IT Governance

MAY 16, 2019

Verizon’s annual DBIR (Data Breach Investigations Report) is among the most valuable studies in the security industry, so the release of the 2019 edition this week is cause for celebration. The reports are renowned for detailed analysis, with the latest study delving into more than 41,000 security incidents.

Data breaches 67

Data breaches Sales Phishing Education 67

IT Governance

JANUARY 10, 2019

This week, we discuss a high-profile German data breach, the top worst passwords of 2018, the resignation of NHS Digital’s CISO, and Microsoft’s latest patches. Coincidentally, SplashData has just published its annual list of 100 weak passwords, culled from the previous 12 months’ publicly disclosed data breaches.

Data breaches 77

Data breaches Passwords GDPR Personal data 77

IT Governance

JULY 19, 2018

This week, we discuss a £200,000 fine for the IICSA, a move to suspend the EU-US Privacy Shield, how much a data breach might cost your organisation, and the sentencing of two National Lottery hackers. IBM and Ponemon Institute have released the 2018 edition of their annual Cost of a Data Breach Study.

Data breaches 66

Data breaches Privacy Personal data Compliance 66

Data Protection Report

AUGUST 29, 2017

Earlier this month, Delaware revamped its data breach notification law, with changes to go into effect April 14, 2018. Most notably, the new law requires any entity that has suffered a data breach that includes social security numbers to provide free credit monitoring services to affected residents for one year.

Data breaches 40

Data breaches Insurance Encryption Passwords 40

John Battelle's Searchblog

DECEMBER 19, 2017

The post Predictions 2017 – How’d I Do This Year? appeared first on John Battelle's Search Blog. As I wrote nearly 12 months ago , 2017 felt particularly unpredictable. What I do know, however, is that in 2017, the table was well and truly set for open approaches to make a comeback. The reason?

Privacy 55

Privacy Marketing IT Data collection 55

IT Governance

NOVEMBER 23, 2018

It’s therefore vital that retailers ensure they’re compliant with the PCI DSS (Payment Card Industry Data Security Standard). The Standard will help you secure cardholder data by providing a baseline of 12 security requirements to shape processes, procedures and systems most effectively. Get in touch today!

Retail 58

Retail Security Data breaches Sales 58

Troy Hunt

JANUARY 14, 2018

I don't know how many data breaches I'm sitting on that I'm yet to process. In that post, I spoke about people giving up when it gets too hard: Many well-intentioned people simply give up and don't report serious security incidents when the effort is too high or the risk is too great. Level 1: Published Security Contact Info.

Data breaches 59

Data breaches Passwords Communications Security 59

eSecurity Planet

DECEMBER 3, 2021

Here are the top Twitter accounts to follow for the latest commentary, research, and much-needed humor in the ever-evolving information security space. Security enthusiast and Linux evangelist Binni Shah consistently offers valuable tutorials, guides, and insights for the cybersecurity community. Binni Shah | @binitamshah.

Cybersecurity 139

Cybersecurity e-Discovery Passwords Information Security 139

Troy Hunt

DECEMBER 3, 2023

The very next day I published a blog post about how I made it so fast to search through 154M records and thus began a now 185-post epic where I began detailing the minutiae of how I built this thing, the decisions I made about how to run it and commentary on all sorts of different breaches. And then ensured could never happen again.

Data breaches 145

Data breaches Passwords Sales IT 145

IT Governance

OCTOBER 24, 2019

Technology can only do so much to protect an organisation from data breaches. That’s why Requirement 12 of the PCI DSS (Payment Card Industry Data Security Standard) instructs organisations to implement policies and procedures to help staff manage risks. Fast-track your documentation process.

