News

Privacy and data protection

June 18, 2021 18 Jun'21
ICO issues guidance on facial recognition in public spaces

Information commissioner’s concern over the problematic use of facial recognition in public spaces has prompted her to publish official guidance on its deployment, while civil society calls for an outright ban
June 18, 2021 18 Jun'21
Lorca Ignite programme targets breakout cyber talent

Six of the most successful companies to have come through Lorca’s existing accelerators are being inducted into an intensive programme
June 18, 2021 18 Jun'21
Carnival Cruises hit by fourth cyber incident in a year

Latest data breach at Covid-hit cruise line comes hot on the heels of two recent ransomware attacks and a spring 2020 breach
June 17, 2021 17 Jun'21
Cyber crooks target Amazon Prime users ahead of retail bonanza

A surge in malicious domain registrations ahead of Amazon Prime Day indicates cyber criminals have set their sights on exploiting vulnerable shoppers

June 15, 2021 15 Jun'21
NHS Test and Trace picks Risk Ledger to secure supply chain

Risk Ledger’s technology promises ‘unparalleled’ visibility into NHS Test and Trace’s supply chain
June 15, 2021 15 Jun'21
Privacy pro salaries rise throughout pandemic, but at a cost

Data from the IAPP’s latest salary survey reveals some insight into how the pandemic impacted the privacy profession
June 15, 2021 15 Jun'21
The Security Interviews: How to build a government model to ‘hack for good’

Kyle Hanslovan started Huntress to give back after a career in the intelligence sector. After US authorities took action to help people hit by the Microsoft Exchange attacks, we discussed how governments can ‘hack for good’
June 15, 2021 15 Jun'21
How healthcare organisations are tapping data analytics

Healthcare providers are harnessing data analytics to improve clinical and operational outcomes even as they continue to face challenges in data aggregation and data protection
June 14, 2021 14 Jun'21
G7 commits to action on ransomware, digital privacy

The G7 urges Russia to do more to hold criminal ransomware gangs operating from within its borders to account as it commits to more action on the issue
June 11, 2021 11 Jun'21
FBI planned a sting against An0m cryptophone users over drinks with Australian investigators

Australian Federal Police and the FBI came up with the idea over drinks: build a cryptophone network with a built-in backdoor and sell it to crime gangs around the world

June 11, 2021 11 Jun'21
CMA secures commitments from Google on future of cookies

The Competition and Markets Authority is opening a consultation on commitments offered to it by Google to ensure its Privacy Sandbox proposals do not harm digital advertising markets
June 11, 2021 11 Jun'21
Australia names ‘strategic’ datacentre operators

Australia’s Digital Transformation Agency certifies Macquarie Telecom, Canberra Data Centres and Australian Data Centres as strategic operators for hosting government data
June 09, 2021 09 Jun'21
FBI arrests distributors accused of selling An0m encrypted phones to crime groups

Working with overseas law enforcement, the FBI has arrested eight people and named a further 13 accused of distributing An0m phones to organised crime groups
June 08, 2021 08 Jun'21
NHS Digital delays data collection plans until September

NHS Digital has postponed its proposed collection of GP data for two months, to allow more time for the public to understand the process and opt out if wanted
June 08, 2021 08 Jun'21
National data guardian calls for dialogue on NHS Digital GP plans

The UK’s national data guardian says it is important the public has clarity on how their confidential medical information will be used and kept secure under NHS data-sharing plans
June 07, 2021 07 Jun'21
Police raids around world after investigators crack An0m cryptophone app in major hacking operation

Police in 16 countries carried out raids on after Australian Police and the FBI cracked an encrypted An0M communications network used by crime groups
June 07, 2021 07 Jun'21
EU privacy chief investigates use of US cloud services

Use of Amazon and Microsoft’s cloud services by public sector bodies in the European Union is being scrutinised by the bloc’s privacy watchdog
June 07, 2021 07 Jun'21
NCSC updates schools ransomware guidance amid surge

The National Cyber Security Centre says it is dealing with a renewed surge of ransomware attacks targeting schools, colleges and universities
June 07, 2021 07 Jun'21
Campaigners plan legal action over NHS data sharing

Privacy coalition aims to force NHS Digital to push back its plans to scrape medical information on millions of patients into a central database
June 07, 2021 07 Jun'21
Updated standard contractual clauses will provide ‘legal certainty’ for transfer of data

Organisations have 18 months to update data transfer agreements, known as standard contractual clauses, or SCCs, to continue sharing data outside the European Union
June 04, 2021 04 Jun'21
BCS: Lack of communication over NHS GPDPR ‘astonishing’

The Chartered Institute for IT has warned that millions of people are not being properly informed of NHS Digital plans to harvest their data
June 04, 2021 04 Jun'21
Secrecy around EncroChat cryptophone hack breaches French constitution, court hears

French lawyers claim that investigators are unlawfully withholding details of a cryptophone hacking operation in a case that could impact UK prosecutions
June 04, 2021 04 Jun'21
Government action on ransomware epidemic gathers pace

The US government steps up action against ransomware operators, while the UK’s NCSC publishes guidance on preparing to deal with a ransomware attack
June 03, 2021 03 Jun'21
Norway’s auditor general lifts lid on energy industry’s cyber security risks

