Analysis, Information Security, Manufacturing and Privacy

The Week in Cyber Security and Data Privacy: 22 – 28 April 2024

IT Governance

APRIL 29, 2024

At the end of each month, these incidents – and any others that we find – will be used to inform our monthly analysis of data breaches and cyber attacks. 5,255,944,117 known records breached in 128 newly disclosed incidents Welcome to this week’s global round-up of the biggest and most interesting news stories.

Data Privacy

Data Privacy Privacy Manufacturing Security

The Week in Cyber Security and Data Privacy: 4 – 10 March 2024

IT Governance

MARCH 11, 2024

At the end of each month, these incidents – and any others that we find – will be used to inform our monthly analysis of data breaches and cyber attacks. Source (New) Transport USA Yes 3,815 Okta Source 1 ; source 2 (Update) Cyber security USA Yes 3,800 Shah Dixit & Associates, P.C. TB Paysign, Inc.

Data Privacy

Data Privacy Privacy Security Data breaches

The Week in Cyber Security and Data Privacy: 16–22 October 2023

IT Governance

OCTOBER 24, 2023

At the end of each month, these incidents – and any others that we find – will be used to inform our monthly analysis of data breaches and cyber attacks. D-Link Corporation Provides Details about an Information Disclosure Security Incident Date of breach: 2 October 2023. Records breached: Unknown.

Data Privacy

Data Privacy Privacy Security Data breaches

Webinars

Generative AI Deep Dive: Advancing from Proof of Concept to Production

MORE WEBINARS

Android mobile devices from top vendors in China have pre-installed malware

Security Affairs

FEBRUARY 9, 2023

The boffins used static and dynamic code analysis techniques to study the data transmitted by the preinstalled system apps on Android smartphones from three of the most popular vendors in China, Xiaomi, OnePlus, and Oppo Realme. The researchers discovered major differences in terms of how privacy provisions are enforced in different regions.

Privacy

Privacy Manufacturing Analytics Data Privacy

Experts warn of a spike in May and June of 8Base ransomware attacks

Security Affairs

JUNE 28, 2023

The group has been active since March 2022, it focused on small and medium-size businesses in multiple industries, including finance, manufacturing, business services, and IT. ” Security experts attributed 67 attacks to the group in May 2023, most of the victims are in the U.S. and Brazil. and Brazil. ” reported NCC.

Ransomware

Ransomware Encryption Manufacturing Business Services

France will not ban Huawei from its upcoming 5G networks

Security Affairs

SEPTEMBER 1, 2020

It’s normal that … we want a European solution” because of the importance of “the security of our communication,” Macron told reporters. In July, the French information security agency ANSSI announced that Huawei Technologies Ltd. .'” reported the Associated Press agency.

IT

IT Military Manufacturing Risk

Over 600k GPS trackers left exposed online with a default password of ‘123456’

Security Affairs

SEPTEMBER 6, 2019

600,000 GPS trackers left exposed online with a default password of ‘123456’ Avast researchers found at least 600,000 GPS trackers manufactured by a Chinese vendor that were exposed online with a default password of “123456.” ” reads the analysis published by Avast. Pierluigi Paganini.

Passwords

Passwords Manufacturing IoT Cloud

Health Sector Council Released Cybersecurity Recommendations for Medical Devices and Health IT

Data Matters

FEBRUARY 14, 2019

On January 28, 2019, the Healthcare and Public Health Sector Coordinating Council released the “ Medical Device and Health IT Joint Security Plan ” (“JSP” or “Plan”)—cybersecurity recommendations for medical device manufacturers, healthcare information technology vendors, and healthcare providers.

Cybersecurity

Cybersecurity IT Manufacturing Risk

An RCE in Annke video surveillance product allows hacking the device

Security Affairs

AUGUST 27, 2021

Researchers at industrial and IoT cybersecurity firm Nozomi Networks have discovered a critical flaw affecting a video surveillance product made by Annke, a popular manufacturer of surveillance systems and solutions.

Cybersecurity

Cybersecurity IoT Access Manufacturing

CVE-2019-2234 flaws in Android Camera Apps exposed millions of users surveillance

Security Affairs

NOVEMBER 19, 2019

“After disclosing these findings to Google, they shared the report with other Android manufacturers, and Samsung confirmed the vulnerabilities existed in their smartphones as well. ” reads the report published by Checkmarx. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->.

Manufacturing

Manufacturing Metadata Security awareness IoT

Over 10k+ GPS trackers could be abused to spy on individuals in the UK

Security Affairs

MAY 13, 2019

Researchers at Fidus Information Security discovered a vulnerability in GPS trackers used by elderly people and kids could be exploited to spy on them. The white-label GPS trackers are manufactured in China is rebranded by many companies in the UK, US, Australia, and other countries. ” continues the analysis.

