Information Management Today

Why You Should Opt Out of Sharing Data With Your Mobile Provider

Krebs on Security

MARCH 20, 2023

A new breach involving data from nine million AT&T customers is a fresh reminder that your mobile provider likely collects and shares a great deal of information about where you go and what you do with your mobile device — unless and until you affirmatively opt out of this data collection.

Customer Experience

Customer Experience Privacy Data collection Marketing

Mozilla Drops Onerep After CEO Admits to Running People-Search Networks

Krebs on Security

MARCH 22, 2024

On March 14, KrebsOnSecurity published a story showing that Onerep’s Belarusian CEO and founder Dimitiri Shelest launched dozens of people-search services since 2010, including a still-active data broker called Nuwber that sells background reports on people. Nor is collecting and selling data on Americans.

Healthcare

Healthcare Privacy Data breaches Government

You Can Now Ask Google to Remove Your Phone Number, Email or Address from Search Results

Krebs on Security

APRIL 29, 2022

Google said this week it is expanding the types of data people can ask to have removed from search results, to include personal contact information like your phone number, email address or physical address. According to recent estimates, Google enjoys somewhere near 90 percent market share in search engine usage.

Search queries

Search queries Retail Government Marketing

Webinars

Peak Performance: Continuous Testing & Evaluation of LLM-Based Applications

MORE WEBINARS

Identity Thieves Bypassed Experian Security to View Credit Reports

Krebs on Security

JANUARY 9, 2023

All that was needed was the person’s name, address, birthday and Social Security number. After I supplied that and told Annualcreditreport.com I wanted my report from Experian, I was taken to Experian.com to complete the identity verification process. It wouldn’t even show me the four multiple-guess questions.

Security

Security Authentication Mining Cybersecurity

Are You One of the 533M People Who Got Facebooked?

Krebs on Security

APRIL 6, 2021

Ne’er-do-wells leaked personal data — including phone numbers — for some 553 million Facebook users this week. Facebook says the data was collected before 2020 when it changed things to prevent such information from being scraped from profiles. billion active monthly users. According to a Jan.

Passwords

Passwords Authentication Privacy Sales

Missouri Governor Vows to Prosecute St. Louis Post-Dispatch for Reporting Security Vulnerability

Krebs on Security

OCTOBER 14, 2021

Mike Parson (R) said fixing the flaw could cost the state $50 million, and vowed his administration would seek to prosecute and investigate the “hackers” and anyone who aided the publication in its “attempt to embarrass the state and sell headlines for their news outlet.” ” Missouri Gov.

Security

Security Education Computer and Electronics Access

Breached Data Indexer ‘Data Viper’ Hacked

Krebs on Security

JULY 13, 2020

Data Viper , a security startup that provides access to some 15 billion usernames, passwords and other information exposed in more than 8,000 website breaches, has itself been hacked and its user database posted online. But others correspond to companies that do not appear to have disclosed a security incident.

Sales

Sales Marketing e-Discovery Passwords

My Top Tips for the UK’s Next Information Commissioner

Data Protector

MARCH 21, 2021

Because noise and controversy sells. It sells seats at privacy conferences and it sells consulting time – which can be dangerous when there are no entry barriers to the privacy consulting trade. Amidst the privacy hype and noise, here are my top tips to make your life less challenging than it otherwise will be: 1.

Privacy

Privacy IT

GUEST ESSAY: These common myths and misconceptions make online browsing very risky

The Last Watchdog

JANUARY 3, 2023

Most of these have to do with preventing malware from infecting your device. I frequently clear my cache, so third-party data collectors can’t collect and sell my personal data. Incognito mode protects my personal information from bad actors. No attachment needed. . Steps to safe browsing.

Privacy

Privacy Personal data Analytics Authentication

Data privacy examples

IBM Big Data Hub

APRIL 24, 2024

An online retailer always gets users’ explicit consent before sharing customer data with its partners. A school asks parents to verify their identities before giving out student information. Far-reaching regulations like Europe’s GDPR levy steep fines on organizations that fail to safeguard sensitive information.

