Data Protection Report

JANUARY 18, 2024

NYDFS conducted its first audit of GGT for the period of May 17, 2018 through March 31 2019. Companies should focus on establishing and implementing a reasonable information governance policy and record retention schedule with special emphasis on documents that contain personal information.

Cybersecurity 110

Cybersecurity Financial Services Compliance Encryption 110

Data Matters

JUNE 24, 2021

The SEC is considering enhancing its disclosure rules concerning cybersecurity risk governance and has indicated a target release date of October 2021. The Order alleges that this vulnerability exposed over 800 million images dating back to 2003, including sensitive personal data, such as Social Security numbers and financial information.

Cybersecurity 68

Cybersecurity Financial Services Risk Compliance 68

The Schedule

AUGUST 22, 2018

Outgoing RMS chair Eira Tansey addresses the joint meeting of the Acquisition & Appraisal and Records Management Sections at SAA’s 2018 annual meeting. ” The first speaker was Lauren Gaines from Thrivent Financial, which is a fraternal benefit society and Fortune 500 financial services organization.

Archiving 58

Archiving FOIA Records Management Compliance 58

Security Affairs

SEPTEMBER 1, 2020

The Iranian hacker group has been attacking corporate VPNs over the past months, they have been hacking VPN servers to plant backdoors in companies around the world targeting Pulse Secure , Fortinet , Palo Alto Networks , and Citrix VPNs. ” reads the report published by Crowdstrike. ” continues the report. Pierluigi Paganini.

Access 90

Access Financial Services Retail Insurance 90

CGI

MAY 15, 2018

The time for government blockchain proofs of concept is now. Tue, 05/15/2018 - 06:29. For the past two years, CGI has seen an exponential uptick in commercial sector interest in blockchain beyond just the financial services industry. Many government agencies also have been wading deeper into the blockchain waters.

Blockchain 40

Blockchain Government Digital transformation Consumer Services 40

The Last Watchdog

JANUARY 30, 2019

Turn the corner into 2019 and we find Citigroup, CapitalOne, Wells Fargo and HSBC Life Insurance among a host of firms hitting the crisis button after their customers’ records turned up on a database of some 24 million financial and banking documents found parked on an Internet-accessible server — without so much as password protection.

Risk 147

Risk Financial Services Insurance Cybersecurity 147

Collibra

FEBRUARY 11, 2020

Regulators are focusing on the data relationships financial services organizations have with third parties, including how well personal information is being managed. There are several areas that the international financial services regulatory community is engaged in that touch on third party personal data relationships.

Financial Services 59

Financial Services Digital transformation Personal data Compliance 59

Data Protection Report

MAY 25, 2022

In this article we distil critical lessons from the Federal Court’s recent decision in Australian Securities and Investments Commission v RI Advice Group Pty Ltd [1] and practical actions to be taken by Boards and executive management. Introduction. Cybersecurity has been a growing concern for boards and executives for the past few years.

Cybersecurity 74

Cybersecurity Risk Financial Services Retail 74

AIIM

JANUARY 26, 2018

A new set of European rules and standards related to privacy and data protection (the General Data Protection Regulation , or GDPR ) has set in motion a mad compliance and security scramble not only for European companies, but also for any company doing business in Europe or with European customers. 3 -- Governance and oversight.

GDPR 93

GDPR Compliance Archiving Privacy 93

Security Affairs

SEPTEMBER 10, 2018

Security experts observed the LuckyMouse APT group using a digitally signed 32- and 64-bit network filtering driver NDISProxy in recent attacks. defense contractors and financial services firms worldwide. The hackers attempted to inject malicious JavaScript code into the government websites connected to the data center.

Communications 68

Communications Financial Services Phishing Encryption 68

Data Matters

OCTOBER 8, 2020

According to OFAC, ransomware attacks have been increasing over the last two years and are a special risk during the COVID-19 pandemic, with cybercriminals targeting not only large corporations but also small to medium enterprises, hospitals, schools, and local government agencies. November 2018: two Iranian creators of SamSam ransomware.

Ransomware 68

Ransomware Compliance Risk Government 68

Info Source

JULY 18, 2023

By Petra Beck, Senior Analyst Capture Software, Infosource Key Takeaways The expanded eIDAS (electronic Identification, Authentication and Trust Services) 2.0 It will become mandatory for government agencies and businesses in select verticals within the next 2 years. regulation is entering implementation stage in the EU.

Authentication 52

Authentication e-Delivery B2C Marketing 52

Thales Cloud Protection & Licensing

JULY 24, 2018

With more than 65,000 employees in 56 countries, Thales is a global leader in technology solutions for the aerospace, transport, defence and security markets. Its unique capabilities include the design and deployment of equipment, systems and services to meet complex security requirements. But, that’s not the whole story.

