Security Affairs

FEBRUARY 14, 2020

The government experts released new and updated Malware Analysis Reports (MARs) related to new malware families involved in new attacks carried out by North Korea-linked HIDDEN COBRA group. US agencies also updated information included in a MARs report on the HOPLIGHT proxy-based backdoor trojan that was first analyzed in April 2019.

Passwords 117

Passwords Access Phishing Authentication 117

Data Protection Report

JUNE 17, 2020

On 19 December 2019, the Advocate General ( AG ) gave his non-binding opinion on the questions raised in the case. However, this exercise may not be that simple as what intelligence agencies are interested in is not meant to be well signposted and the laws governing their activities can be opaque and very specialist.

Personal data 119

Personal data Communications Access GDPR 119

Managing Your Information

JANUARY 8, 2019

Tkm Consulting is delighted to announce new data protection courses are available for 2019. The qualifications focus on enabling those attending to gain practical skills to achieve compliance, covering relevant data protection legislation, information governance, managing risk. What courses are available? What Do Other People Say?

Compliance 28

Compliance GDPR Information governance Risk 28

Managing Your Information

JANUARY 8, 2019

Tkm is delighted to announce new data protection courses are available for 2019! The qualifications focus on enabling those attending to gain practical skills to achieve compliance, covering relevant data protection legislation, information governance, managing risk. The post BCS Data Protection Courses Available for 2019!

Compliance 28

Compliance GDPR Information governance Risk 28

Thales Cloud Protection & Licensing

SEPTEMBER 12, 2019

Now that it’s September, the excitement is beginning to build in earnest for the 2019 Rugby World Cup. Japan, the host country of both the 2019 Rugby World Cup and the 2020 Summer Olympic Games, is well-aware of these previous incidents. Sports fans aren’t the only ones who are looking forward to this event.

Security 105

Security IoT Personal data Military 105

Hunton Privacy

JULY 14, 2020

The Paper, titled “Data Subject Rights under the GDPR in a Global Data Driven and Connected World,” was drafted following the EDPB stakeholders’ event on DSR in Brussels on November 4, 2019. The EDPB Guidelines should describe the applicable grounds to exercise DSRs and provide a common assessment matrix for their handling.

Paper 108

Paper GDPR Education Access 108

Unwritten Record

AUGUST 2, 2022

Government-issued combat boots. Army’ 3rd Armd Div Winter Shield Exercise plan the day’s reconnaissance during field exercise in Bavaria in West Germany. during the US Army’s Winter Shield exercise is played as realistically as possible. and civilian life. March 1, 1960. Local ID: 111-SC-570995.

Archiving 51

Archiving Military Libraries Government 51

Collibra

JANUARY 27, 2021

In 2019, we caught up with Roberto Maranca, Vice President Data Excellence at Schneider Electric, where digital transformation is at its core. Collibra : Roberto, when we met with you in 2019, not long after GDPR was implemented, you were early in your journey with Collibra – and we were all relatively new to GDPR for that matter.

Digital transformation 69

Digital transformation Data Privacy GDPR Manufacturing 69

Elie

DECEMBER 12, 2019

is a landmark European ruling that governs the delisting of personal information from search results. During the first five years after this ruling came into effect (May 2014 to May 2019) , Google received ~3.2 Removing legal history comprised 21% of all delisting requests (19% target news sites and 2% government-related sites).

Privacy 118

Privacy Paper Government GDPR 118

Security Affairs

MARCH 16, 2019

— YouTube (@YouTube) March 15, 2019. Government experts are warning of spam campaigns using messages containing links pointing to malware or using malicious attachments. “Users should exercise caution in handling emails related to the shooting, even if they appear to originate from trusted sources.”

Phishing 84

Phishing Cybersecurity Government Security 84

InfoGovNuggets

JANUARY 24, 2019

“China’s Internet Watchdog Closes Hundreds of Websites, Criticizes Tencent App,” The Wall Street Journal , January 24, 2019. Interesting interplay of Governance (who’s in charge?) Europe exercises similar control, with the right to be forgotten. and Compliance, all with Information in the background.

Compliance 28

Compliance Government 28

InfoGovNuggets

MARCH 24, 2019

“Facebook, YouTube, Twitter Scramble to Remove Video of New Zealand Mosque Shooting,” The Wall Street Journal , March 16, 2019. So you exercise Governance by establishing controls, and make sure people comply. Platforms work to remove video of massacre.

Government 28

Government IT Compliance 28

Hunton Privacy

JANUARY 15, 2021

On December 16, 2020, the Committee of Experts within India’s Ministry of Electronics and Information Technology (MeitY) (the “Committee”) issued a revised report on the Non-Personal Data Governance Framework (the “NPDF”) for India (the “Revised Committee Report”).

