Security Experts:

long dotted

NEWS & INDUSTRY UPDATES

Leaked documents from a civil suit against Facebook show how the social network aimed to employ user data as a tool for bargaining and to manipulate competitors. [Read More]
Facebook says 100 third-party application developers continued to access user information via the Groups API even after access to the data was restricted. [Read More]
In addition to new security tools for Azure, at the Ignite 2019 conference this week, Microsoft announced new capabilities aimed at improving the security of its users across platforms. [Read More]
Technology has given internet giants "irresistible power" when they work in concert with governments, whistleblower Ed Snowden told the Web Summit that opened in Lisbon on Monday. [Read More]
Proton Technologies, the company behind the privacy-focused email service ProtonMail, has made available the source code of its iOS client application. [Read More]
ACLU sues the FBI and other federal agencies claiming the government is improperly withholding information on how it uses a facial recognition database of millions of Americans. [Read More]
Facebook has agreed to pay a 500,000-pound ($643,000) fine in a privacy case stemming from the Cambridge Analytica scandal, agreeing to accept the fine without admitting any liability. [Read More]
Corellium, a virtualization company that creates perfect replicas of the iPhone and iOS for security research and testing purposes, has responded to Apple’s lawsuit. [Read More]
Austria's postal service have been fined 18 million euros ($20 million) for working up data about their customers' assumed political allegiances. [Read More]
Israeli spyware company NSO Group is accused by WhatsApp of cyberespionage targeting journalists, lawyers, human rights activists and others on the Facebook-owned messaging service. [Read More]

FEATURES, INSIGHTS // Compliance

rss icon

Josh Lefkowitz's picture
Regardless of which framework you use, it’s crucial to operationalize it in the context of your organization’s unique environment and risk factors.
Laurence Pitt's picture
Failure to implement basic cybersecurity hygiene practices will leave retailers vulnerable to damage and fines during a lucrative time for their businesses.
Justin Fier's picture
Over time, holding people responsible will lead individuals to see how their actions impact the security of the organization and come to consider themselves responsible for the security of the company.
Mike Fleck's picture
Big companies can say they are GFPR compliant, but odds are their current structure will never allow them to find, identify, and categorize all the data that they have collected over time.
Laurence Pitt's picture
Despite the long ramp-up towards the GDPR compliance deadline, the effects of the new regulations are still very much in infancy.
Travis Greene's picture
GDPR is proving disruptive for European citizens who are no longer able to interact with services from outside the EU. And the compliance costs can be significant as well. But are there legitimate concerns of overreach?
Bradon Rogers's picture
Complying with GDPR was the immediate challenge, but now there is an opportunity to capture the good work that has been done and make data protection a top of mind focus for enterprises every day.
Josh Lefkowitz's picture
While the upcoming GDPR compliance deadline will mark an unprecedented milestone in security, it should also serve as a crucial reminder that compliance does not equal security.
Alastair Paterson's picture
With domain name WHOIS data subject to the GDPR’s privacy requirements, the system will “go dark” until alternative preparations are made, creating a challenge for this who fight computer fraud and other criminal activity on the Internet.
Ashley Arbuckle's picture
Penalties for non-compliance with GDPR will be severe. For example, if your organization fails to report a data breach within 72 hours, expect a fine.