Encryption 48

Encryption Cloud Data breaches Government 48

Thales Cloud Protection & Licensing

DECEMBER 11, 2018

What I’d originally planned to write about was a topic that directly applies – why retailers of all stripes are not investing in data security. To make a long story short – the top reason that they didn’t invest in data security was “lack of perceived need” at 52%. But none of these reasons rose to the top in retail.

Retail 66

Retail Data breaches Encryption Mining 66

Hunton Privacy

FEBRUARY 25, 2021

As reported on the Hunton Insurance Recovery blog , on February 4, 2021, the New York Department of Financial Services (“NYDFS”), which regulates the business of insurance in New York, has issued guidelines, in the Insurance Circular Letter No. 2018-L-11008, 2018 WL 4941760 (Ill. For example, Mondelez International Inc.

Insurance 70

Insurance Cybersecurity Risk Education 70

eSecurity Planet

FEBRUARY 16, 2021

The internet is fraught with peril these days, but nothing strikes more fear into users and IT security pros than the threat of ransomware. Raising awareness about ransomware is a baseline security measure. As training sessions have little influence over staff for every potential attack, it makes added security more imperative.

Ransomware 97

Ransomware Encryption Insurance Cloud 97

DLA Piper Privacy Matters

MARCH 1, 2019

The MoU sets out the principles of collaboration and the legal framework governing the sharing of relevant information and intelligence. The FCA is the conduct regulator for 58,000 financial services firms and financial markets in the UK and the prudential regulator for over 18,000 of those firms. promote competition.

Financial Services 51

Financial Services Marketing GDPR Data breaches 51

HL Chronicle of Data Protection

DECEMBER 7, 2018

The California Consumer Privacy Act of 2018 (“CCPA”) exempts information that is collected, processed, sold, or disclosed pursuant to the federal Gramm-Leach-Bliley Act (“GLBA”), and its implementing regulations (the “Privacy Rule”), or the California Financial Information Privacy Act (“CFIPA”). Background.

Privacy 40

Privacy Financial Services Compliance Data breaches 40

Data Matters

FEBRUARY 25, 2021

This follows the FCA’s announcement in its 2020-21 business plan that payment services were one of its main supervisory priorities 1 and its temporary guidance of July 9, 2020, on prudential risk management and safeguarding in light of the COVID-19 pandemic ( Temporary COVID Guidance ). its Perimeter Guidance Manual (PERG).

Authentication 68

Authentication Paper Risk Insurance 68

eSecurity Planet

JANUARY 27, 2022

As threats mount from ransomware gangs , Russian-backed hacker groups , and other nation-sponsored attackers and as the growth in remote work makes security management increasingly complicated, many companies are finding it makes sense to turn to a managed security service provider (MSSP) for help with handling an extremely complex threat landscape.

Security 102

Security Cloud Compliance Analytics 102

HL Chronicle of Data Protection

MARCH 14, 2019

The proposed changes to the Safeguards Rule add a number of more detailed security requirements, whereas the proposed changes to the Privacy Rule are more focused on technical changes to align the Rule with changes in law over the past decade. It includes general, high level elements of a security program, but lacks detailed security steps.

Privacy 40

Privacy Risk Cybersecurity Information Security 40

IT Governance

MARCH 11, 2024

Source (New) Transport USA Yes 3,815 Okta Source 1 ; source 2 (Update) Cyber security USA Yes 3,800 Shah Dixit & Associates, P.C. million for security failings relating to a 2018 cyber attack on its mobile banking platform. UniCredit fined €2.8 about the recent rise in Facebook and Instagram account takeovers by scammers.

Data Privacy 87

Data Privacy Privacy Security Data breaches 87

Information Matters

DECEMBER 7, 2018

UK consumers threaten data breach backlash – Computer Weekly, 5 December 2018. “Seven out of 10 UK consumers and two-thirds, on average, around the world would stop doing business with a brand that suffers a breach of users’ financial or personal data. ” [link]. ” [link]. ” [link]. ” [link]. .

IoT 40

IoT Blockchain Personal data Analytics 40

CGI

DECEMBER 18, 2018

Sibos 2018 – a whirlwind tour of my week down under. Tue, 12/18/2018 - 04:55. CGI has been selected to build the Network, which will have an open architecture and standardised connectivity based on a governance model similar to Swift in order to maximise adoption across the supply chain ecosystem.