Security awareness 66

Security awareness Information Security Risk Data breaches 66

IT Governance

JUNE 3, 2020

million) in 2017 to $13 million (£10.3 This represents a 12% increase year-on-year and a 73% increase over a five-year span, demonstrating how rapidly the cost of cyber crime is growing. Besides staff awareness training, you must rely on strict information security policies and hope that employees follow them. million (about £8.6

Ransomware 72

Ransomware Personal data Phishing Risk 72

IT Governance

DECEMBER 13, 2018

This week, in our last podcast of the year, we revisit some of the biggest information security stories from the past 12 months. As is now traditional, I’ve installed myself in the porter’s chair next to the fire in the library, ready to recap some of the year’s more newsworthy information security events.

Data breaches 71

Data breaches Personal data Access GDPR 71

IBM Big Data Hub

MAY 26, 2023

According to a report on mapping the cloud maturity curve from the EIU , 48% of industry executives said cloud has improved data access, analysis and utilization, 45% say cloud has sped up delivery of new IT services and capabilities, and 44% say cloud has expanded sales channels across digital avenues.

Cybersecurity 77

Cybersecurity Cloud Compliance Computer and Electronics 77

IT Governance

MARCH 28, 2019

They often work with tight budgets and lack the resources to retain a dedicated information security team. Additionally, schools process large amounts of children’s data, which merits extra protection. What’s considered plain language to a 12-year-old will probably be a lot different than, say, a 5-year-old.

GDPR 92

GDPR Compliance Data breaches Personal data 92

Krebs on Security

JANUARY 25, 2022

But Jim has long had a security freeze on his credit file with the three major consumer credit reporting bureaus , and none of the lenders seemed willing to proceed without at least a peek at his credit history. Then in mid-January, Jim heard from MSF via snail mail that they’d discovered a data breach.

Financial Services 225

Financial Services IT Data breaches Authentication 225

Krebs on Security

JUNE 25, 2019

In July 2017, Russian antivirus vendor Dr.Web published research showing that Triada had been installed by default on at least four low-cost Android models. com 2012-12-09 ALIBABA CLOUD COMPUTING (BEIJING) CO., Google declined to elaborate on its blog post. com and rurimeter[.]com 2333youxi[.]com blazefire[.]com blazefire[.]net

Cloud 254

Cloud Manufacturing Marketing Data breaches 254

IT Governance

JUNE 29, 2018

This week, we discuss the apparent leak of 340 million data records, a vulnerability that exposed sensitive BetVictor data, a data breach affecting up to 40,000 Ticketmaster customers, and the number of GDPR complaints since 25 May. Hello and welcome to the IT Governance podcast for Friday, 29 June 2018.

GDPR 76

GDPR Passwords Data breaches Access 76

IT Governance

DECEMBER 27, 2019

A royal baby, a fire at Notre-Dame, the highest grossing film of all time and more than 12 billion breached data records: 2019 has been quite a year. IT Governance is closing out the year by rounding up 2019’s biggest information security stories. Mumsnet disclosed a data breach affecting 4,000 people.

Data breaches 69

Data breaches GDPR Passwords Personal data 69

IT Governance

NOVEMBER 24, 2017

This week, we discuss Uber’s cover-up of a 2016 breach that compromised 57 million drivers’ and customers’ personal information, the theft of almost $31 million worth of USDT and more than €100,000 worth of Bitcoin, and good news for victims of Western Union transfer scams. Here are this week’s stories.

Data breaches 65

Data breaches Access Blockchain Cloud 65

Data Matters

MAY 17, 2022

It used to be that data breaches were all about cyber-crooks hacking computer systems to steal personal information, followed by an affected company sending regretful notification letters offering a year or two of complimentary credit monitoring. 26,633 (May 12, 2021). All rights reserved. 14,028, 86 Fed.

Cybersecurity 97

Cybersecurity Government Authentication Ransomware 97

IT Governance

OCTOBER 11, 2018

Hello and welcome to the IT Governance podcast for Friday, 12 October. By the way, please don’t be afraid to say hello, ask few questions, put me straight about any errors I’ve made, or whatever in the comments section of the blog. Here are this wee- actually, can we have a quick word about that theme tune?

