Privacy and Security - Information Management Today

Microsoft's Recall Stokes Security and Privacy Concerns

Data Breach Today

MAY 22, 2024

K ICO Announces Probe Into Microsoft Screenshot Storage Feature Microsoft's new automatic screenshot retrieval feature could enable hackers to steal sensitive information such as online banking credentials, security experts warned. data regulator will probe Recall for compliance with privacy law. Additionally, the U.K.

Privacy

Privacy Security Compliance

Experts Warn DHS Surveillance Tech Lacks Privacy Protections

Data Breach Today

DECEMBER 4, 2024

Privacy Advocates Warn of Risks from Expanding DHS Use of AI and Facial Recognition The U.S.

Privacy

Privacy Artificial Intelligence Risk Security

RSAC Fireside Chat: Jscrambler levels-up JavaScript security, slows GenAI-fueled privacy loss

The Last Watchdog

JUNE 10, 2024

Could we be on the verge of Privacy Destruction 2.0, Related: Next-level browser security That’s a question that spilled out of a thought-provoking conversation I had with Pedro Fortuna , co-founder and CTO of Jscrambler , at RSAC 2024. thanks to GenAI? For a full drill down, please give the a listen.

Privacy

Privacy Security Mining Data collection

OIG: VA Workers Hid ‘Big Data’ Project Privacy, Security Risks

Data Breach Today

JANUARY 29, 2021

Report on Canceled VA Project Offers Governance Lessons for Others The Department of Veterans Affairs’ watchdog agency alleges that two VA employees “concealed” and “mispresented” the cybersecurity and privacy risks of an ambitious "big data" project that would have analyzed 22 million veterans’ health records dating back two decades.

Big data

Big data Risk Privacy Security

Driving Responsible Innovation: How to Navigate AI Governance & Data Privacy

Speaker: Aindra Misra, Senior Manager, Product Management (Data, ML, and Cloud Infrastructure) at BILL

Join us for an insightful webinar that explores the critical intersection of data privacy and AI governance. Attendees will gain actionable insights on how to manage the complexities of privacy, compliance, and governance in AI-driven environments. 📆 October 22nd, 2024 at 9:30 AM PDT, 12:30 PM EDT, 5:30 PM BST

Data Privacy

2 State Cybersecurity, Data Privacy Laws Enacted

Data Breach Today

JULY 13, 2021

Connecticut Law Provides Security Incentives; Colorado Measure Addresses Consumers' Privacy Two states have recently taken steps to bolster cybersecurity and data privacy protections. And a new data privacy law in Colorado allows individuals to opt out of data collection.

Data Privacy

Data Privacy Privacy Cybersecurity Data collection

Big Health Data: Top Privacy, Security Considerations

Data Breach Today

JULY 13, 2022

But along with those efforts come critical privacy and security concerns, says attorney Iliana Peters of Polsinelli. Many healthcare sector entities are undertaking projects involving the collection, analysis and sharing of large volumes of health data.

Privacy

Privacy Security

GUEST ESSAY: Securely managing access controls is vital to preserving the privacy of healthcare data

The Last Watchdog

NOVEMBER 8, 2021

However, healthcare data ranks at the top of the list for needing improvements in security and privacy protections. However, M&A is a complex undertaking, and integrating and consolidating IT, cybersecurity and data privacy infrastructure only adds to the challenge. Related: Hackers relentlessly target healthcare providers.

Privacy

Privacy Access Security IoT

FTC Initiates Privacy and Data Security Rule-Making

Data Breach Today

AUGUST 11, 2022

Commission Asks for Comment on Link Between Consumer Surveillance and Lax Security U.S. No regulatory outcome is guaranteed, but today's advanced notice of proposed rule-making is a first step to new data security and privacy regulations.

Privacy

Privacy Security Data collection Cybersecurity

Recovering from a Cyber Attack

Speaker: Mike Cramer, Director of HIPAA & Data Security at The Word & Brown Companies

If your organization stores data and is connected to the Internet, it is not a matter of “if” a cyber-security incident will happen, but “when.” It takes an organizational mindset which realizes that data privacy and security is a continuous, evolving process, as opposed to a “fire-and-forget” set of steps.

