Information Management Today

CHINA: New draft proposes more stringent requirements for processing data in the financial services industry

DLA Piper Privacy Matters

AUGUST 8, 2023

Regulated Data includes personal and non-personal data categories, but state secrets are specially carved out from the scope of Regulated Data. Access controls, storage media, backups, encryption, transfer controls and retention period must be determined based on the category, grade and level of Regulated Data.

Financial Services

Financial Services Personal data Compliance Data collection

Thales Wins Big in 2023

Thales Cloud Protection & Licensing

NOVEMBER 1, 2023

Google Cloud Technology Partner of the Year Award Thales was selected as the Google Cloud Technology Partner of the Year in the Security – Data Protection category. With over 20 categories recognizing MSP and vendor achievements, the awards are among the most prestigious in the industry.

Cloud

Cloud Cybersecurity Marketing Ransomware

T-Mobile suffered a new data breach

Security Affairs

DECEMBER 29, 2021

According to The T-Mo Report , which viewed T-Mobile internal documents, there was “unauthorized activity” on some customer accounts. “Affected customers fall into one of three categories. “The second category an affected customer might fall into is having their SIM swapped.” ” reported The T-Mo Report.

Data breaches

Data breaches Access Security Information Security

Webinars

Generative AI Deep Dive: Advancing from Proof of Concept to Production

MORE WEBINARS

Police seized Crimemarket, the largest German-speaking cybercrime marketplace

Security Affairs

MARCH 1, 2024

The Düsseldorf Police announced that a large-scale international law enforcement operation led to the seizure of the largest German-speaking cybercrime marketplace. “Based on the usual structure of legal digital marketplaces, narcotics, criminal services, but also detailed instructions on serious crimes were sold in various categories.

Access

Access IT Information Security Security

New Study: 2018 State of Embedded Analytics Report

Why do some embedded analytics projects succeed while others fail? We surveyed 500+ application teams embedding analytics to find out which analytics features actually move the needle. Read the 6th annual State of Embedded Analytics Report to discover new best practices. Brought to you by Logi Analytics.

Analytics

Privacy notices – the ICO follows the lead of the EU data protection authorities in their interpretation of Article 13 UK GDPR

Data Protection Report

JUNE 6, 2023

The requirement to detail “recipient or categories of recipients of the personal data” (Art 13(1)(e)): Vague, broad lists of categories of recipients are not sufficient. Instead, the ICO’s preferred approach is for actual named recipients to be listed.

Privacy

Privacy GDPR Personal data Compliance

The Road to Actionable Threat Intelligence

Data Breach Today

APRIL 3, 2018

Processing and parsing intelligence from all sources - external and internal, structured and abstract - across three important categories is essential to a proactive, predictive threat intelligence framework, says Verizon's Ashish Thapar

Is the SEC Coming for Your Texts? SEC’s New Enforcement Director Telegraphs a Warning to Registrants About Improper Use of Personal Devices for Business-Related Communications

Data Matters

OCTOBER 13, 2021

Rule 17a-4 under the Securities Exchange Act requires broker-dealers to maintain a broad range of records for a period of not less than six or three years, depending on the category. reviewing their record retention practices to ensure they comport with the retention periods statutorily required and internal policies and procedures.

Communications

Communications Marketing Privacy Compliance

Data from Airlink International UAE leaked on multiple dark web forums

Security Affairs

OCTOBER 8, 2020

Cybersecurity researchers from Cyble have spotted a threat actor sharing leaked data of Airlink International UAE for free on two different platforms. Cybersecurity researchers from Cyble have found a threat actor sharing leaked data of Airlink International UAE for free on two platforms on the dark web. Pierluigi Paganini.

Insurance

Insurance Cybersecurity Communications Risk

GUEST ESSAY: How SIEMS, UEBAs fall short in today’s turbulent threat landscape

The Last Watchdog

JULY 30, 2018

Over the past decade, cyber security solutions have evolved into specific categories of solutions. Grouping similar items into categories serve a particular purpose. For example, sports cars represent an entirely different category of vehicles than luxury vehicles. Categories of vehicles are somewhat easy to define.

Analytics

Analytics Cybersecurity Data collection Security

Five Sidley Practices Recognized as Law360 “Practice Groups of the Year”

Data Matters

NOVEMBER 30, 2020

Sidley was named to Law360 ’s 2020 “Practice Groups of the Year” in five categories: Compliance. International Arbitration. International Trade. Structured Finance.

