News

Privacy and data protection

• June 05, 2019 05 Jun'19

  Nearly two-thirds of businesses hit by credential abuse

  Most businesses admit to breaches relating to abuse of user credentials, according to a report that highlights cyber hygiene failings in the UK and the importance of greater visibility and integration to cyber defence capability

• June 04, 2019 04 Jun'19

  Businesses investing blindly in cyber security

  Businesses need to find out what their real cyber risks and weaknesses are before investing in new technologies, says ethical hacker

• June 04, 2019 04 Jun'19

  Deterministic data-based AI key for security

  AI-based cyber security systems have enormous potential, but under specific conditions that are essential for success, AI expert tells Infosecurity Europe

• June 04, 2019 04 Jun'19

  Beware of security blind spots in encrypted traffic

  The growth of encrypted traffic has put the spotlight on intrusion prevention systems that help to surface cyber attacks conducted under the cloak of network encryption

• June 03, 2019 03 Jun'19

  Australia’s Notifiable Data Breaches scheme drives compliance but issues remain

  Australia’s data breach notification rules have largely been complied with, but some quarters are calling for more clarity on the reporting threshold and tougher action against errant firms

• May 31, 2019 31 May'19

  Facebook loses bid to halt European court decision on EU-US data sharing

  Irish Supreme Court dismisses attempt by Facebook to prevent the European Court of Justice considering the validity of US-EU data transfers, after Austrian lawyer Max Schrems argued that they put the privacy of EU citizens at risk

• May 31, 2019 31 May'19

  GCHQ urged to abandon plans to access encrypted chats

  Tech companies and security and policy experts are calling for more dialogue with GCHQ on encryption, urging it to ditch its proposal for eavesdropping on encrypted chats

• May 30, 2019 30 May'19

  2.3 billion business and consumer data files exposed online

  In the year since the GDPR compliance deadline, the number of data files exposed online without adequate protection is up more than 50% due to misconfigured security controls, report reveals

• May 29, 2019 29 May'19

  Hackers targeting UK universities a threat to national security

  Poorly defended UK university research that is mainly commissioned by government is a top target for hackers, putting national security at risk, a study reveals, underlining the need for better cyber security

• May 29, 2019 29 May'19

  Turla APT group beefs up cyber attack tool

  An advanced persistent threat cyber espionage group has improved its tools to attack diplomatic targets, making their activities more difficult to detect and block

• May 29, 2019 29 May'19

  Cyber weapons readily available to criminals, researchers warn

  Security researchers have discovered an attack campaign infrastructure designed to scan, brute-force and infect tens of thousands of MS-SQL and PHPMyAdmin servers

• May 29, 2019 29 May'19

  ICO to shortlist Sandbox applicants

  Privacy watchdog’s Sandbox service aims to help develop innovative and beneficial products and services that are privacy compliant

• May 28, 2019 28 May'19

  Perfect storm for data science in security

  After nearly 20 years of research, the perfect storm of computing technologies is finally enabling data science to realise its potential to make valuable contributions to improving cyber security capabilities

• May 28, 2019 28 May'19

  Many search engine users unaware of personal data collection

  Many users of online search engines are still unaware that data is being collected about them for personalised advertising, a study has revealed

• May 26, 2019 26 May'19

  Australian firms coming to grips with AI ethics

  Australian businesses are warming up to AI, but just two in five have standards and guidelines for AI ethics, a study finds

• May 24, 2019 24 May'19

  Just over half of UK firms don’t have a cyber resilience plan

  Many UK firms still lack cyber resilience and data protection capabilities covering email a year after the implementation of the GDPR aimed at improving personal data protection

• May 24, 2019 24 May'19

  GDPR: Are we there yet?

  A full year since the General Data Protection Regulation was implemented, there has not been the severe punitive action expected by many and personal data breaches continue to happen, leaving many wondering if any progress has been made

• May 24, 2019 24 May'19

  Effect of GDPR yet to be felt, says law firm Hogan Lovells

  Despite the fact that the GDPR has been in full effect for a year, the true effect of the regulation is yet to be felt and organisations should ensure they keep their eye on the ball, says leading privacy law firm

• May 24, 2019 24 May'19

  No real change a year into GDPR, says privacy expert

  A year after the GDPR compliance deadline, many organisations still have a lot of work to do to make real changes and shift focus away from fines to business value and gain, says PwC’s GDPR and data protection lead

• May 24, 2019 24 May'19

  SurveyMonkey opens Dublin datacentre region to court data-security conscious enterprises in Europe

  Online survey software provider SurveyMonkey is on a Europe-wide enterprise charm offensive, and is focusing on winning over CIOs with the offer to locally host their data within its European datacentre region

• May 23, 2019 23 May'19

  IBM’s investment in automation pays off in GDPR’s first year

  The first year of the EU’s General Data Protection Regulation has demonstrated the value of IBM’s investment in machine learning-based automation and the importance of having the right strategy and systems in place, according to the firm’s data ...