Data Privacy

Data Privacy Privacy GDPR Personal data

First CCPA Enforcement Action Settlement Announced by California AG

Hunton Privacy

AUGUST 25, 2022

The OAG made clear that Sephora’s disclosure of consumer personal information to third parties in this context constitutes a “sale” under the CCPA’s broad definition of the term (i.e., Under the settlement, Sephora must: Pay $1.2

Sales

Sales Analytics Privacy Retail

Red Cross Hack Linked to Iranian Influence Operation?

Krebs on Security

FEBRUARY 16, 2022

A network intrusion at the International Committee for the Red Cross (ICRC) in January led to the theft of personal information on more than 500,000 people receiving assistance from the group. ” RaidForums member “unindicted” aka Sheriff selling access to the International Red Cross and Red Crescent Movement data. .”

Ransomware

Ransomware Sales Access Data breaches

LeakedSource Owner Quit Ashley Madison a Month Before 2015 Hack

Krebs on Security

JULY 18, 2023

15, 2018, the Royal Canadian Mounted Police (RCMP) charged then 27-year-old Bloom, of Thornhill, Ontario, with selling stolen personal identities online through the website LeakedSource[.]com. “In his previous experience he had been doing RMT (Real Money Trading),” Sykes wrote.

Passwords

Passwords Data breaches Marketing IT

Florence, Ala. Hit By Ransomware 12 Days After Being Alerted by KrebsOnSecurity

Krebs on Security

JUNE 9, 2020

that their information technology systems had been infiltrated by hackers who specialize in deploying ransomware. City officials now say they plan to pay the ransom demand, in hopes of keeping the personal data of their citizens off of the Internet. “Do they have our stuff? ” A DoppelPaymer ransom note. .

Ransomware

Ransomware Systems administration Cybersecurity Personal data

Apple AirTag Bug Enables ‘Good Samaritan’ Attack

Krebs on Security

SEPTEMBER 28, 2021

Setting it to Lost Mode generates a unique URL at [link] and allows the user to enter a personal message and contact phone number. This information pops up without asking the finder to log in or provide any personal information. The AirTag’s “Lost Mode” lets users alert Apple when an AirTag is missing.

Phishing

Phishing Communications Military Risk

California Privacy Law Overhaul – Proposition 24 Passes

Data Matters

NOVEMBER 4, 2020

Importantly, the CPRA imposes additional obligations on and considerations for businesses subject to the CCPA, including: Providing consumers with the right to prevent businesses from sharing their personal information with third parties for behavioral advertising or advertising based on a consumer’s precise geolocation.

Privacy

Privacy B2B Sales Data breaches

California Privacy Protection Agency Officially Commences CPRA Rulemaking Process

Hunton Privacy

JULY 8, 2022

While the proposed regulations are voluminous – at 66 pages – they do not include all of the approximately two dozen topics required to be addressed under the CCPA/CPRA. For instance, the choice between “Accept All” and “More Information” is asymmetrical, whereas the choice between “Accept All” and “Decline All” is considered symmetrical.

Privacy

Privacy Sales Compliance Access

Confessions of an ID Theft Kingpin, Part I

Krebs on Security

AUGUST 26, 2020

For several years beginning around 2010, a lone teenager in Vietnam named Hieu Minh Ngo ran one of the Internet’s most profitable and popular services for selling “ fullz ,” stolen identity records that included a consumer’s name, date of birth, Social Security number and email and physical address. ” MICROBILT.

Computer and Electronics

Computer and Electronics Access IT Data collection

CCPA Update: Comment Period Closes on Third Round of Proposed Modifications to CCPA Regulations; CCPA Litigation Gaining Steam; Consumer Groups and Major Newspapers Urge “No” Vote on California’s Privacy Initiative

Data Matters

OCTOBER 29, 2020

Providing notice orally where personal information is collected over the phone. Existing regulations include identical examples of how businesses that collect personal information offline can provide notice at collection. § 999.305(a)(3). in privacy policy). in privacy policy).

Privacy

Privacy Sales Compliance Paper

The Security Pros and Cons of Using Email Aliases

Krebs on Security

AUGUST 10, 2022

For instance, if I were signing up at example.com, I might give my email address as krebsonsecurity+example@gmail.com. Then, I simply go back to my inbox and create a corresponding folder called “Example,” along with a new filter that sends any email addressed to that alias to the Example folder. What is an email alias?