Auditor General’s Office questions the security posture of Norway’s energy industry
June 03, 2021 03 Jun'21
Tories fined over email data protection breaches

The Conservative Party broke the law by failing to properly keep records of who had unsubscribed from its mailing list
June 03, 2021 03 Jun'21
FireEye sold to private equity, Mandiant regains independence

FireEye has agreed to sell its products business and name to a private equity consortium, while Mandiant will spin out as an independent threat intel business
June 01, 2021 01 Jun'21
Exagrid pays $2.6m to Conti ransomware attackers

Backup appliance specialist hit by Conti ransomware in May with cyber criminals downloading employee and customer data, confidential contracts and source code
May 28, 2021 28 May'21
Privacy experts concerned over NHS data collection plans

Security and data privacy experts warn NHS Digital that its data collection plans could increase risk and cause a public backlash
May 27, 2021 27 May'21
Loss of 150,000 police records made worse by management failures

The loss of 150,000 records from a number of national policing systems was caused by a human coding error, but made worse by process and management failures
May 27, 2021 27 May'21
NGOs file complaints against Clearview AI in five countries

Privacy and human rights organisations have asked data protection regulators in the UK, France, Austria, Italy and Greece to investigate controversial facial recognition company Clearview AI
May 26, 2021 26 May'21
More data stolen in January 2021 than in all of 2017, says report

The volume of data being stolen through breaches is growing steadily and shows no sign of slowing, according to a report from Imperva
May 26, 2021 26 May'21
Millions of pounds lost to crypto fraud on social media

More than £63m has been lost nationally by victims of investment fraud via a social media platform, says Action Fraud
May 25, 2021 25 May'21
GCHQ bulk interception programme breached privacy rights, Strasbourg court rules

European Court of Human Rights finds that the UK’s bulk surveillance programme breached citizens’ privacy rights
May 25, 2021 25 May'21
CyberSprinters game gives kids a head start, says NCSC

An online game for primary schools, clubs and youth organisations will teach children aged seven to 11 the fundamentals of staying safe online
May 25, 2021 25 May'21
Threat of group GDPR legal action haunts CISOs

The vast majority of security leaders questioned for a new report say they are concerned about the possibility of group legal settlements against them following a serious data breach
May 25, 2021 25 May'21
Industry reflects on three years of GDPR

Looking back on 12 tumultuous months, we assess how GDPR has weathered the effects of the Covid-19 pandemic and Brexit, and consider what the coming year may hold for data protection
May 24, 2021 24 May'21
Air India is latest victim of Sita hack

Data on millions of people who flew with Air India between 2011 and 2021 appears to have been compromised in the recent Sita supply chain attack
May 24, 2021 24 May'21
Dutch researchers build security software to mimic human immune system

Software could help IT systems develop immunity to some cyber attacks in a similar way to how the body fights infection
May 24, 2021 24 May'21
MEPs urge European Commission to revise UK adequacy decisions

Members of the European Parliament are calling for the European Commission to ensure EU citizens have greater privacy rights
May 21, 2021 21 May'21
Lack of developer attention to cloud security prompts alerts

The personal data of over 100 million Android users may have been put at risk through a variety of cloud service misconfigurations
May 20, 2021 20 May'21
Pandemic tech use heightens consumer privacy fears

Report on consumer attitudes to privacy finds evidence of a “heightened sense of fear” as digital footprints expand inexorably
May 20, 2021 20 May'21
HP taps micro virtual machines in endpoint security

HP’s Wolf Security technology stack uses an endpoint security controller to run computing tasks in micro virtual machines so that any potential malware can be isolated and contained
May 20, 2021 20 May'21
UK government publishes framework on automated decision-making

The framework focuses on making the use of algorithms and automated decision-making systems within the public sector more ethical, transparent and accountable
May 19, 2021 19 May'21
Reports of stolen Irish health service data being leaked online

Leaking of deeply confidential and personal information on patient healthcare marks a new low for the criminal Conti gang
May 19, 2021 19 May'21
Barclays first bank to publish online scam refund details

All banks must be transparent about the proportion of victims of authorised push payment fraud they refund, says consumer rights organisation Which?
May 19, 2021 19 May'21
Flexxon bakes AI into SSDs to fight unknown threats

Singapore-based Flexxon has developed a solid-state drive that uses artificial intelligence to fend off malware and other unknown threats
May 18, 2021 18 May'21
Microsoft EU Data Boundary dubbed ‘smoke and mirrors’

Data protection experts claim Microsoft’s decision to create an EU Data Boundary is a tacit admission that it routinely transfers and processes the personal data of European citizens outside the bloc
May 18, 2021 18 May'21
Government response to National Data Strategy consultation depicts data as ‘asset, not threat’

Government responds to consultation with a promise of delivery, putting an emphasis on data as an asset, not a threat, and finding respondents keen on levelling up
May 18, 2021 18 May'21
Irish High Court dismisses legal bid by Facebook over EU-US data transfers

Latest twist in long-running legal battle sees Facebook lose legal bid to prevent the Irish Data Protection Commissioner suspending its transfer of data about European citizens to the US
May 18, 2021 18 May'21
Australian budget lends support to digital economy

Australia’s A$1.2bn Digital Economy Strategy ticks most of the right boxes, but some industry experts say areas such as broadband infrastructure and artificial intelligence are still underfunded