Personal data 68

Personal data Government Privacy IT 68

InfoGovNuggets

MARCH 17, 2019

. “Facebook Cracks Down on Vaccine Misinformation,” The Wall Street Journal , March 8, 2019. Even though not a government entity (yet, anyway), Facebook attempts to stop the spread of (what Facebook thinks is false) information about vaccinations.

Government 28

Government IT Compliance 28

InfoGovNuggets

JANUARY 22, 2019

“Facebook’s WhatsApp Fights Fake News by Curbing Message Forwarding,” The Wall Street Journal , January 22, 2019. Is that Governance or Information or both? Maybe to avoid new Indian legislation that would exercise more control over the app, which would be Governance and Compliance.

Compliance 28

Compliance Government IT 28

Security Affairs

DECEMBER 30, 2019

Open Media pointed out that that Windows XP is the last operating system developed by Microsoft that was approved by the Kremlin for use on official Russian government computers. Microsoft Windows 10 is only allowed only for government systems that don’t manage secret information. ” reads the post published by The Guardian.

Government 75

Government Communications Military Manufacturing 75

Data Matters

JUNE 26, 2019

Argus Leader Media , decided on June 24, 2019 , the Supreme Court reversed 45 years of understanding that Exemption 4 only protects confidential business information whose disclosure by the government would cause “substantial competitive harm.”. In a very significant FOIA decision for business, Food Mktg.

FOIA 68

FOIA Government Privacy IT 68

eSecurity Planet

FEBRUARY 26, 2024

The fix: System administrators are encouraged to install the Exchange Server 2019 Cumulative Update 14 (CU14), which was issued in February 2024 and enabled NTLM credentials Relay Protection. Despite law enforcement efforts, LockBit attacks continue to target important infrastructure such as municipal governments and healthcare providers.

Risk 113

Risk Authentication Systems administration Ransomware 113

InfoGovNuggets

MAY 7, 2019

“Supreme Court Reveals Deep Divisions on 2020 Census Citizenship Question,” The Wall Street Journal , April 24, 2019. That is the Governance question. Questions and answers are information, no doubt. But who controls what questions can be asked? Versus whether it is a good idea to ask the question.

Government 28

Government IT 28

Security Affairs

APRIL 21, 2019

Locked Shields 2019 – Chapeau, France wins Cyber Defence Exercise. CVE-2019-0803 Windows flaw exploited to deliver PowerShell Backdoor. Hacker broke into super secure French Governments Messaging App Tchap hours after release. Gnosticplayers round 5 – 65 Million+ fresh accounts from 8 security breaches available for sale.

Security 62

Security Computer and Electronics Sales Data breaches 62

IT Governance

MAY 30, 2019

Any other body that has statutory functions to exercise public authority or public powers for law enforcement purposes. Presented by IT Governance Consultancy Manager Shaun Beresford, this webinar covers: What Part 3 of the DPA 2018 is and why you need to pay attention to it; Key definitions for law enforcement processing.

GDPR 49

GDPR Personal data Government Compliance 49

Hunton Privacy

DECEMBER 1, 2020

million on Carrefour France and a fine of €800,000 on Carrefour Banque for various violations of the EU General Data Protection Regulation (“GDPR”) and Article 82 of the French Data Protection Act governing the use of cookies. On November 26, 2020, the French Data Protection Authority (the “CNIL”) announced that it imposed a fine of €2.25

GDPR 91

GDPR Personal data Data collection Marketing 91

Data Protection Report

SEPTEMBER 23, 2021

The matter involved one of France’s largest insurers, SGAM AG2R LA MONDIALE, which was subject to an inspection by the French data protection authority (the CNIL), in 2019. Perhaps the CNIL’s €1.75 million (USD $2,051,930) penalty for over-retention will lead to a different view.

Personal data 110

Personal data Insurance GDPR Record destruction 110

The Texas Record

APRIL 9, 2019

The Texas Historical Records Advisory Board (THRAB) is offering in 2019 a series of professional development opportunities to equip those caring for archival materials with the knowledge, skills and hands-on experience needed to prepare repositories for threats and recover damaged collections. Each will be a two-day event.

Archiving 40

Archiving Government 40

IT Governance

MARCH 11, 2019

The UK government decided that it makes sense to continue using the existing framework, given that it already applies in the UK. The UK government decided that there must be specific data protection requirements for MI5, MI6 and GCHQ. appeared first on IT Governance Blog. An overview of the DPA.

