could be a privacy trap

China hacked Norway’s Visma to steal client secrets

Hackers working on behalf of Chinese intelligence breached the network of Norwegian software firm Visma to steal secrets from its clients, cyber security researchers said, in what a company executive described as a potentially catastrophic attack.

Source: China hacked Norway’s Visma to steal client secrets: investigators | Reuters

Hackers stole nearly half a billion personal records in 2018

Hackers stole nearly 447 million consumer records containing sensitive personal information last year, according to the 2018 End-of-Year Data Breach Report from the Identity Theft Resource Center.

That’s a jump of 126 percent from 2017 (when roughly 198 million sensitive records were stolen) and a new record for the number of compromised files in a single year.

Source: You’ve been breached: Hackers stole nearly half a billion personal records in 2018

Google’s new Chrome Extension checks your passwords are still secure

A new Chrome Extension from Google called Password Checkup will automatically check whether your passwords have been exposed in a data breach.

Once installed, the extension checks any login details you use — Google says “most” US sites are supported — against a database of around four billion usernames and passwords, and warns you if it finds a match.

Source: Google’s new Chrome Extension checks your passwords are still secure – The Verge

UK in top three as GDPR data breaches in EU near 60,000

More than 59,000 data breaches have been reported to regulators across Europe since GDPR came into force last May, with the UK in the top three – behind Netherlands and Germany – when it comes the most reported breaches.

Source: UK in top three as GDPR data breaches in EU near 60,000 | www.dataiq.co.uk

Even if you’re off social media, your friends could be ruining your privacy

Social networks could use friends to predict what a person would post, researchers find.

A new study from researchers at the University of Vermont and the University of Adelaide found that they could predict a person’s posts on social media with 95 percent accuracy — even if they never had an account to begin with.

Full article: Even if you’re off social media, your friends could be ruining your privacy – CNET

Dutch Data Protection Authority received record amount of data breach notifications in 2018

Dutch Data Protection Authority received record amount of data breach notifications in 2018. Earlier today, the Dutch Data Protection Authority (Autoriteit Persoonsgegevens) issued a press release stating that it received 20,881 notifications of data breaches in 2018.

In comparison to 2017, the amount of data breach notifications has (more than) doubled.

Source: NETHERLANDS: Dutch Data Protection Authority received record amount of data breach notifications in 2018. Earlier today…

Researchers Allege ‘Systemic’ Privacy, Security Flaws in Popular IoT Devices

Researchers are highlighting the insecure nature of Internet of Things devices in a report released Tuesday alleging a bevy of popular consumer connected devices sold at major retailers such as Walmart and Best Buy and are riddled with security holes and privacy issues.

In analyzing 12 different IoT devices, researchers with Dark Cubed and Pepper IoT reported security failures that ranged from a lack of encryption for data and missing encryption certificate validations.

Full article: Researchers Allege ‘Systemic’ Privacy, Security Flaws in Popular IoT Devices

GDPR Compliance Lowers Data Breach Frequency and Impact Says Report

Companies that follow the requirements of the General Data Protection Regulation (GDPR) experience extra benefits such as lower frequency and effect of data breaches, as well as fewer records being impacted in the attacks, shorter downtimes and lower overall costs.

Full article: GDPR Compliance Lowers Data Breach Frequency and Impact Says Report

>