Security

Security Data breaches Passwords Retail

Chatbots and Human Conversation

Schneier on Security

JANUARY 26, 2024

For most of history, communicating with a computer has not been like communicating with a person. ” The syntax of civility has crept into nearly every aspect of our encounters; we speak to this algebraic assemblage as if it were a person—even when we know that it’s not.

Communications

Communications Marketing Privacy IT

The Return of the Mac: CCPA 2.0 Qualifies for California’s November 2020 Ballot and Could Usher In Sweeping Changes to CCPA

Data Matters

JUNE 26, 2020

The court agreed to do so, finding good cause existed to force counties to complete verifications a day early. It will also change the CCPA in several significant respects, some of which we highlight below: New Duties Imposed on Businesses That Collect Personal Information and Their Service Providers. Data Minimization.

Data breaches

Data breaches Passwords Privacy Risk

Library buyers' role in tech start-ups

CILIP

FEBRUARY 20, 2024

In this interview for CILIP's Buyers' Guide 2024 , Frode said: "What we are developing is an AI tool that makes it easier to discover information that you want to read, a tool that helps you discover things that you could be really interested in." “We I was struggling to find relevant articles for my master’s thesis as a student.

Libraries

Libraries Education Artificial Intelligence Sales

AT&T, Sprint, Verizon to Stop Sharing Customer Location Data With Third Parties

Krebs on Security

JUNE 19, 2018

In the wake of a scandal involving third-party companies leaking or selling precise, real-time location data on virtually all Americans who own a mobile phone, AT&T , Sprint and Verizon now say they are terminating location data sharing agreements with third parties. mobile networks. By that time, Sen. Ron Wyden (D-Ore.)

Privacy

Privacy Access IT Authentication

How to Get Executive Support for Your Next Information Governance Initiative

AIIM

NOVEMBER 23, 2021

Back in 2017, I called up a few of the information governance friends I’d made through the AIIM Community to better understand the challenges they were up against. If they don't, they will NEVER change the status of information management within their organizations. What Does Information Governance Mean in 2021 and Beyond?

Information governance

Information governance Government Customer Experience Archiving

US: Version 3.0 of the CCPA: Major Implications

DLA Piper Privacy Matters

MARCH 19, 2020

The change would expand the definition from benefits or offers “as compensation for the disclosure, deletion or sale of personal information” to benefits or offers “related to the collection, retention or sale of personal information.” regarding when an IP address is “personal information.”. Opt-out button.

Sales

Sales Compliance Privacy Analytics

When is a Scrape a Breach?

Troy Hunt

DECEMBER 15, 2021

A decade and a bit ago during my tenure at Pfizer, a colleague's laptop containing information about customers, healthcare providers and other vendors was stolen from their car. It was the largest incident of it's kind in Australia and it included my own personal data. Is this a data breach?

Data breaches

Data breaches Passwords Access Personal data

California Age-Appropriate Design Code Act

Data Protection Report

SEPTEMBER 23, 2022

b. Whether, how, and for what purpose the online product, service, or feature collects or processes sensitive personal information of children. c. Whether, how, and for what purpose the online product, service, or feature collects or processes sensitive personal information of children. b. Five.

Compliance

Compliance Privacy Access Risk

In a Few Days, Credit Freezes Will Be Fee-Free

Krebs on Security

SEPTEMBER 10, 2018

A handy PDF produced earlier this year by the Consumer Financial Protection Bureau (CFPB) lists all of the known entities that maintain, sell or share credit data on U.S. My guess is the vast majority of Americans have never heard of most of these companies. But thanks to a federal law enacted earlier this year, after Sept.

Access

Access Military Retail Security

CCPA In-Depth Series: Draft Attorney General Regulations on Consumer Notice

Data Matters

OCTOBER 22, 2019

Indeed, even if they do not resolve all of the Law’s many ambiguities, they do provide helpful implementation guidance – along with surprising new requirements, some of which may questionably extend beyond the CCPA itself. Check back daily for the next installment, or visit the CCPA Monitor for a collection of all our CCPA insights.

Privacy

Privacy Sales Paper Compliance

‘Spam Nation’ Villain Vrublevsky Charged With Fraud

Krebs on Security

MARCH 22, 2022

Pavel Vrublevsky , founder of the Russian payment technology firm ChronoPay and the antagonist in my 2014 book “ Spam Nation ,” was arrested in Moscow this month and charged with fraud. These diary entries, interspersed between highly technical how-tos, are all written in Russian and in the third person.