GDPR 79

GDPR Personal data Compliance Government 79

The Last Watchdog

OCTOBER 9, 2019

I had the chance to visit with Bresman at Black Hat 2019. Here’s a scenario for how AD is factoring into ransomware attacks: The attacker gets a toehold inside the network by phishing an employee login , or via a targeted credential stuffing exercise, or through cross-site scripting.

IT 164

IT Ransomware Phishing Encryption 164

Hunton Privacy

JULY 25, 2019

As previously reported on July 12, 2019, Facebook will pay a $5 billion penalty to the Federal Trade Commission to resolve a privacy probe into whether Facebook violated a prior FTC consent decree requiring the company to better protect user privacy. In addition to the penalty, the settlement order, finalized by the U.S.

Privacy 60

Privacy Passwords Compliance Encryption 60

Hunton Privacy

MARCH 19, 2019

On March 12, 2019, the European Data Protection Board (“EDPB”) adopted an opinion on the interplay between the EU Directive on Privacy and Electronic Communications (“the ePrivacy Directive”) and the General Data Protection Regulation (“GDPR”) (the “Opinion”).

GDPR 45

GDPR Personal data Communications Government 45

DLA Piper Privacy Matters

OCTOBER 31, 2019

Promotion of online mechanisms for users to exercise data subject rights (deletion, de-registration, access, correction, revoke consent etc.). Additional governance/administration activities, including: (i) appointment of DPO and management committee; and (ii) record keeping obligations. Personal Financial Information Measures.

Data Privacy 49

Data Privacy Privacy Data collection Data breaches 49

eDiscovery Daily

APRIL 30, 2019

With plenty of exercises to test your knowledge and Mock 26(f) Conferences on the last day. The Academy runs from Sunday, June 2, 2019 to Friday, June 7, 2019 at the Georgetown University Law Center, 600 New Jersey Ave NW, Washington, DC 20001. Even Mobile Data Preservation, Rule 502 and Ethics. And, there is CLE credit to boot!

Data preservation 60

Data preservation Education Authentication Government 60

DLA Piper Privacy Matters

JANUARY 24, 2019

On 23 January 2019, the European Commission adopted its decision finding that the level of data protection in the EU and Japan are equivalent. Both decisions are applicable as of 23 January 2019. In parallel, Japan adopted its equivalent decision. It is the first time ever that such reciprocal adequacy decisions are adopted.

Personal data 61

Personal data GDPR Paper Access 61

DLA Piper Privacy Matters

NOVEMBER 5, 2019

Promotion of online mechanisms for users to exercise data subject rights (deletion, de-registration, access, correction, revoke consent etc.). Additional governance/administration activities, including: (i) appointment of DPO and management committee; and (ii) record keeping obligations. avoid excessive data collection).

Data collection 45

Data collection Data breaches Privacy Information Security 45

IT Governance

MARCH 17, 2020

Cyber security experts have found that the 2019 novel coronavirus (COVID-19) has led to a surge in phishing scams , with both individuals and organisations at risk. For example, millions of employees will likely to be forced to work remotely, as the UK government prepares for a lockdown scenario. Scammers are cashing in on coronavirus.

Phishing 114

Phishing Risk Communications Government 114

Privacy and Cybersecurity Law

JUNE 23, 2021

The Regulation is one of several legal provisions implementing the Law Decree of 21 September 2019, no. With regard to Italy, as anticipated, the Regulation represents only one of six law provisions required to implement the measures introduced by the Law Decree of 21 September 2019, No. 105 (establishing the NCSP).

Cybersecurity 52

Cybersecurity Communications Data breaches Security 52

DLA Piper Privacy Matters

APRIL 23, 2020

In early March, the Washington state legislature passed a public sector facial recognition privacy bill that has been little noticed due the failure of the Washington Privacy Act (WPA) as well as the subsequent coronavirus disease 2019 (COVID-19) pandemic, which emerged quickly in the state. The key provisions of the law are as follows: I.

Privacy 52

Privacy Government Insurance IT 52

Hunton Privacy

JUNE 10, 2020

On June 9, 2020, the French Data Protection Authority (the “CNIL”) published its Annual Activity Report for 2019 (the “Report”). The Report provides an overview of the CNIL’s enforcement activities in 2019. The CNIL received 2,287 data breach notifications in 2019. The CNIL served 42 formal notices to companies in 2019.

Personal data 86

Personal data Marketing Data breaches Passwords 86

Hunton Privacy

MARCH 11, 2019

On March 5, 2019, the Global Privacy Enforcement Network (“GPEN”), a global network of more than 60 data protection authorities (“DPAs”) around the world, published the results of its 2018 intelligence gathering operation on organizations’ data privacy accountability practices (the “Sweep”).

Privacy 74

Privacy Data Privacy GDPR Personal data 74