Data breaches

Assessing the Privacy, Security Risks of Digital Health IT

Data Breach Today

JULY 18, 2022

A new assessment framework aims to help patients, healthcare providers and others examine the various privacy, security and other risks of digital health technologies, says Tim Andrews of the nonprofit Organization for the Review of Care and Health Applications, which co-developed the framework.

Risk

Risk Privacy Security IT

Australia Says Uber 'Interfered' With Users' Privacy

Data Breach Today

JULY 26, 2021

Uber Must Tighten Data Handling, Regulator Says Australia's data regulator has found that Uber interfered with the privacy of 1.2 Uber says it's made improvements to its systems and its internal security policies. million of its customers as a result of a 2016 global data breach.

Privacy

Privacy Data breaches Security IT

CEO of data privacy company Onerep.com founded dozens of people-search firms

Krebs on Security

MARCH 14, 2024

The data privacy company Onerep.com bills itself as a Virginia-based service for helping people remove their personal information from almost 200 people-search websites. However, an investigation into the history of onerep.com finds this company is operating out of Belarus and…

Data Privacy

Data Privacy Privacy

GUEST ESSAY: Addressing data leaks and other privacy, security exposures attendant to M&As

The Last Watchdog

JANUARY 27, 2022

Such consolidation across markets is good news for customers and vendors alike in terms of market growth and maximizing security investments. Throughout this period, the risk level of the acquirer is much higher than the acquired company, creating a major cybersecurity gap as they merge their tech stack and security tools together.

Privacy

Privacy Security Risk Marketing

Microsoft Now Promises Extra Security for AI-Driven Recall

Data Breach Today

JUNE 10, 2024

Concerns Remain Over Screenshot-Capture Feature and Microsoft's Security Practices How in the world has Microsoft's leadership managed to get the debut of its forthcoming Recall feature for Windows so wrong on the security and privacy fronts?

Security

Security Privacy IT

US Bipartisan Privacy Proposal Has Cybersecurity Mandates

Data Breach Today

JUNE 17, 2022

proposal for a national privacy law also imposes new cybersecurity regulatory mandates onto the private sector. The inclusion of a data security section in draft privacy legislation shows the Washington consensus for voluntary industry measures is wearing thin.

Privacy

Privacy Cybersecurity Security

Ticketmaster Fined $1.7 Million for Data Security Failures

Data Breach Today

NOVEMBER 16, 2020

million by Britain's privacy watchdog for its "serious failure" to comply with the EU's General Data Protection Regulation. Its failure to properly secure chatbot software led to attackers stealing at least 9.4 Following Alerts of Potential Fraud, Ticketmaster Took 9 Weeks to Spot Big Breach Ticketmaster UK has been fined $1.7

Security

Security Privacy IT

NIST Report Spotlights Cyber, Privacy Risks in Genomic Data

Data Breach Today

DECEMBER 21, 2023

A Multitude of Considerations for Entities As Use of Genomic Data Advances The explosion in applications using genomic data - from drug and vaccine development and consumer ancestry testing to law enforcement work - is heightening the need to carefully address critical privacy and security concerns around this sensitive data, government authorities (..)

Privacy

Privacy Risk Government Security

GUEST ESSAY: The key differences between ‘information privacy’ vs. ‘information security’

The Last Watchdog

JUNE 12, 2023

Information privacy and information security are two different things. Related: Tapping hidden pools of security talent Information privacy is the ability to control who (or what) can view or access information that is collected about you or your customers.

Information Security

Information Security Privacy Security Data breaches

News alert: Seventh Sense unveils a revolutionary privacy solution — face-based PKI and ‘eID’

The Last Watchdog

SEPTEMBER 10, 2024

10, 2024, CyberNewsWire — Seventh Sense , a pioneer in advanced cybersecurity solutions, announces the launch of SenseCrypt , a revolutionary new platform that sets a new standard in secure, privacy-preserving identity verification. Singapore, Sept.

Privacy

Privacy Blockchain Computer and Electronics Encryption

Why Vetting AI Vendor Security Is Critical in Healthcare

Data Breach Today

OCTOBER 23, 2024

It's crucial for healthcare sector organizations to vet their artificial intelligence tech vendors in the same robust way they scrutinize the privacy and security practices of all their other third-party suppliers, said attorney Linda Malek of the law firm Crowell & Moring.

