fbpx

Free tools and resources for Data Protection Officers!

Category Archives for "Security"

A New Age of Warfare: How Internet Mercenaries Do Battle for Authoritarian Governments

Sophisticated surveillance, once the domain of world powers, is increasingly available on the private market. Smaller countries are seizing on the tools — sometimes for darker purposes.

NSO, a private company based in Herzliya, Israel, has hired former government hackers to ply their trades for foreign governments.

Full article: A New Age of Warfare: How Internet Mercenaries Do Battle for Authoritarian Governments – The New York Times

Personal health information has a value on the black market

Thieves collect personal data such as home addresses and contact information, but also details of physical or mental conditions and prescribed medications. Individuals can be threatened with public exposure of their data, especially those in high-profile positions, and future health benefit claims or even border crossings could be affected.

Compromised personal health data has a much greater and lasting impact. When a credit card is stolen, card numbers are changed and charges in question are typically reimbursed. Conversely, your health record stays with you for life, leaving you more vulnerable to future problems.

Full article: Michael Green: Personal health information has a value on the black market | Vancouver Sun

Data breaches ‘major contributor’ to UK fraud

Data breaches are a “major contributor” to fraud experienced in the UK, a new report by a banking industry trade association has said.

UK Finance’s ‘fraud the facts 2019’ report said £1.2 billion was successfully stolen “through fraud and scams” in 2018. Personal data stolen from businesses was used to perpetrate much of that fraud, according to the report.

Source: Data breaches ‘major contributor’ to UK fraud

Think about privacy the next time you ask Alexa the weather

More and more people are starting to think twice before asking Alexa for the daily forecast. According to a recent PwC survey, 38 percent of participants chose not to purchase a smart device because they “don’t want something listening in on [their lives] all the time.” Additionally, 28 percent of respondents are “concerned about privacy issues with [their] data/security.”

Full article: Think about privacy the next time you ask Alexa the weather

Finland to investigate Nokia about sending data to China

Finland’s data protection ombudsman said on Thursday he would investigate whether Nokia-branded phones had breached data rules after a report said the handsets sent information to China.

Nokia-branded mobile phones are developed under licence by Finnish company HMD Global, which said no personal data had been shared with a third party although it said there had been a data software glitch with one batch of handsets that had been fixed.

Source: Finland to investigate Nokia-branded phones after data breach report | Reuters

Facebook Promises Encrypted Messaging, but You Don’t Need to Wait

Facebook Messenger may offer end-to-end encryption, eventually, but Facebook can still use the service to collect your data. And you already have other choices for secure messaging. Consumer Reports has the details.

Full article: Facebook Promises Encrypted Messaging, but You Don’t Need to Wait – Consumer Reports

Businesses are spending on cybersecurity, but failing to implement basic practices

Cybersecurity spending has increased, but research shows that organisations are still vulnerable to the most basic of cyber threats.

Just 36% of UK IT leaders are confident that their company’s current IT systems provide adequate protection against cyberattacks.

Full article: Businesses are spending on cybersecurity, but failing to implement basic cybersecurity practices | Verdict

Cybersecurity certification schemes backed by MEPs

Businesses could in future be forced to ensure their products, services or processes meet specified cybersecurity standards under proposed new EU rules that have been formally approved by the European Parliament.

According to the proposed new rules, cybersecurity standards could be mandated for certain ICT products, services and processes before the end of 2023.

Source: Cybersecurity certification schemes backed by MEPs

The cyber insurance battle begins

The cyber insurance no longer is a novelty. Experts say that executives no longer have to justify the expense. In fact, if they don’t have it, they may well have some explaining to do.

Insurance companies have reciprocated by nurturing the market. That has included playing nice when clients file claims. Carriers have paid with few complaints. There have been no big public altercations. Until now. A battle line has emerged.

Full article: Insurance War

GDPR – Improving Data Privacy and Cyber Resilience?

Even though GDPR has only been in effect for nine months, regulators across Europe have seen the number of breach notifications. Since many data protection authorities have a big backlog of data breach reports, it is not yet clear how organizations are being affected by potential GDPR fines.

2019 is likely to be the first year that GDPR’s policy enforcement will be tested on a broad scale. By implementing the core pillars of GDPR, organizations can assure they meet the mandate’s requirements while strengthening their cyber security posture.

Source: GDPR – Improving Data Privacy and Cyber Resilience? | SecurityWeek.Com

>