• May 23, 2019 23 May'19

  Lapse in LinkedIn security certificate update

  A lapse in the update of LinkedIn’s security certificate has once again underlined the importance of keeping track to avoid disruptions and phishing attacks, and how even big players are failing to get it right

• May 22, 2019 22 May'19

  TalkTalk admits new failings in 2015 data breach notification

  TalkTalk’s failure to notify all those affected by its 2015 data breach highlights the importance of data visibility so that breach notifications are fast and accurate – a key requirement of the GDPR

• May 22, 2019 22 May'19

  Singapore proposes data portability provisions

  The Personal Data Protection Commission is seeking public feedback on proposed provisions that will let consumers move their personal data across organisations

• May 21, 2019 21 May'19

  US grants Huawei stay of execution

  US Commerce Department temporarily restores Huawei’s ability to maintain its existing networks and smartphone user base

• May 21, 2019 21 May'19

  Planned UK age verification checks risky for internet users

  Proposed controversial online age verification checks could increase the risk of identity theft and other cyber crimes, warn security experts, who advise parents to set technological boundaries and ensure their families are aware of risks

• May 20, 2019 20 May'19

  GDPR an opportunity to improve data systems and processes

  A year after the official implementation of the GDPR, it is important to highlight the positive opportunities that compliance provides and the insights breach reports are providing, say Deloitte consultants

• May 20, 2019 20 May'19

  Google cuts off Huawei from Android ecosystem

  Google decision follows an executive order signed by President Trump, but Huawei insists US businesses and consumers will be the real losers

• May 20, 2019 20 May'19

  ICO to support GDPR certification schemes

  The UK data protection watchdog is accepting enquiries from organisations considering developing GDPR certification schemes, which the ICO says could help recipients achieve competitive advantage

• May 17, 2019 17 May'19

  Identity custodians needed in digital era

  Digital identity systems will fail if they do not take humans into account, warns identity innovator, suggesting that a ‘digital guardian’ could help overcome most of these challenges

• May 16, 2019 16 May'19

  Self-sovereign ID key to data privacy

  Coupling self-sovereign identity with insights from research on consumer identity management may be the key to personalising products and services without putting people at risk, says industry analyst

• May 16, 2019 16 May'19

  Fujitsu sets out to restore trust in technology

  Trust in technology, how to recapture it, and how to ensure AI doesn’t overstep its bounds were the big messages on the opening day of Fujitsu Forum in Tokyo

• May 15, 2019 15 May'19

  Facebook engaged in ‘calculated’ campaign to eliminate competition, claims businessman

  A US businessman is seeking damages from Facebook after accusing the social media company of unfairly blocking “humorous” Facebook pages which generated hundreds of thousands of dollars in advertising revenue

• May 15, 2019 15 May'19

  Microsoft working to support decentralised identity

  Microsoft is among the big tech players aiming to help enable personalisation of products and services without putting privacy at risk

• May 14, 2019 14 May'19

  APAC firms on the back foot in cyber security

  Most Asia-Pacific organisations did not consider cyber security until after their digital transformation projects had begun, new survey finds

• May 14, 2019 14 May'19

  Electronic ID in the Nordics – a model for other countries?

  Use of electronic identity schemes in Sweden, Norway, Finland and Denmark is far ahead of other countries – but why?

• May 13, 2019 13 May'19

  Security standard for surveillance cameras set for launch

  A long-overdue cyber security standard for the manufacturer of surveillance cameras is on track for an official launch in June

• May 09, 2019 09 May'19

  Facebook co-founder: ‘It is time to break up Facebook’

  Co-founder of Facebook, Chris Hughes, has published an op-ed in The New York Times calling for Facebook to be broken up, as it faces investigations from the US Federal Trade Commission

• May 09, 2019 09 May'19

  Northern Ireland generating cyber security knowledge and jobs

  Northern Ireland is establishing itself as an international hub of cyber security research and innovation, providing growing employment opportunities

• May 08, 2019 08 May'19

  Some Australian firms still in the dark about cyber security

  A report suggesting Australian firms are experiencing fewer cyber incidents has left its co-author perplexed with the findings

• May 08, 2019 08 May'19

  Time to start thinking about AI regulation, says KuppingerCole

  Organisations and individuals should think about regulating artificial intelligence to avoid sleepwalking into a future regulated by these technologies, says analyst

• May 08, 2019 08 May'19

  Cyber criminals targeting C-suite, DBIR shows

  Executives and cloud-based services are gaining popularity as targets for cyber criminals, according to the latest data breach investigations report

• May 07, 2019 07 May'19

  Privileged access management moving to cloud

  Survey shows nearly half of information security professionals are either planning to move privileged access management to the cloud or are exploring the possibility

• May 07, 2019 07 May'19

  HMRC begins deleting unlawful voice biometric data

  HM Revenue and Customs is to forge ahead with Voice ID despite beginning to delete the largest state-held voice biometric database gathered without consent after UK privacy and data protection watchdog issues order

• May 06, 2019 06 May'19

  AWS to power Australia’s 2021 online census

  PwC Australia, one of two firms appointed by the government to run the next Census, will build and operate an online form and a website on Amazon Web Services

• May 03, 2019 03 May'19

  Zero trust: A 21st century security model

  Traditional corporate security models date back to a time when there were fewer, lower-level threats, but a zero trust model is better suited to the 21st century, according to the originator of the idea

• May 02, 2019 02 May'19

  Singapore rolls out blockchain platform for verifying educational certificates

  Employers in the city-state can now use the OpenCerts platform to verify the qualifications of employees and new hires

• May 02, 2019 02 May'19

  Firms urged to embrace positive security trends to win cyber war

  Modern cyber security challenges overshadow the information security successes of the past, but several positive trends are emerging as defenders come to grips with new threats, says Deloitte

• May 02, 2019 02 May'19

  Businesses unprepared for cyber breaches

  Study shows many organisations lack IT security and operations basics, including visibility across their IT operations

• May 02, 2019 02 May'19

  Defence secretary sacked over Huawei leak

  Defence secretary Gavin Williamson has been sacked after leaking confidential discussions over the use of Huawei networking equipment