Risk

Risk Marketing Archiving IT

7 customer experience trends in 2024

IBM Big Data Hub

FEBRUARY 12, 2024

They site their production process, material sourcing information, product care information, and even their sustainability reports. For example, brand recognition on a podcast episode is great for awareness, but how many times do you click out of a podcast to purchase something?

Customer Experience

Customer Experience Artificial Intelligence Marketing Access

How to prepare for the California Consumer Privacy Act

Thales Cloud Protection & Licensing

AUGUST 15, 2019

Last August, my colleague Ashvin Kamaraju wrote a blog shortly after this took place. What is considered Personal Information under the CCPA. Personal Information excluded by the CCPA. Similar to GDPR, the CCPA excludes from its scope information that is publicly available.

Privacy

Privacy GDPR Digital transformation Sales

All Buttoned Up: The California AG Proposes Additional CCPA Regulations

Data Matters

DECEMBER 14, 2020

All of the newly proposed changes relate to the right to opt-out of the sale of personal information. The first series of recommended changes focuses on what a business must share regarding the right to opt-out with consumers with whom they interact offline.

Sales

Sales Privacy IT

Vint Cerf: Maybe We Need an Internet Driver’s License

John Battelle's Searchblog

FEBRUARY 9, 2024

The conversation also served as the kick-off to my own Burnes Center lecture series, “ The Internet We Deserve ” where I’ll talk with notable business, policy, technology and academic leaders central to the creation of the Internet as we know it today (last week I spoke with Larry Lessig ).

Artificial Intelligence

Artificial Intelligence Computer and Electronics IT Risk

State of the Union: CCPA and Beyond in 2020

Data Protection Report

JANUARY 13, 2020

On New Year’s Day, you may have received emails from numerous companies saying their privacy policies have changed, or noticed a link at the bottom of many companies’ homepages stating “Do Not Sell My Info.” The CCPA requires that businesses disclose whether or not they sell Personal Information (PI).

Privacy

Privacy B2B Sales Compliance

A Guide to CCPA Compliance and How the California Consumer Privacy Act Compares to GDPR

erwin

APRIL 18, 2019

California Consumer Privacy Act (CCPA) compliance shares many of the same requirements in the European Unions’ General Data Protection Regulation (GDPR). Collects, sells or shares the personal data of 50,000 or more consumers, households or devices. GDPR encompasses all categories of “personal data,” with no distinctions.

GDPR

GDPR Compliance Privacy Personal data

California Privacy Compliance Obligations May Soon Change Under CPRA Ballot Initiative

HL Chronicle of Data Protection

MAY 26, 2020

Requires entities sharing common control and common branding to also share consumer personal information to be considered the same “business.”. common branding” is a shared name, servicemark, or trademark such that the “average consumer” would understand the two entities are commonly owned. Data Minimization (new).

Privacy

Privacy Compliance Sales Data Privacy

U.S. Mobile Giants Want to be Your Online Identity

Krebs on Security

SEPTEMBER 12, 2018

This includes knowing the approximate real-time location of the customer; how long they have been a customer and used the device in question; and information about components inside the customer’s phone that are only accessible to the carriers themselves, such as cryptographic signatures tied to the device’s SIM card.

Authentication

Authentication Retail Passwords Access

California Enacts Broad Privacy Laws Modeled on GDPR

Data Matters

JUNE 29, 2018

It is intended to give consumers more transparency regarding and control over their data and establishes highly detailed requirements for what companies that collect personal data about California residents must disclose. . derive 50 percent or more of annual revenues from selling consumers’ personal information.

GDPR

GDPR Privacy Sales Data breaches

A February 2020 Surprise: California Attorney General Proposes Significant Revisions to CCPA Regulations

Data Matters

FEBRUARY 12, 2020

service providers are allowed to use personal information to improve their products and services, so long as they aren’t using the information to build profiles or clean or augment other data. In these revisions, the Attorney General did not change the definition, but he helpfully clarified its scope.

Privacy

Privacy Compliance Archiving Sales

Takeaways From CCPA Public Forums

Data Matters

FEBRUARY 12, 2019

The forums won’t likely provide definitive answers, they will likely provide some of the best information available. Code § 1798.185(a): Categories of Personal Information. Rules for Notices and Information. What are the next steps? What will the regulations necessarily cover? . Rules for Opt-Out of Sale.