Compliance

Compliance Privacy

How to Comply with GDPR, PIPL, and CCPA

eSecurity Planet

DECEMBER 22, 2021

Also Read: China’s Data Privacy Law Poses Challenge for International Companies. If you’re currently storing data on individuals that haven’t given their consent and it doesn’t fall into one of the appropriate use categories, you need to give those people the option of withdrawing their consent. Who Does PIPL Affect?

GDPR

GDPR Compliance Data Privacy Privacy

CIPL Submits Response to China’s Personal Information Protection Law

Hunton Privacy

NOVEMBER 19, 2020

In its response, CIPL highlights several possible modifications of the PIPL, which it believes the NPC should consider and adopt during its review, not only to ensure China’s standing in the international data protection space but also to ensure the protection of China’s citizens, businesses and government data.

GDPR

GDPR Privacy Risk Government

Europe: CJEU decision – Right of access to individual recipients of personal data

DLA Piper Privacy Matters

JANUARY 19, 2023

In response to the request, the controller provided the data subject with the categories of recipients and also referred to a website that set out more information and further data processing purposes. The referral to the CJEU arose from a data subject access request (“ DSAR ”) under Article 15 GDPR.

Personal data

Personal data Access GDPR Privacy

US SEC charges SolarWinds and its CISO for alleged cybersecurity misstatements and controls failures

Data Protection Report

NOVEMBER 14, 2023

The SEC’s Complaint is riddled with internal electronic communications, including emails and instant messages, which the SEC contends demonstrate that employees knew that the cybersecurity practices were insufficient. The SEC also alleges that the Company had multiple internal control failures and deficient disclosure controls.

Cybersecurity

Cybersecurity IT Risk Passwords

Dentons Privacy Community: Data transfers from Asia – key takeaways

Privacy and Cybersecurity Law

OCTOBER 4, 2021

Dentons Privacy Community met on September 15, 2021 to discuss how to approach international data transfers in Asia, in particular Singapore, Korea, Hong Kong and China. Provisions governing international transfers impose requirements on “information and communications services providers” where they intend to transfer data abroad.

Privacy

Privacy Personal data Data Privacy Government

Counting Down to the EU NIS2 Directive

Thales Cloud Protection & Licensing

MAY 22, 2024

NIS2 adds digital service providers, waste management, pharmaceutical and labs, space, and public administration to the ‘Essential’ sectors category. Expanded Scope The original version of NIS identified only healthcare, transport, digital infrastructure, water supply, banking, financial market infrastructure, and energy as essential sectors.

Compliance

Compliance Authentication Healthcare Cybersecurity

Internationa police operation led to the arrest of the SilverTerrier gang leader

Security Affairs

MAY 25, 2022

The Nigeria Police Force has arrested the suspected leader of the SilverTerrier cybercrime group as a result of an international operation. The man was arrested by the police at the Murtala Mohammed International Airport in Lagos. Please vote for Security Affairs and Pierluigi Paganini in every category that includes them (e.g.

Cybersecurity

Cybersecurity Phishing Security Government

Request for Feedback on the Universal Electronic Records Management Requirements

National Archives Records Express

NOVEMBER 18, 2022

Reviewing the records categories Adding language on digital preservation and digitization Aligning with national and international standards. We are now in the process of reviewing the requirements and making updates. A few of the suggestions we’ve heard over the last few years include: . We want to hear from you!

Records Management

Records Management Digital preservation

Security Affairs newsletter Round 368 by Pierluigi Paganini

Security Affairs

JUNE 5, 2022

If you want to also receive for free the newsletter with the international press subscribe here. Please vote for Security Affairs and Pierluigi Paganini in every category that includes them (e.g. A new round of the weekly Security Affairs newsletter arrived! Million Alert!

Security

Security CMS Ransomware Cybersecurity

What VCs See Happening in Cybersecurity in 2023

eSecurity Planet

DECEMBER 7, 2022

Despite all this, there is one tech category that has held up fairly well: Cybersecurity. One of the firm’s investments in this category is Immuta. This is both for SaaS applications and internal enterprise solutions. Looking at 2023, he says that ransomware solutions will be a hot category.