Personal data 73

Personal data Manufacturing Data breaches Government 73

Troy Hunt

JANUARY 3, 2019

On the other hand, it's 12 less cities and 1 less country and the main reason for that is I've been trying to cram less into trips. In fact, I'm sure that's why the next 3 blog posts are up there too because they're all from similar incidents (number 6 in that list was also from 2017).

Passwords 81

Passwords Security IT Government 81

Privacy and Cybersecurity Law

AUGUST 1, 2018

This blog summarises the key messages. The ICO has been involved in producing significant GDPR guidance in the last 12 months and has also run an internal change management process to ensure it is up to the demands placed upon it by GDPR (think: extra staff, new breach reporting functions and helplines).

GDPR 40

GDPR Data breaches Personal data Privacy 40

KnowBe4

MAY 9, 2023

New school security awareness training can help any organization sustain that line of defense and create a strong security culture. Blog post with links: [link] A Master Class on IT Security: Roger A. And this enormous security gap leaves you open to business email compromise, session hijacking, ransomware and more.

Phishing 70

Phishing Passwords Insurance Systems administration 70

Krebs on Security

JUNE 25, 2019

In July 2017, Russian antivirus vendor Dr.Web published research showing that Triada had been installed by default on at least four low-cost Android models. com 2012-12-09 ALIBABA CLOUD COMPUTING (BEIJING) CO., Google declined to elaborate on its blog post. com and rurimeter[.]com 2333youxi[.]com blazefire[.]com blazefire[.]net

Cloud 169

Cloud Manufacturing Marketing Data breaches 169

HL Chronicle of Data Protection

MAY 29, 2019

Following the one-year anniversary of the coming into effect of the GDPR, Hogan Lovells’ Privacy and Cybersecurity practice has prepared summaries of key GDPR-related developments of the past 12 months. More details in this blog post. More details in this blog post. More details in this blog post.

GDPR 40

GDPR Personal data Privacy Information architecture 40

OneHub

MAY 10, 2021

This tech is outside your IT team’s control and may violate security protocols. It’s chilling to realize your employees may be putting intellectual property and other sensitive data at risk. It’s chilling to realize your employees may be putting intellectual property and other sensitive data at risk. Encryption.

Risk 52

Risk IT Passwords Authentication 52

Data Matters

SEPTEMBER 29, 2021

4 The Federal Rules of Civil Procedure have begun — since their inception — with a guiding command for courts to seek “to secure the just, speedy, and inexpensive determination of every action and proceeding.”5 12 In other words, the 1983 amendment was seen as limiting the depth rather than the breadth of discovery.13.

Privacy 97

Privacy e-Discovery Computer and Electronics e-Delivery 97

Data Matters

AUGUST 19, 2020

The NYDFS Cybersecurity Regulation became effective in March 2017 and, beginning on February 15, 2019, required all NYDFS-regulated entities (Covered Entities), including First American, to annually certify compliance with the Regulation. e) and 500.01(g), g), respectively.

Financial Services 68

Financial Services Cybersecurity Insurance Risk 68

Data Matters

APRIL 23, 2018

Recent guidance from the Securities and Exchange Commission (SEC) on disclosure and enforcement actions by the Federal Trade Commission (FTC) make clear that cybersecurity is no longer a niche topic, but a concern significant enough to warrant the oversight of corporate boards of directors. Designing an Enterprise-Level Approach.

Cybersecurity 60

Cybersecurity Risk Passwords Authentication 60

eDiscovery Daily

JANUARY 29, 2018

Sessions in the main conference tracks include: 12:00 – 1:00 PM: Don’t be a ‘Burden’: Arguments Around Proportionality. When it comes to managing discovery, companies are concentrating more than ever on how to manage and better control their ever increasing data consumption. There are plenty of interesting sessions today.

e-Discovery 34

e-Discovery GDPR Compliance Analytics 34