Security Experts:

long dotted

NEWS & INDUSTRY UPDATES

San Francisco-based privacy compliance and data protection firm TrustArc raises $70 million in a Series D funding round. [Read More]
Marriott International says it will fight a large fine resulting from a massive data breach that was discovered in 2018. [Read More]
UK data watchdog says it intends to fine British Airways £183.39 million ($230 million) for the 2018 data breach that impacted 500,000 of its customers. [Read More]
Americans are keen on security, but do not necessarily understand it. This is the conclusion of a new survey of 1,300 Americans undertaken by YouGov, which basically suggests that attitudes towards cybersecurity exceed actions taken to ensure cybersecurity. [Read More]
Mozilla says the upcoming Firefox 68 will address TLS errors caused by antiviruses with a new mechanism that automatically changes the configuration of the browser when a MitM error is detected. [Read More]
It may sound far-fetched, but American tech firms could be excused for wondering if the European Union is using consumer-oriented legislation as a form of protectionism for its smaller industry against foreign giants. [Read More]
Attunity, a Qlik-owned data integration and big data management company used by half of Fortune 100 firms, exposed at least one terabyte of data through unprotected Amazon S3 buckets. [Read More]
Protection against Spectre, Meltdown, RAMBleed, Rowhammer and other memory side-channel attacks has been added to OpenSSH. [Read More]
File transfer service WeTransfer alerts users after discovering that some file transfer emails were sent to the wrong individuals. [Read More]
Researchers discovered two unprotected plaintext databases concerning the prescription drug Vascepa. [Read More]

FEATURES, INSIGHTS // Data Protection

rss icon

Alastair Paterson's picture
If it takes a whole village to raise a child, it takes a whole community of vendors and business partners to build a secure data environment.
Ellison Anne Williams's picture
Data in Use has become a point of least resistance for an attacker. There is a major industry need to recognize this lapse and close the gap in data security by protecting data while it is being used.
Gunter Ollmann's picture
DLP has always been tricky to deploy and enforce, and most CISOs can freely regale stories of DLP promises and their subsequent failures.
Ellison Anne Williams's picture
Data protection schemes must recognize and secure data as it exists at all points in the processing lifecycle, whether at rest, in transit, or in use.
Torsten George's picture
By implementing the core pillars of GDPR, organizations can assure they meet the mandate’s requirements while strengthening their cyber security posture.
Laurence Pitt's picture
Failure to implement basic cybersecurity hygiene practices will leave retailers vulnerable to damage and fines during a lucrative time for their businesses.
Travis Greene's picture
While GDPR doesn’t require encryption, there are four mentions of encryption in GDPR that provide real incentives for organizations to use encryption.
Preston Hogue's picture
Security teams should think about how company data might connect with data from other organizations or industries and how those combined data sets could be triangulated into a larger picture that ultimately puts you at risk.
Bradon Rogers's picture
While a contract, distributed, partner-oriented workforce and supply chain can create serious risks to your organization, careful implementation of visibility and data protection strategies can help you mitigate many of the risks.
Alastair Paterson's picture
While a boon to productivity, some of the most ubiquitous file sharing services across the Internet are also at the heart of a global problem – publicly exposed data.