Free tools and resources for Data Protection Officers!

Category Archives for "Security"

Data breach insurance: A three-part problem

There are a few problems. The first is whether companies can insure against a court-awarded fine.

The second is whether insurance companies can accurately price the risk. The third is whether, once you’ve secured insurance, it will actually pay out.

Full article: Data breach insurance: A three-part problem

Researchers Allege ‘Systemic’ Privacy, Security Flaws in Popular IoT Devices

A new report found that a dozen connected devices are open to several security and privacy issues.

Researchers said they specifically analyzed devices’ privacy policy to understand where data is being shared; monitored traffic and communication patterns; collected full packet data for manual reviews of communications; and performed analyses of devices’ complementary Android applications.

Full article: Researchers Allege ‘Systemic’ Privacy, Security Flaws in Popular IoT Devices

Privacy Groups Claim Online Ads Can Target Abuse Victims

Complaints filed in Europe claim internet companies categorize users based on potentially sensitive browsing habits, and then use those labels to target ads.

For instance, the list of labels agreed upon by the Interactive Advertising Bureau, a trade group that establishes industry norms, includes categories like incest/abuse support, gay life, hate content, substance abuse, and AIDS/HIV.

Source: Privacy Groups Claim Online Ads Can Target Abuse Victims | WIRED

Online Threats for Businesses with Remote Employees

Remote working is finally becoming mainstream, with around 70% of people working remotely at least once per week.

This represents a huge change in the culture of global businesses, and that’s great. But it also means that companies are grappling with totally new security risks.

So, what kind of threats should you be worried about if you rely on remote working? This is literally a million dollar question for businesses across the world – and there are some hazards to take into account. Let’s deal with them one by one.

Full article: Online Threats for Businesses with Remote Employees | Prague Post

Cybersecurity in Europe is improving: Thank you GDPR?

After years of debate over whether to impose new cybersecurity regulations on companies, General Data Protection Regulation (GDPR) laws went into effect in May 2018. Already we’ve seen several data breach victims ordered to pay fines under the new rules and cookie disclosure notices are popping up on more websites than ever.

Full article: Cybersecurity in Europe is improving: Thank you GDPR?

The French doctrine of offensive cyber operations

Many countries are developing cyber capabilities, including for their military forces. Details are often secret. Public discussions are therefore always refreshing. There is a good opportunity. France just made public the elements of the offensive cyber operation doctrine.

Full article: The French doctrine of offensive cyber operations

Security is the no. 1 IT barrier to cloud and SaaS adoption

Security is the top barrier in cloud and Software as a Service (SaaS) adoption for enterprise IT infrastructures, according to a Ping Identity report released on Wednesday.

Some 43% of IT professionals surveyed said that security is the biggest obstacle for cloud adoption, and 37% said security is also the biggest barrier to SaaS adoption, said the report.

Source: Security is the no. 1 IT barrier to cloud and SaaS adoption – TechRepublic

Facebook and Google back changes to laws which break encryption

Industry groups including the representative of tech giants Facebook, Google, Twitter and Amazon, have backed several Labor amendments to the Australia’s encryption bill.

Under Labor’s plan, law enforcement agencies would require a fresh warrant before ordering tech companies to assist or build a new capability to access electronic communications and the bill’s prohibition against creating a “systemic weakness” would be strengthened.

Source: Facebook and Google back Labor changes to laws which break encryption | Technology | The Guardian

Report reveals the dangers and trends of malware through 2018

Last year, the arrival of the EU’s General Data Protection Regulation sent shockwaves through the world of data protection. Big corporates registered record-breaking data breaches, while pre-GDPR transgressions such as those committed in the Facebook/Cambridge Analytica scandal fell under heightened scrutiny of a more privacy-conscious age.

Full article: Report reveals the dangers and trends of malware through 2018

Home Affairs plays down encryption law fears and promises to help industry cover costs

The UK home affairs department has sought to allay concerns about encryption legislation rushed through parliament at the end of 2018, promising to help pay for the costs of new surveillance capabilities and to consult industry on implementation.

In January the department contacted industry participants seeking help to write guidelines for the new regime of compulsory notices to access the electronic communications of people suspected of crimes or build new capabilities to help break encryption.

Full article: Home Affairs plays down encryption law fears and promises to help industry cover costs | Australia news | The Guardian

>