Artificial Intelligence

Artificial Intelligence Security Privacy IT

Zoom Agrees to Settle Security Lawsuit for $85 Million

Data Breach Today

AUGUST 2, 2021

Case Stems From Concerns About 'Zoom Bombing' and Other Issues Cloud video conferencing provider Zoom has agreed to settle a consolidated class action federal lawsuit for $85 million as well as reform its security and data privacy practices.

Data Privacy

Data Privacy Security Cloud Privacy

DEEP TECH NEWS: Respecting individual rights by using ‘privacy preserving aggregate statistics’

The Last Watchdog

JANUARY 28, 2024

Scientists at NTT Research are working on an advanced type of cryptography that enables businesses to perform aggregate data analysis on user data — without infringing upon individual privacy rights. Rising data privacy regulations underscores the need for such a capability, Boyle told me. That’s just a starting point.

Privacy

Privacy Data Privacy GDPR Personal data

FTC Orders 1Health.io to Improve DNA Data Privacy, Security

Data Breach Today

JUNE 16, 2023

Agency Alleges 1Health Deceived Consumers About How It Handled Sensitive Data A consumer genetic testing company must ensure the destruction of customer saliva samples and undergo third-party evaluation of its information security program for the next two decades under a proposed consent order with the U.S. Federal Trade Commission.

Data Privacy

Data Privacy Privacy Security Information Security

New Bill Would Secure Government Contractors' Use of AI

Data Breach Today

OCTOBER 22, 2021

Co-Sponsor of Bipartisan Proposal Calls Bill 'Common-Sense Legislation' Two Senate leaders on Thursday introduced legislation that would form a working group charged with monitoring the security of AI data obtained by federal contractors.

Government

Government Security Privacy

Unscripted: 3 Security Leaders Dissect Today's Top Trends

Data Breach Today

APRIL 16, 2021

Edna Conway, Wendy Nather and Michelle Dennedy on SASE, CIAM and Supply Chain Risk No script, no filter: Just Microsoft’s Edna Conway and Cisco’s Wendy Nather gathering with privacy leader Michelle Dennedy to discuss the impact of the SolarWinds supply chain attack and to play "Buzzword Mystery Date" with SASE, CIAM and "passwordless" authentication (..)

Authentication

Authentication Security Privacy Risk

Apple Sued for Prioritizing Market Dominance Over Security

Data Breach Today

MARCH 21, 2024

Lawsuit Says Apple Stifles Innovation, Degrades Security, Suppresses Protections The U.S. Department of Justice in a lawsuit filed Thursday is accusing Apple of discarding user security and privacy protections as part of a broader effort to maintain dominance in the national smartphone market.

Marketing

Marketing Security Privacy

OneTrust's Blake Brannon on Unifying Privacy and Governance

Data Breach Today

AUGUST 9, 2022

CSO on How OneTrust's Platform Brings Privacy, Compliance and Governance Together OneTrust has put nearly $1 billion in investment to good use, helping companies address data governance, security assurance, third-party risk and more, Chief Strategy Officer Blake Brannon says.

Government

Government Privacy Compliance Risk

Emerging Security Concerns About Generative AI in Healthcare

Data Breach Today

APRIL 19, 2023

Generative AI tools such as ChatGPT will undoubtedly change the way clinicians and healthcare cybersecurity professionals work, but the use of these technologies come with security, privacy and legal concerns, says Lee Kim of the Healthcare Information Management and Systems Society.

Security

Security Privacy Cybersecurity

Wyze Security Incident Exposes Private Cameras

Data Breach Today

FEBRUARY 21, 2024

13,000 Users Received Incorrect Thumbnails; 1,504 Tapped on Them, Risking Privacy A glitch in Wyze home security cameras permitted thousands of users to catch glimpses inside strangers' homes as its cloud system came back online after an hourslong outage.

Security

Security Cloud Privacy Risk

GUEST ESSAY: The Top 5 online privacy and data security threats faced by the elderly

The Last Watchdog

JUNE 9, 2022

Phishing emails may ask for personal information like a log-in or Social Security number to authenticate your account, or they may urge you to share your credit card payment details. Scams involving the Social Security Administration aren’t new, but they’re becoming more active and dangerous. Romance Scam.