Cybersecurity

Cybersecurity Compliance Risk Ransomware

An international police operation dismantled FluBot spyware

Security Affairs

JUNE 2, 2022

An international law enforcement operation involving 11 countries resulted in the takedown of the FluBot Android malware. An international law enforcement operation involving 11 countries led to the takedown of the infamous FluBot Android malware. ” reads the announcement published by Europol. Pierluigi Paganini.

Passwords

Passwords Access Security Cybersecurity

US dismantled and seized SSNDOB cybercrime marketplace

Security Affairs

JUNE 8, 2022

An international operation led by the US authorities dismantled and seized the infrastructure of the online marketplace SSNDOB. The international operation was conducted by the FBI, the Internal Revenue Service, and the Department of Justice, along with the Cyprus Police. ” reads the press release published by DoJ.

Blockchain

Blockchain Marketing Sales Security

WEU, EEU TONER SINGLE-FUNCTION PRINTER MARKETS IN 2023

Info Source

MARCH 7, 2024

SPEEDS Regarding the BW speed categories, the most intense decline was recorded within the low-end market segments (0-19 ppm, 20-29 ppm and 30-39 ppm), while the most popular 40-59 ppm category increased by 2%. The main category was 30-49 ppm, which declined slightly by 3%. The high-end market (60-90+ ppm) fell by 11%.

Marketing

Marketing Sales Manufacturing IT

NON-STATE ACTORS IN THE CYBERSPACE: AN ATTEMPT TO A TAXONOMIC CLASSIFICATION, ROLE, IMPACT AND RELATIONS WITH A STATE’S SOCIOECONOMIC STRUCTURE

Security Affairs

JUNE 28, 2022

Cyber Non-State Actors (CNSA) are key figures in our globalized world: their operations could have a significant impact on international affairs, politics, and on the economy, as much as states do. The capability of Cyber Non-State Actors to influence state decision-making processes depends on their specific category.

Paper

Paper Military Government IT

App Builder Release with Grid CRUD Actions, Nested Data-binding Support, Category Chart Aggregations and more

Enterprise Software Blog

FEBRUARY 9, 2023

Group and aggregate data in Category chart when repeated labels are present. Chart Aggregations feature You can now g roup and aggregate data in Category chart when repeated labels are present. Let’s say you wanted to group by Category (groceries, household, restaurants) and then obtain the maximum value of the Amount column.

Cloud

Cloud Access Data collection Libraries

Wanted: Disgruntled Employees to Deploy Ransomware

Krebs on Security

AUGUST 19, 2021

According to the latest figures (PDF) released by the FBI Internet Crime Complaint Center (IC3), the reported losses from BEC scams continue to dwarf other cybercrime loss categories, increasing to $1.86 billion in 2020. Image: FBI.

Ransomware

Ransomware Access Phishing Encryption

Hundreds of network operators’ credentials found circulating in Dark Web

Security Affairs

JANUARY 30, 2024

As an example of compromised accounts, Resecurity outlined exposed access credentials belonging to a major data center and one of the largest vendors providing international-scale network telephony connectivity to governmental and national telecom providers in Africa.

Passwords

Passwords Cybersecurity Cloud Access

UK ICO Publishes New Guidance and a Tool for Transfer Risk Assessments

Hunton Privacy

NOVEMBER 18, 2022

On November 17, 2022, the UK data protection regulator, the Information Commissioner’s Office (“ICO”), published updated guidance on international transfers that includes a new section on transfer risk assessments (“TRAs”) and a TRA tool. The TRA tool is a template document with six questions and guidance on how to complete the TRA.

Risk

Risk Privacy Government Access

CHINA: new Anti-Espionage Law and its impact on your China data and operations – how your organisation should respond

DLA Piper Privacy Matters

MAY 16, 2023

However, its effects have already been felt by some international businesses. So what should international businesses do to respond to these new risks? Authors: Carolyn Bigg , Amanda Ge , Venus Cheung , Gwyneth To China’s amended Anti-Espionage Law will take effect from 1 July 2023.

IT

IT Compliance Communications Risk

Security Affairs newsletter Round 369 by Pierluigi Paganini

Security Affairs

JUNE 12, 2022

If you want to also receive for free the newsletter with the international press subscribe here. Please vote for Security Affairs and Pierluigi Paganini in every category that includes them (e.g. A new round of the weekly Security Affairs newsletter arrived! To nominate, please visit:?.