Sales

Sales Privacy Data Privacy Compliance

California’s GDPR? Sweeping California Privacy Ballot Initiative Could Bring Sea Change to U.S. Privacy Regulation and Enforcement

Data Matters

JUNE 26, 2018

This initiative would likely create a de facto national standard on transparency around third-party sharing as well as consumer rights to restrict data sharing and could affect many business models that depend on data monetization to offer a free good or service. The CCPA would affect businesses doing business in California that.

Privacy

Privacy GDPR Sales Data breaches

State of the Union: CCPA and Beyond in 2020

Data Protection Report

JANUARY 13, 2020

On New Year’s Day, you may have received emails from numerous companies saying their privacy policies have changed, or noticed a link at the bottom of many companies’ homepages stating “Do Not Sell My Info.” The CCPA requires that businesses disclose whether or not they sell Personal Information (PI).

Privacy

Privacy B2B Sales Compliance

Why You Should Opt Out of Sharing Data With Your Mobile Provider

Mozilla Drops Onerep After CEO Admits to Running People-Search Networks

Webinars

Trending Sources

You Can Now Ask Google to Remove Your Phone Number, Email or Address from Search Results

Webinars

Identity Thieves Bypassed Experian Security to View Credit Reports

Are You One of the 533M People Who Got Facebooked?

Missouri Governor Vows to Prosecute St. Louis Post-Dispatch for Reporting Security Vulnerability

Breached Data Indexer ‘Data Viper’ Hacked

My Top Tips for the UK’s Next Information Commissioner

GUEST ESSAY: These common myths and misconceptions make online browsing very risky

Data privacy examples

First CCPA Enforcement Action Settlement Announced by California AG

Red Cross Hack Linked to Iranian Influence Operation?

LeakedSource Owner Quit Ashley Madison a Month Before 2015 Hack

Florence, Ala. Hit By Ransomware 12 Days After Being Alerted by KrebsOnSecurity

Apple AirTag Bug Enables ‘Good Samaritan’ Attack

California Privacy Law Overhaul – Proposition 24 Passes

California Privacy Protection Agency Officially Commences CPRA Rulemaking Process

Confessions of an ID Theft Kingpin, Part I

CCPA Update: Comment Period Closes on Third Round of Proposed Modifications to CCPA Regulations; CCPA Litigation Gaining Steam; Consumer Groups and Major Newspapers Urge “No” Vote on California’s Privacy Initiative

The Security Pros and Cons of Using Email Aliases

Chatbots and Human Conversation

The Return of the Mac: CCPA 2.0 Qualifies for California’s November 2020 Ballot and Could Usher In Sweeping Changes to CCPA

Library buyers' role in tech start-ups

AT&T, Sprint, Verizon to Stop Sharing Customer Location Data With Third Parties

How to Get Executive Support for Your Next Information Governance Initiative

US: Version 3.0 of the CCPA: Major Implications

When is a Scrape a Breach?

California Age-Appropriate Design Code Act

In a Few Days, Credit Freezes Will Be Fee-Free

CCPA In-Depth Series: Draft Attorney General Regulations on Consumer Notice

‘Spam Nation’ Villain Vrublevsky Charged With Fraud

7 customer experience trends in 2024

How to prepare for the California Consumer Privacy Act

All Buttoned Up: The California AG Proposes Additional CCPA Regulations

Vint Cerf: Maybe We Need an Internet Driver’s License

State of the Union: CCPA and Beyond in 2020

A Guide to CCPA Compliance and How the California Consumer Privacy Act Compares to GDPR

California Privacy Compliance Obligations May Soon Change Under CPRA Ballot Initiative

U.S. Mobile Giants Want to be Your Online Identity

California Enacts Broad Privacy Laws Modeled on GDPR

A February 2020 Surprise: California Attorney General Proposes Significant Revisions to CCPA Regulations

Takeaways From CCPA Public Forums

California’s GDPR? Sweeping California Privacy Ballot Initiative Could Bring Sea Change to U.S. Privacy Regulation and Enforcement

State of the Union: CCPA and Beyond in 2020

Stay Connected