Privacy

Privacy Security Phishing Insurance

How to Protect Privacy and Build Secure AI Products

Security Affairs

JULY 18, 2024

How to protect privacy and build secure AI products? How to Protect Privacy and Build Secure AI Products AI systems are transforming technology and driving innovation across industries. However, their unpredictability raises significant concerns about data security and privacy.

Privacy

Privacy Security Data Privacy Risk

ISMG Editors: Are Frequently Used Usernames a Security Risk?

Data Breach Today

SEPTEMBER 15, 2023

Also; The 'Quantum Divide'; Global AI Regulatory Trends In the latest weekly update, four editors at ISMG discuss important cybersecurity and privacy issues, including how to keep assets secure in the quantum era, when common usernames pose a cybersecurity threat, and how to strike the right balance between regulation and innovation in AI.

Risk

Risk Security Cybersecurity Privacy

DEEP TECH NEWS: How ‘attribute-based encryption’ preserves privacy at a fined-grained level

The Last Watchdog

OCTOBER 18, 2023

Related: Monetizing data lakes Image capture devices embedded far and wide in public spaces help deter crime as well as aid first responders — but they also stir rising concerns about an individual’s right to privacy. There’s a clear path forward for ABE to improve security and help preserve privacy. Here are my takeaways.

Encryption

Encryption Privacy Cloud Access

Nord Security Raises $100M on $3B Valuation to Go After M&A

Data Breach Today

SEPTEMBER 28, 2023

The Warburg Pincus-led investment will allow the Lithuania-based internet privacy and security vendor to expand its product offering.

Security

Security Privacy IT

Can We Stop Pretending SMS Is Secure Now?

Krebs on Security

MARCH 16, 2021

SMS text messages were already the weakest link securing just about anything online, mainly because there are tens of thousands of employees at mobile stores who can be tricked or bribed into swapping control over a mobile phone number to someone else. Since that time, no carrier has been able to replicate it. ” WHAT CAN YOU DO?

Security

Security Passwords Authentication Communications

Ex-Twitter Security Honcho Peiter Zatko Faces Senate Panel

Data Breach Today

SEPTEMBER 13, 2022

Appearing on Capitol Hill, Peiter Zatko Accuses Executives of Prioritizing Profits Twitter security exec-turned-whistleblower Peiter Zatko today listed alleged security and privacy shortcomings of the social media company for a Senate panel.

Security

Security Privacy IT

Why DSPM is Essential for Achieving Data Privacy in 2024

Security Affairs

OCTOBER 23, 2024

Data Security Posture Management (DSPM) helps organizations address evolving data security and privacy requirements by protecting and managing sensitive information. To add to the difficulty, the advent of Generative AI (GenAI) has brought unprecedented security and privacy risks. What is its security posture?

Data Privacy

Data Privacy Privacy GDPR Compliance

NHS Reports COVID-19 App Success, Backed by Strong Privacy

Data Breach Today

FEBRUARY 9, 2021

Researchers: 'App is Having a Positive Effect on Reducing the Impact of the Virus' Good news in the fight to contain new COVID-19 infections: Researchers report that a digital contact-tracing app rolled out in England and Wales, and designed to keep users' data private and secure, is helping to blunt the spread of the pandemic.

Privacy

Privacy Security

Identity Thieves Bypassed Experian Security to View Credit Reports

Krebs on Security

JANUARY 9, 2023

Identity thieves have been exploiting a glaring security weakness in the website of Experian , one of the big three consumer credit reporting bureaus. All that was needed was the person’s name, address, birthday and Social Security number. states to place a security freeze on their credit files.

Security

Security Authentication Mining Cybersecurity

Maintaining Momentum in Your Security Strategy

Data Breach Today

AUGUST 1, 2022

Glen Hymers of UK Cabinet Office on Keeping Communication Relevant Cybersecurity practitioners have gained the attention of corporate boards, but that attention must be converted into momentum, says Glen Hymers, head of Data Privacy and Compliance at the U.K. Cabinet Office.