Security

Security Ransomware Cybersecurity Encryption

Adapture Awarded 2023 Smartsheet Partner Win of the Year

Adapture

SEPTEMBER 19, 2023

“This recognition is all because of our commitment to aligning with the internal Smartsheet teams while building best in class solutions for Smartsheet clients.” The Partner Win of the Year award was part of Smartsheet’s Global Partner Summit and is part of an expanded set of award categories.

Sales

Sales Marketing IT Security

Three Nigerian men arrested in INTERPOL Operation Killer Bee

Security Affairs

MAY 30, 2022

Interpol arrested 3 Nigerian men in Lagos, as part of an international operation codenamed Killer Bee. Please vote for Security Affairs and Pierluigi Paganini in every category that includes them (e.g. Security Affairs is one of the finalists for the best European Cybersecurity Blogger Awards 2022 – VOTE FOR YOUR WINNERS.

Cybersecurity

Cybersecurity Security Access IT

GUEST ESSAY: Addressing data leaks and other privacy, security exposures attendant to M&As

The Last Watchdog

JANUARY 27, 2022

They can be divided into two categories: Pre-Close Risks. These internal employees have access to sensitive information and as result, may intentionally or unintentionally leak confidential details which can compromise the deal altogether. This due diligence process should account for: •Deal information exposure.

Privacy

Privacy Security Risk Marketing

CHINA: Clarifications of data classification and grading requirements

DLA Piper Privacy Matters

OCTOBER 3, 2022

Where some types of data have multiple categories (e.g. a set of telecommunications data which is also considered personal information), organisations should take note in ensuring compliance with the relevant rules and standards. Data grading. Accuracy, scale, and coverage.

Data collection

Data collection Personal data Access Compliance

CHINA: Draft Rules on Privacy Policies Released – Is Your Privacy Policy Compliant?

DLA Piper Privacy Matters

AUGUST 8, 2022

This generally include, the categories personal data being processed by key functions, data sharing with third parties, approach to exercise data subject rights, complaining channels, etc. Personal Information Collection List : a list setting out the types of personal data collected or processed by services and business functions.

Privacy

Privacy Personal data Data collection Access

New guidance on direct marketing

Data Protection Report

JANUARY 10, 2023

While there is no specific obligation to demonstrate or record a reason for not complying with a “ should ” obligation, it would be prudent for businesses to satisfy themselves as to what this reason is and record it as part of their internal governance practices. Use of Special Category Data for direct marketing.

Marketing

Marketing B2B Personal data Retail

Russian APT28 hacker accused of the NATO think tank hack in Germany

Security Affairs

JUNE 20, 2022

The hacker compromised at least two systems and got access to internal information from NATO, however at this time it is not clear the extent of the attack. Please vote for Security Affairs and Pierluigi Paganini in every category that includes them (e.g. ” reported the Tagesschau website. To nominate, please visit: .

Military

Military Access Cybersecurity Security

Anonymous hacked Roskomnadzor agency revealing Russian disinformation

Security Affairs

MARCH 11, 2022

The leaked document are arranged in two major categories, one containing more than 360,000 files that date up to March 5 (536.9 The hacktivists have stolen sensitive data from the organization and released 820 GB of data detailing the ongoing activity of the agency. GB) and another containing two databases containing HR procedures (290.6

Authentication

Authentication Communications IT Security

Russian Internet watchdog Roskomnadzor is going to ban Instagram

Security Affairs

MARCH 12, 2022

.” Probably the truth is different, the Russian government fears that the spreading of news related to its cruel invasion of Ukraine could destabilize internal contest. The leaked documents are arranged in two major categories, one containing more than 360,000 files that date up to March 5 (536.9

Access

Access Communications Government IT

How to comply with Article 30 of the GDPR

IT Governance

JUNE 21, 2018

As the GDPR has a heavy emphasis on accountability, organisations are now required to document such things as the purposes of processing, categories of data they process and the lawful basis for doing so. One key part of this record-keeping activity is to document the category of individuals (employees, customers, etc.) Formats (e.g.

GDPR

GDPR Personal data Risk Cloud

Colorado AG Provides Insights on the Colorado Privacy Act Rulemaking Process

Hunton Privacy

APRIL 25, 2022

On April 12, 2022, Colorado Attorney General Phil Weiser made remarks at the International Association of Privacy Professionals Global Privacy Summit in Washington, D.C., where he invited stakeholders to provide informal public comments on the Colorado Privacy Act (“CPA”) rulemaking. The CPA was enacted in July 2021 as the third U.S.

