Communications, Exercises and Financial Services

U.S. and Foreign Cybersecurity and Intelligence Agencies Recommend Measures to Counteract Threat of Russian Cyberattacks

Data Matters

JANUARY 28, 2022

The advisory was promptly endorsed by the National Cyber Security Centre, a division of Government Communications Headquarters (“GCHQ”), a UK intelligence agency. Create, Maintain, and Exercise a Cyber Incident Response, Resilience, and Continuity of Operations Plan.

Cybersecurity

Cybersecurity Financial Services Authentication Government

What (currently ignored) privacy area might result in early enforcement action when the GDPR is in force?

Data Protector

JANUARY 29, 2017

And also, what standard of evidence is necessary to be generated, just in case privacy regulators exercise their Article 30(4) right to request it. Outside the communications sector, how much interest, or formal enforcement action, has ever been taken against data controllers with regard to breaches of the Fifth Data Protection Principle?

GDPR

GDPR Privacy Compliance Personal data

Business Architecture and Process Modeling for Digital Transformation

erwin

JULY 11, 2019

The company realized that different generations want different information and have distinct communication preferences. For instance, millennials are adept at using digital channels, and they are the fastest-growing customer base for financial services companies.

Digital transformation

Digital transformation Information capture Compliance Financial Services

Webinars

Peak Performance: Continuous Testing & Evaluation of LLM-Based Applications

MORE WEBINARS

Getting ready for artificial general intelligence with examples

IBM Big Data Hub

APRIL 18, 2024

To respond appropriately to emotions, AGI needs to adjust its communication and behavior based on the emotional state of others. Also, its emotional intelligence allows it to adapt communication to be empathetic and supportive, creating a more positive interaction for the customer. AGI provides other explanations and examples.

Artificial Intelligence

Artificial Intelligence Marketing e-Delivery Manufacturing

“Am I a CII operator?” – New regulation in China provides more clarity

Data Protection Report

AUGUST 18, 2021

In addition, some companies have received an official notice that it is a CII, but we expect more to come so companies operating in sensitive or highly regulated sectors like energy, financial services, and telecoms should be aware that the issuance of a notice still remains a possibility.

Financial Services

Financial Services Data collection Security Communications

Proposed Amendments to NY Financial Services Cybersecurity Regulations Impose New Obligations on Large Entities, Boards of Directors and CISOs

Hunton Privacy

AUGUST 15, 2022

On July 29, 2022, the New York Department of Financial Services (“NYDFS”) posted proposed amendments (“Proposed Amendments”) to its Cybersecurity Requirements for Financial Services Companies (“Cybersecurity Regulations”).

Financial Services

Financial Services Cybersecurity Risk Passwords

Takeaways From CCPA Public Forums

Data Matters

FEBRUARY 12, 2019

And several speakers from the financial services industry asked that the Attorney General clarify that banks and other financial institutions’ incidental receipt of personal information during the course of a transaction is exempted from the Act’s coverage. (The Code §1798.140(t)(1).)

Sales

Sales Privacy Data Privacy Compliance

Cybersecurity Standards for the Insurance Sector – A New Patchwork Quilt in the US?

HL Chronicle of Data Protection

MAY 13, 2019

For example, the New York Department of Financial Services (‘NYDFS’) in March 2017 issued its Cybersecurity Regulation (23 NYCRR 500) (‘the NYDFS Cybersecurity Regulation’), a groundbreaking and far-reaching regulatory regime focused on financial institutions licensed in New York, including insurance companies.

Insurance

Insurance Cybersecurity Data breaches Financial Services

Discovery of New Internet of Things (IoT) Based Malware Could Put a New Spin on DDoS Attacks

Data Protection Report

NOVEMBER 3, 2017

Engaging a DDoS mitigation service provider after an attack has started can help to reduce the length and severity of an attack, allowing a company to get its affected servers and websites back up and running more quickly. External Communications. After an Attack. Further Investigation.

IoT

IoT Communications Risk Passwords

Assessing the Impact of the Barbados’ Proposed Data Protection Bill on the Barbadian Private Sector

Data Matters

SEPTEMBER 24, 2019

Companies in the financial services, technology, airline and hotel industries are among those that could face substantial compliance obligations. The data privacy officer will also be the communication link between Data Protection Commissioner and the data controller or data processor on issues relating to data processing.

Personal data

Personal data GDPR Data Privacy Privacy

CISA issues proposed rules for cyber incident reporting in critical infrastructure

Data Protection Report

APRIL 9, 2024

For example, government contractors or subcontractors with reporting obligations to the DOD or DOE for cyber incidents, or financial services entities that are already required to report cyber incidents to their primary federal regulator would be considered “covered entities” under the CIRCIA.

Ransomware

Ransomware Agriculture Cybersecurity Government

Rock the Blockchain: Thales and DigiCert Secure the Data

Thales Cloud Protection & Licensing

SEPTEMBER 15, 2021

It’s not hard to understand why companies are exercising diligence when selecting a data protection solution. DigiCert , a leading provider of PKI, and Thales, a leader in data protection, have a decade-long partnership helping their clients authenticate and encrypt communications, systems, emails, documents, websites, and servers.

Blockchain

Blockchain Security Authentication Compliance

ICYMI – Late December in privacy and cybersecurity

Data Protection Report

JANUARY 30, 2023

Colorado issued a revised draft of its privacy regulations, which added a list of what could be “substantial or material changes” to a privacy policy, which would require notice communicated to consumers in the manner by which the controller usually interacts with consumers. Which one is NOT on the list?

