Security Experts:
LATEST SECURITY NEWS HEADLINES
NEWS & INDUSTRY UPDATES
A man convicted of murder 37 years ago has the right to be forgotten and have his name removed from online search results, Germany's highest court ruled. [Read More]
U.S. communications regulators have cut off government funding for Chinese companies Huawei and ZTE, citing security threats. [Read More]
A US congressional committee on Monday asked for a briefing on a Google project to modernize healthcare while giving the internet titan access to millions of people's medical data. [Read More]
Backend operation services provider InfoTrax Systems has reached a settlement with the FTC over a data breach discovered in 2016. [Read More]
Canada's spy agencies are divided over whether or not to ban Chinese technology giant Huawei from fifth generation (5G) networks over security concerns. [Read More]
Google on Tuesday defended a project aimed at modernizing healthcare while giving it access to medical data of millions of people. [Read More]
All companies subject to PCI DSS security requirements are audited once per year, yet many of these companies continue to be breached. [Read More]
California's attorney general accuses Facebook of failing to provide a slew of information subpoenaed in a probe of its privacy practices begun last year in the wake of the Cambridge Analytica scandal. [Read More]
Leaked documents from a civil suit against Facebook show how the social network aimed to employ user data as a tool for bargaining and to manipulate competitors. [Read More]
Facebook says 100 third-party application developers continued to access user information via the Groups API even after access to the data was restricted. [Read More]
- 1 of 51
- ››
FEATURES, INSIGHTS // Compliance
Regardless of which framework you use, it’s crucial to operationalize it in the context of your organization’s unique environment and risk factors.
Failure to implement basic cybersecurity hygiene practices will leave retailers vulnerable to damage and fines during a lucrative time for their businesses.
Over time, holding people responsible will lead individuals to see how their actions impact the security of the organization and come to consider themselves responsible for the security of the company.
Big companies can say they are GFPR compliant, but odds are their current structure will never allow them to find, identify, and categorize all the data that they have collected over time.
Despite the long ramp-up towards the GDPR compliance deadline, the effects of the new regulations are still very much in infancy.
GDPR is proving disruptive for European citizens who are no longer able to interact with services from outside the EU. And the compliance costs can be significant as well. But are there legitimate concerns of overreach?
Complying with GDPR was the immediate challenge, but now there is an opportunity to capture the good work that has been done and make data protection a top of mind focus for enterprises every day.
While the upcoming GDPR compliance deadline will mark an unprecedented milestone in security, it should also serve as a crucial reminder that compliance does not equal security.
With domain name WHOIS data subject to the GDPR’s privacy requirements, the system will “go dark” until alternative preparations are made, creating a challenge for this who fight computer fraud and other criminal activity on the Internet.
Penalties for non-compliance with GDPR will be severe. For example, if your organization fails to report a data breach within 72 hours, expect a fine.
- 1 of 8
- ››
SecurityWeek Daily Briefing
- VPN Connection Hijacking Vulnerability Affects Linux, Unix Systems
- US Indicts 'Evil Corp' Hackers With Alleged Russian Intelligence Ties
- Microsoft Warns of Persistent Windows Hello for Business Orphaned Keys
- Huawei Asks Court to Throw Out US Telecom Funds Ban
- Implementing Cyber Best Practices Requires a Security-First Approach
- Cisco Talos Releases Open Source Dependency Build Automation Tool
- Moxa Addresses Industrial AP Vulnerabilities Several Months After Disclosure
- AWS Unveils New Security Services and Capabilities
- Hacker Accessed Private Reports on HackerOne
- Intel Announces Compute Lifecycle Assurance to Protect Platform Supply Chains
Copyright © 2019 Wired Business Media. All Rights Reserved. Privacy Policy