Security Experts:

long dotted

NEWS & INDUSTRY UPDATES

Facebook has sued domain registrar Namecheap over its refusal to provide information on tens of domains that impersonated the social media company. [Read More]
UK telecommunications and media company Virgin Media has exposed the personal information of roughly 900,000 people. [Read More]
US lawmakers propose legislation that could see internet companies held legally responsible for content on their platforms if they don't do enough to police child pornography. [Read More]
The UK Information Commissioner's Office (ICO) has fined Hong Kong based Cathay Pacific Airways the maximum possible £500,000 ($646,000) following a long-running breach that occurred between October 2014 and May 2018. [Read More]
The D.C. Council has passed legislation designed to expand data breach notification requirements and improve the way personal information is protected. [Read More]
US regulators moved to impose fines Friday against the nation's four major wireless carriers for selling location data of customers without their consent. [Read More]
OneTrust, a provider of privacy and security compliance tools, has raised $210 million in Series B funding at a valuation of $2.7 billion. [Read More]
SECURITI.ai has won the title of ‘Most Innovative Startup’ at the RSA Conference 2020 Innovation Sandbox contest. [Read More]
Canada's privacy watchdog on Friday announced an investigation into a US software startup reportedly capable of matching images of unknown faces to photos it mined from millions of websites and social media networks. [Read More]
New Mexico’s attorney general sued Google Thursday over allegations the tech company is illegally collecting personal data generated by children in violation of federal and state laws. [Read More]

FEATURES, INSIGHTS // Compliance

rss icon

Josh Lefkowitz's picture
Regardless of which framework you use, it’s crucial to operationalize it in the context of your organization’s unique environment and risk factors.
Laurence Pitt's picture
Failure to implement basic cybersecurity hygiene practices will leave retailers vulnerable to damage and fines during a lucrative time for their businesses.
Justin Fier's picture
Over time, holding people responsible will lead individuals to see how their actions impact the security of the organization and come to consider themselves responsible for the security of the company.
Mike Fleck's picture
Big companies can say they are GFPR compliant, but odds are their current structure will never allow them to find, identify, and categorize all the data that they have collected over time.
Laurence Pitt's picture
Despite the long ramp-up towards the GDPR compliance deadline, the effects of the new regulations are still very much in infancy.
Travis Greene's picture
GDPR is proving disruptive for European citizens who are no longer able to interact with services from outside the EU. And the compliance costs can be significant as well. But are there legitimate concerns of overreach?
Bradon Rogers's picture
Complying with GDPR was the immediate challenge, but now there is an opportunity to capture the good work that has been done and make data protection a top of mind focus for enterprises every day.
Josh Lefkowitz's picture
While the upcoming GDPR compliance deadline will mark an unprecedented milestone in security, it should also serve as a crucial reminder that compliance does not equal security.
Alastair Paterson's picture
With domain name WHOIS data subject to the GDPR’s privacy requirements, the system will “go dark” until alternative preparations are made, creating a challenge for this who fight computer fraud and other criminal activity on the Internet.
Ashley Arbuckle's picture
Penalties for non-compliance with GDPR will be severe. For example, if your organization fails to report a data breach within 72 hours, expect a fine.