Data Privacy

Data Privacy Security Compliance Communications

The Risks Posed by Mobile Health Apps

Data Breach Today

SEPTEMBER 4, 2020

What privacy and security issues are raised by patients using smartphone apps to access health records? Attorney Helen Oscislawski and security expert Jarrett Kolthoff offer an analysis.

Risk

Risk Privacy Access Security

Zoom Stops Transferring Data by Default to Facebook

Data Breach Today

MARCH 30, 2020

Privacy Gaffe Blamed on Facebook's iOS Software Development Kit Zoom has apologized for sharing large sets of user data by default with Facebook, blaming the social network's software development kit, which it has removed from its iOS app.

Privacy

Privacy Security IT

US Agencies Increasing Use of Facial Recognition Tech

Data Breach Today

AUGUST 27, 2021

GAO Finds Increasing Use for Security and Access; Privacy Concerns Remain At least 10 U.S. The growing utilization comes as facial recognition technology raises privacy concerns. government agencies are planning to increase the use of facial recognition technologies by 2023, according to a GAO report.

Privacy

Privacy Government Access Security

Microsoft's Recall Stokes Security and Privacy Concerns

Experts Warn DHS Surveillance Tech Lacks Privacy Protections

Trending Sources

RSAC Fireside Chat: Jscrambler levels-up JavaScript security, slows GenAI-fueled privacy loss

OIG: VA Workers Hid ‘Big Data’ Project Privacy, Security Risks

Driving Responsible Innovation: How to Navigate AI Governance & Data Privacy

2 State Cybersecurity, Data Privacy Laws Enacted

Big Health Data: Top Privacy, Security Considerations

GUEST ESSAY: Securely managing access controls is vital to preserving the privacy of healthcare data

FTC Initiates Privacy and Data Security Rule-Making

Recovering from a Cyber Attack

Assessing the Privacy, Security Risks of Digital Health IT

Australia Says Uber 'Interfered' With Users' Privacy

CEO of data privacy company Onerep.com founded dozens of people-search firms

GUEST ESSAY: Addressing data leaks and other privacy, security exposures attendant to M&As

Microsoft Now Promises Extra Security for AI-Driven Recall

US Bipartisan Privacy Proposal Has Cybersecurity Mandates

Ticketmaster Fined $1.7 Million for Data Security Failures

NIST Report Spotlights Cyber, Privacy Risks in Genomic Data

GUEST ESSAY: The key differences between ‘information privacy’ vs. ‘information security’

News alert: Seventh Sense unveils a revolutionary privacy solution — face-based PKI and ‘eID’

Why Vetting AI Vendor Security Is Critical in Healthcare

Zoom Agrees to Settle Security Lawsuit for $85 Million

DEEP TECH NEWS: Respecting individual rights by using ‘privacy preserving aggregate statistics’

FTC Orders 1Health.io to Improve DNA Data Privacy, Security

New Bill Would Secure Government Contractors' Use of AI

Unscripted: 3 Security Leaders Dissect Today's Top Trends

Apple Sued for Prioritizing Market Dominance Over Security

OneTrust's Blake Brannon on Unifying Privacy and Governance

Emerging Security Concerns About Generative AI in Healthcare

Wyze Security Incident Exposes Private Cameras

GUEST ESSAY: The Top 5 online privacy and data security threats faced by the elderly

How to Protect Privacy and Build Secure AI Products

ISMG Editors: Are Frequently Used Usernames a Security Risk?

DEEP TECH NEWS: How ‘attribute-based encryption’ preserves privacy at a fined-grained level

Nord Security Raises $100M on $3B Valuation to Go After M&A

Can We Stop Pretending SMS Is Secure Now?

Ex-Twitter Security Honcho Peiter Zatko Faces Senate Panel

Why DSPM is Essential for Achieving Data Privacy in 2024

NHS Reports COVID-19 App Success, Backed by Strong Privacy

Identity Thieves Bypassed Experian Security to View Credit Reports

Maintaining Momentum in Your Security Strategy

The Risks Posed by Mobile Health Apps

Zoom Stops Transferring Data by Default to Facebook

US Agencies Increasing Use of Facial Recognition Tech

Stay Connected