Privacy

Privacy Cybersecurity Personal data Insurance

Ireland: DPC Annual Report 2020: Enforcement & Transfers Dominate Agenda

DLA Piper Privacy Matters

MARCH 4, 2021

Six companies were prosecuted for direct marketing infringements, mainly for failing to obtain the valid consent required to send direct marketing communications by email and SMS. Financial Services Sector Focus. The prosecutions highlight the importance of ensuring that CRM systems capture all opt-out updates.

GDPR

GDPR Compliance Data breaches Marketing

NYDFS proposes significant cybersecurity regulation amendments

Data Protection Report

AUGUST 11, 2022

On July 29, 2022, the New York Department of Financial Services (NYDFS) announced a “pre-proposed outreach” of material proposed changes to almost every section of its cybersecurity regulations, and would affect each entity covered by the current regulations of 23 NYCRR Part 500.

Cybersecurity

Cybersecurity Risk Passwords Compliance

Mexico Issues Cookie and Web Beacon Rules and Privacy Notice Requirements

Hunton Privacy

FEBRUARY 12, 2013

The communication or announcement must be provided at the moment the user interacts with the mechanism ( e.g. , the moment the user visits the website), and it must take place outside the privacy notice.

Privacy

Privacy Personal data Data collection Financial Services

Living in a data sovereign world

IBM Big Data Hub

OCTOBER 16, 2023

The focus is on the ability to exercise control, make decisions and enforce legal and regulatory obligations related to the data, regardless of its physical location. Data sovereignty places constraints upon the data in different countries.

Cloud

Cloud Compliance Data Privacy Privacy

The Hacker Mind Podcast: EP 69 Self-Healing Operating Systems

ForAllSecure

APRIL 19, 2023

So an operating system provides a few basic services to an application file structure, Inter Process communications between different processes, indications in and out of the file system like TCP in and out of the machine like TCP IP, something like that. VAMOSI: Michael mentioned financial services. Great question.

Analytics

Analytics Communications Computer and Electronics Cybersecurity

EU data governance regulation – a wave of digital, regulatory and antitrust reform begins – Part 1

Data Protection Report

DECEMBER 17, 2020

The Data Strategy proposed the establishment of nine common European data spaces for data sharing and pooling, including health, mobility, manufacturing, financial services, energy, and agriculture. The EC’s Data Strategy sets out a vision of common European data spaces, a Single Market for data.

Government

Government Personal data Marketing Artificial Intelligence

Nation-State-Sponsored Attacks: Not Your Grandfather’s Cyber Attacks

Data Matters

MAY 17, 2022

Information and Communications Technology Industry , S. Like an incident response plan, MFA has become a critical element of cybersecurity programs, as recent regulations from the New York Department of Financial Services and the Federal Trade Commission, among others, reflect. Press Release No. 18-1452 , Dep’t of Just.,

Cybersecurity

Cybersecurity Government Authentication Ransomware

The Hacker Mind: MITRE ATT&CK Evaluations

ForAllSecure

MAY 4, 2021

Vamosi: ATT&CK started as a workshop exercise to document common tactics, techniques and procedures, T TPS that advanced persistent threats used against Windows Enterprise environments, advanced persistent threats are just as they seem. They can do exercises and shore up the weak spots. So it's it's a fun time.

Government

Government IT Access Analytics

The Hacker Mind: MITRE ATT&CK Evaluations

ForAllSecure

MAY 4, 2021

Vamosi: ATT&CK started as a workshop exercise to document common tactics, techniques and procedures, T TPS that advanced persistent threats used against Windows Enterprise environments, advanced persistent threats are just as they seem. They can do exercises and shore up the weak spots. So it's it's a fun time.

Government

Government IT Access Analytics

Information Management Today

U.S. and Foreign Cybersecurity and Intelligence Agencies Recommend Measures to Counteract Threat of Russian Cyberattacks

What (currently ignored) privacy area might result in early enforcement action when the GDPR is in force?

Webinars

Trending Sources

Business Architecture and Process Modeling for Digital Transformation

Webinars

Getting ready for artificial general intelligence with examples

“Am I a CII operator?” – New regulation in China provides more clarity

Proposed Amendments to NY Financial Services Cybersecurity Regulations Impose New Obligations on Large Entities, Boards of Directors and CISOs

Takeaways From CCPA Public Forums

Cybersecurity Standards for the Insurance Sector – A New Patchwork Quilt in the US?

Discovery of New Internet of Things (IoT) Based Malware Could Put a New Spin on DDoS Attacks

Assessing the Impact of the Barbados’ Proposed Data Protection Bill on the Barbadian Private Sector

CISA issues proposed rules for cyber incident reporting in critical infrastructure

Rock the Blockchain: Thales and DigiCert Secure the Data

ICYMI – Late December in privacy and cybersecurity

Ireland: DPC Annual Report 2020: Enforcement & Transfers Dominate Agenda

NYDFS proposes significant cybersecurity regulation amendments

Mexico Issues Cookie and Web Beacon Rules and Privacy Notice Requirements

Living in a data sovereign world

The Hacker Mind Podcast: EP 69 Self-Healing Operating Systems

EU data governance regulation – a wave of digital, regulatory and antitrust reform begins – Part 1

Nation-State-Sponsored Attacks: Not Your Grandfather’s Cyber Attacks

The Hacker Mind: MITRE ATT&CK Evaluations

The Hacker Mind: MITRE ATT&CK Evaluations

Stay Connected