Manufacturing

Manufacturing Information Security Privacy Communications

OCR Provides Insight into Enforcement Priorities and Breach Trends

HL Chronicle of Data Protection

OCTOBER 21, 2019

Regulators, industry experts, and researchers provided insight into health privacy and security enforcement trends, emerging threats, and new tools at a recent conference focused on the Health Insurance Portability and Accountability (HIPAA) regulatory framework. NIST Privacy Framework. million settlement in 2018.

Risk

Risk Compliance Privacy Phishing

Top GRC Tools & Software for 2021

eSecurity Planet

JANUARY 21, 2021

Data privacy regulations like the EU’s General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA) can be hard to navigate for businesses of any size, but GRC tools can simplify and streamline compliance with all of the requirements. Privacy governance and management. Riskonnect. Back to top.

Compliance

Compliance Risk Government Retail

Supreme Court Finds Lack of Standing to Challenge Foreign Intelligence Surveillance Act

Hunton Privacy

MARCH 1, 2013

Although this 5-4 decision would not be considered a “privacy” or “data breach” case, the Court’s analysis will have a significant impact on such cases going forward, and may thwart the ability of individuals affected by data breaches to assert standing based on possible future harm.

Communications

Communications Data breaches Privacy Government

Top 10 Governance, Risk and Compliance (GRC) Vendors

eSecurity Planet

JANUARY 21, 2021

Data privacy regulations like the EU’s General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA) can be hard to navigate for businesses of any size, but GRC tools can simplify and streamline compliance with all of the requirements. Privacy governance and management. Riskonnect. Back to top.

Compliance

Compliance Risk Government Retail

Article 29 Working Party and EDPS Release Opinions on the ePrivacy Directive

Hunton Privacy

JULY 29, 2016

On July 25, 2016, the Article 29 Working Party (the “Working Party”) and the European Data Protection Supervisor (“EDPS”) released their respective Opinions regarding the review of Directive 2002/58/EC on privacy and electronic communications (the “ePrivacy Directive”).

Communications

Communications GDPR Marketing Metadata

IoT and Cybersecurity: What’s the Future?

Security Affairs

MAY 2, 2022

The first is the very well-known lack of device security. Manufacturers assure us that they need the information to “improve products and customer satisfaction.” Therefore, we allow the devices to send information that may be highly personal, even downright intimate. Start Asking Questions About Data Privacy and Security.

IoT

IoT Cybersecurity Data breaches Passwords

The Hacker Mind: Shattering InfoSec's Glass Ceiling

ForAllSecure

MARCH 8, 2023

What if you are a woman in information security? I’m Robert Vamosi, and in the episode I’m talking about diversity, equality, and inclusion in information security with one of the industries' most successful examples. I can dream about being different because there are white male role models.

Cloud

Cloud Marketing IT Security

Remote sex toys might spice up your love life – but crooks could also get a kick out of them?

Security Affairs

FEBRUARY 14, 2022

We are the first sex tech company to do this,” Lovense told CyberNews after the research team informed the manufacturer of its findings. The company said it updates its software to address any concerns that arise and is committed to the privacy and security of its users. “We

Manufacturing

Manufacturing Access Security IT

US applauds British ban on China’s Huawei for 5G networks

Security Affairs

JULY 15, 2020

Last week, British Prime Minister Boris Johnson announced its decision to phase out the use of network equipment manufactured by the Chinese tech giant Huawei in the UK’s 5G network as little as six months. ” The decision comes after a new UK intelligence agency GCHQ’s report raised new security concerns over Huawei 5G equipment. .

Manufacturing

Manufacturing Risk Privacy Cybersecurity

Information Management Today

The Week in Cyber Security and Data Privacy: 22 – 28 April 2024

The Week in Cyber Security and Data Privacy: 4 – 10 March 2024

Webinars

Trending Sources

The Week in Cyber Security and Data Privacy: 16–22 October 2023

Webinars

Android mobile devices from top vendors in China have pre-installed malware

Experts warn of a spike in May and June of 8Base ransomware attacks

France will not ban Huawei from its upcoming 5G networks

Over 600k GPS trackers left exposed online with a default password of ‘123456’

Health Sector Council Released Cybersecurity Recommendations for Medical Devices and Health IT

An RCE in Annke video surveillance product allows hacking the device

CVE-2019-2234 flaws in Android Camera Apps exposed millions of users surveillance

Over 10k+ GPS trackers could be abused to spy on individuals in the UK

OCR Provides Insight into Enforcement Priorities and Breach Trends

Top GRC Tools & Software for 2021

Supreme Court Finds Lack of Standing to Challenge Foreign Intelligence Surveillance Act

Top 10 Governance, Risk and Compliance (GRC) Vendors

Article 29 Working Party and EDPS Release Opinions on the ePrivacy Directive

IoT and Cybersecurity: What’s the Future?

The Hacker Mind: Shattering InfoSec's Glass Ceiling

Remote sex toys might spice up your love life – but crooks could also get a kick out of them?

US applauds British ban on China’s Huawei for 5G networks

Stay Connected