Privacy

Privacy Personal data Sales Compliance

New Dubai International Financial Centre Data Protection Law Comes into Effect

Hunton Privacy

JULY 9, 2020

On July 1, 2020, the Dubai International Financial Centre (“DIFC”) Data Protection Law No. Special Category Data: There is a general prohibition on the processing of special category data unless a derogation applies. 5 of 2020 came into effect (“New DP Law”). The New DP Law replaces DIFC Law No.

Personal data

Personal data GDPR Data breaches Compliance

GitHub: Nearly 100,000 NPM Users’ credentials stolen in the April OAuth token attack

Security Affairs

MAY 28, 2022

An additional investigation, unrelated to the OAuth token attack, revealed a number of plaintext user credentials for the npm registry that were collected in internal logs as a result of the integration of npm into GitHub logging systems. Please vote for Security Affairs and Pierluigi Paganini in every category that includes them (e.g.

Metadata

Metadata Passwords Archiving Access

CHINA: New draft proposes more stringent requirements for processing data in the financial services industry

Thales Wins Big in 2023

Webinars

Trending Sources

T-Mobile suffered a new data breach

Webinars

Police seized Crimemarket, the largest German-speaking cybercrime marketplace

New Study: 2018 State of Embedded Analytics Report

Privacy notices – the ICO follows the lead of the EU data protection authorities in their interpretation of Article 13 UK GDPR

The Road to Actionable Threat Intelligence

Is the SEC Coming for Your Texts? SEC’s New Enforcement Director Telegraphs a Warning to Registrants About Improper Use of Personal Devices for Business-Related Communications

Data from Airlink International UAE leaked on multiple dark web forums

GUEST ESSAY: How SIEMS, UEBAs fall short in today’s turbulent threat landscape

Five Sidley Practices Recognized as Law360 “Practice Groups of the Year”

How to Comply with GDPR, PIPL, and CCPA

CIPL Submits Response to China’s Personal Information Protection Law

Europe: CJEU decision – Right of access to individual recipients of personal data

US SEC charges SolarWinds and its CISO for alleged cybersecurity misstatements and controls failures

Dentons Privacy Community: Data transfers from Asia – key takeaways

Counting Down to the EU NIS2 Directive

Internationa police operation led to the arrest of the SilverTerrier gang leader

Request for Feedback on the Universal Electronic Records Management Requirements

Security Affairs newsletter Round 368 by Pierluigi Paganini

What VCs See Happening in Cybersecurity in 2023

An international police operation dismantled FluBot spyware

US dismantled and seized SSNDOB cybercrime marketplace

WEU, EEU TONER SINGLE-FUNCTION PRINTER MARKETS IN 2023

NON-STATE ACTORS IN THE CYBERSPACE: AN ATTEMPT TO A TAXONOMIC CLASSIFICATION, ROLE, IMPACT AND RELATIONS WITH A STATE’S SOCIOECONOMIC STRUCTURE

App Builder Release with Grid CRUD Actions, Nested Data-binding Support, Category Chart Aggregations and more

Wanted: Disgruntled Employees to Deploy Ransomware

Hundreds of network operators’ credentials found circulating in Dark Web

UK ICO Publishes New Guidance and a Tool for Transfer Risk Assessments

CHINA: new Anti-Espionage Law and its impact on your China data and operations – how your organisation should respond

Security Affairs newsletter Round 369 by Pierluigi Paganini

Adapture Awarded 2023 Smartsheet Partner Win of the Year

Three Nigerian men arrested in INTERPOL Operation Killer Bee

GUEST ESSAY: Addressing data leaks and other privacy, security exposures attendant to M&As

CHINA: Clarifications of data classification and grading requirements

CHINA: Draft Rules on Privacy Policies Released – Is Your Privacy Policy Compliant?

New guidance on direct marketing

Russian APT28 hacker accused of the NATO think tank hack in Germany

Anonymous hacked Roskomnadzor agency revealing Russian disinformation

Russian Internet watchdog Roskomnadzor is going to ban Instagram

How to comply with Article 30 of the GDPR

Colorado AG Provides Insights on the Colorado Privacy Act Rulemaking Process

New Dubai International Financial Centre Data Protection Law Comes into Effect

GitHub: Nearly 100,000 NPM Users’ credentials stolen in the April OAuth token attack

Stay Connected