Financial Services 40

Financial Services Encryption Marketing GDPR 40

eDiscovery Daily

OCTOBER 21, 2019

Join us to hear examples of failures by a major medical center, a major financial institution, a large federal government agency, and a noted presidential advisor. Find out: How they really feel about security? How law firms can provide more valuable services? What innovation means to them? Why they dismiss law firms?

e-Discovery 45

e-Discovery e-Delivery GDPR Education 45

IT Governance

JANUARY 23, 2024

Publicly disclosed data breaches and cyber attacks: in the spotlight More than 70 million email addresses added to Have I Been Pwned The security researcher Troy Hunt has added more than 70 million email addresses from the Naz.API data set to his Have I Been Pwned data breach notification service. VF Corporation confirms 35.5

Data Privacy 52

Data Privacy Privacy Manufacturing Retail 52

Data Matters

SEPTEMBER 4, 2019

Securities and Exchange Commission on June 5, 2019, broker-dealers and associated persons are required to act in the best interest of a retail customer when recommending a securities transaction or investment strategy involving securities to a retail customer.

Insurance 68

Insurance Paper Risk Analytics 68

IBM Big Data Hub

OCTOBER 16, 2023

Digital sovereignty revolves around a value-driven, ordered, regulated and secure digital destination for all data, hardware and software, infrastructure components and application operations. Data sovereignty addresses legal, privacy, security and governance concerns associated with the storage, processing and transfer of data.

Cloud 74

Cloud Compliance Data Privacy Privacy 74

Security Affairs

NOVEMBER 17, 2019

Security Competition has started, in two days white hat hackers will attempt to exploit flaws in major software. Security Competition has started, white hat hackers will attempt to devise working zero-day exploits for popular software. According to the organizers , in 2018 hackers earned $1,024,000 for a total of 30 vulnerabilities.

Financial Services 79

Financial Services Government Security Cybersecurity 79

The Last Watchdog

MAY 1, 2019

This is stunning: phishing attacks soared in 2018, rising 250% between January and December, according to Microsoft’s Security Intelligence Report. And some of the worst culprits are the very technically savvy people – the security guys are often the worst because they’re very resistant to being told what to do.”

Phishing 166

Phishing Financial Services Manufacturing Education 166

Data Matters

MAY 17, 2022

Attorney General described a recent takedown of a Russian government-sponsored botnet called Cyclops Blink before it was weaponized and caused damage. and foreign government agencies. government reported a significant rise in hacks perpetrated against private companies by nation-state-sponsored threat actors. 19, 2022).

Cybersecurity 97

Cybersecurity Government Authentication Ransomware 97

Data Matters

APRIL 23, 2018

* This article first appeared in In-House Defense Quarterly on April 3, 2018. Increasingly, thought leaders, professional organizations, and government agencies are beginning to provide answers. Creating an enterprise-wide governance structure. Aligning cyber risk with corporate strategy.

Cybersecurity 60

Cybersecurity Risk Passwords Authentication 60

IT Governance

JULY 13, 2018

This week, we discuss operational resilience in the banking and financial market infrastructures sectors, a data breach affecting Thomas Cook subsidiaries, London’s proposed new court building and the latest development in the Facebook/Cambridge Analytica scandal. Hello and welcome to the IT Governance podcast for Friday, 13 July.

Marketing 66

Marketing Business Services Data breaches Paper 66

ForAllSecure

JANUARY 19, 2022

Is there something more secure? Simon Moffatt from CyberHut joins The Hacker Mind to discuss how identity and access management (IAM) is fundamental to everything we do online today, and why even multi-factor access, while an improvement, needs to yield to more effortless and more secure passwordless technology that’s coming soon.

Passwords 52

Passwords Authentication Access Data breaches 52

HL Chronicle of Data Protection

SEPTEMBER 12, 2018

We have heard the California Consumer Privacy Act of 2018 (CCPA) called all these things and more since its enactment on June 28, ?2018. Groundbreaking. Unprecedented. Our experience to date has confirmed the compliance challenge ahead for organizations that engage with the residents of the world’s fifth-largest economy.

Privacy 40

Privacy Compliance GDPR Data breaches 40

CGI

JULY 20, 2018

Fri, 07/20/2018 - 02:40. What’s more, it’s poised to spill over from financial services into a wide range of industries. In fact, NASDAQ developed an exchange for private securities called Linq in 2015. The blockchain bowling alley: How distributed ledger technology goes mainstream. harini.kottees…. Add new comment.

Blockchain 45

Blockchain Financial Services Insurance Manufacturing 45

CGI

JULY 28, 2018

Sat, 07/28/2018 - 02:40. What’s more, it’s poised to spill over from financial services into a wide range of industries. In fact, NASDAQ developed an exchange for private securities called Linq in 2015. The blockchain bowling alley: How distributed ledger technology goes mainstream. adrian.alleyne…. Add new comment.

Blockchain 40

Blockchain Financial Services Insurance Manufacturing 40