Security Experts:

Privacy & Compliance
long dotted

NEWS & INDUSTRY UPDATES

Hackers may have stolen information on 100 million users after breaching the systems of question-and-answer website Quora. [Read More]
Lenovo has agreed to pay $7.3 million to settle a consumer class action lawsuit related to the Superfish adware scandal from 2015 [Read More]
Several lawsuits filed against Marriott after the company disclosed a data breach impacting 500 million Starwood customers. [Read More]
Appeals court upholds the U.S. government’s ban on Kaspersky Lab software, rejecting claims that the decision is an unconstitutional legislative punishment. [Read More]
MITRE's ATT&CK framework has been used to evaluate enterprise security products from Carbon Black, CrowdStrike, CounterTack, Endgame, Microsoft, RSA and SentinelOne against a simulated attack launched by APT3 [Read More]
Facebook considered charging application makers to access data at the social network [Read More]
Seven European consumer groups filed complaints against Google with national regulators Tuesday, accusing the internet giant of covertly tracking users' movements in violation of an EU regulation on data protection [Read More]
Industry professionals comment on reports that a vulnerability in an API used by USPS exposed the data of 60 million customers [Read More]
Data breach at healthcare technology provider AccuDoc resulted in the exposure of information belonging to 2.65 million Atrium Health patients [Read More]
British MP claims Facebook knew about potentially malicious Russian activity in 2014, long before such activity becomes public, during a parliamentary hearing where international lawmakers grilled the company [Read More]

FEATURES, INSIGHTS // Privacy & Compliance

rss icon

Travis Greene's picture
GDPR is proving disruptive for European citizens who are no longer able to interact with services from outside the EU. And the compliance costs can be significant as well. But are there legitimate concerns of overreach?
Bradon Rogers's picture
Complying with GDPR was the immediate challenge, but now there is an opportunity to capture the good work that has been done and make data protection a top of mind focus for enterprises every day.
Lance Cottrell's picture
Failing to consistently use identity hiding technologies is the most common way to blow your online cover. Just one failure to use your misattribution tools can instantly connect your alias to your real identity.
Josh Lefkowitz's picture
While the upcoming GDPR compliance deadline will mark an unprecedented milestone in security, it should also serve as a crucial reminder that compliance does not equal security.
Alastair Paterson's picture
With domain name WHOIS data subject to the GDPR’s privacy requirements, the system will “go dark” until alternative preparations are made, creating a challenge for this who fight computer fraud and other criminal activity on the Internet.
Preston Hogue's picture
With each new digital industry, process or service comes a new data source that can be compiled and cross referenced, introducing new ways to see into people’s lives, activities and business operations.
Marie Hattar's picture
GDPR is an opportunity to put in place measures that strengthen the overall security and compliance posture of organizations, using GDPR's requirements as the pivot point.
Lance Cottrell's picture
Facial recognition systems are becoming cheaper, better, easier to use, and more widely deployed, while social media platforms are creating an ocean of easily identifiable faces that are widely accessible.
Ashley Arbuckle's picture
Penalties for non-compliance with GDPR will be severe. For example, if your organization fails to report a data breach within 72 hours, expect a fine.
Jalal Bouhdada's picture
Jalal Bouhdada, Founder and Principal ICS Security Consultant at Applied Risk, discusses the implications of the new EU Directive on Security of Network and Information Systems (NIS)