Information Management Today

Why You Should Opt Out of Sharing Data With Your Mobile Provider

Krebs on Security

MARCH 20, 2023

A new breach involving data from nine million AT&T customers is a fresh reminder that your mobile provider likely collects and shares a great deal of information about where you go and what you do with your mobile device — unless and until you affirmatively opt out of this data collection.

Customer Experience

Customer Experience Privacy Data collection Marketing

Mozilla Drops Onerep After CEO Admits to Running People-Search Networks

Krebs on Security

MARCH 22, 2024

On March 14, KrebsOnSecurity published a story showing that Onerep’s Belarusian CEO and founder Dimitiri Shelest launched dozens of people-search services since 2010, including a still-active data broker called Nuwber that sells background reports on people. Nor is collecting and selling data on Americans.

Healthcare

Healthcare Privacy Data breaches Government

You Can Now Ask Google to Remove Your Phone Number, Email or Address from Search Results

Krebs on Security

APRIL 29, 2022

Google said this week it is expanding the types of data people can ask to have removed from search results, to include personal contact information like your phone number, email address or physical address. According to recent estimates, Google enjoys somewhere near 90 percent market share in search engine usage.

Search queries

Search queries Retail Government Marketing

Webinars

Peak Performance: Continuous Testing & Evaluation of LLM-Based Applications

MORE WEBINARS

Identity Thieves Bypassed Experian Security to View Credit Reports

Krebs on Security

JANUARY 9, 2023

All that was needed was the person’s name, address, birthday and Social Security number. After I supplied that and told Annualcreditreport.com I wanted my report from Experian, I was taken to Experian.com to complete the identity verification process. It wouldn’t even show me the four multiple-guess questions.

Security

Security Authentication Mining Cybersecurity

Are You One of the 533M People Who Got Facebooked?

Krebs on Security

APRIL 6, 2021

Ne’er-do-wells leaked personal data — including phone numbers — for some 553 million Facebook users this week. Facebook says the data was collected before 2020 when it changed things to prevent such information from being scraped from profiles. billion active monthly users. According to a Jan.

Passwords

Passwords Authentication Privacy Sales

Missouri Governor Vows to Prosecute St. Louis Post-Dispatch for Reporting Security Vulnerability

Krebs on Security

OCTOBER 14, 2021

Mike Parson (R) said fixing the flaw could cost the state $50 million, and vowed his administration would seek to prosecute and investigate the “hackers” and anyone who aided the publication in its “attempt to embarrass the state and sell headlines for their news outlet.” ” Missouri Gov.

Security

Security Education Computer and Electronics Access

GUEST ESSAY: These common myths and misconceptions make online browsing very risky

The Last Watchdog

JANUARY 3, 2023

Most of these have to do with preventing malware from infecting your device. I frequently clear my cache, so third-party data collectors can’t collect and sell my personal data. Incognito mode protects my personal information from bad actors. No attachment needed. . Steps to safe browsing.

Privacy

Privacy Personal data Analytics Authentication

Breached Data Indexer ‘Data Viper’ Hacked

Krebs on Security

JULY 13, 2020

Data Viper , a security startup that provides access to some 15 billion usernames, passwords and other information exposed in more than 8,000 website breaches, has itself been hacked and its user database posted online. But others correspond to companies that do not appear to have disclosed a security incident.

Sales

Sales Marketing e-Discovery Passwords

Data privacy examples

IBM Big Data Hub

APRIL 24, 2024

An online retailer always gets users’ explicit consent before sharing customer data with its partners. A school asks parents to verify their identities before giving out student information. Far-reaching regulations like Europe’s GDPR levy steep fines on organizations that fail to safeguard sensitive information.

Data Privacy

Data Privacy Privacy GDPR Personal data

Red Cross Hack Linked to Iranian Influence Operation?

Krebs on Security

FEBRUARY 16, 2022

A network intrusion at the International Committee for the Red Cross (ICRC) in January led to the theft of personal information on more than 500,000 people receiving assistance from the group. ” RaidForums member “unindicted” aka Sheriff selling access to the International Red Cross and Red Crescent Movement data. .”

Ransomware

Ransomware Sales Access Data breaches

First CCPA Enforcement Action Settlement Announced by California AG

Hunton Privacy

AUGUST 25, 2022

The OAG made clear that Sephora’s disclosure of consumer personal information to third parties in this context constitutes a “sale” under the CCPA’s broad definition of the term (i.e., Under the settlement, Sephora must: Pay $1.2

Sales

Sales Analytics Privacy Retail

LeakedSource Owner Quit Ashley Madison a Month Before 2015 Hack

Krebs on Security

JULY 18, 2023

15, 2018, the Royal Canadian Mounted Police (RCMP) charged then 27-year-old Bloom, of Thornhill, Ontario, with selling stolen personal identities online through the website LeakedSource[.]com. “In his previous experience he had been doing RMT (Real Money Trading),” Sykes wrote.

Passwords

Passwords Data breaches Marketing IT

Florence, Ala. Hit By Ransomware 12 Days After Being Alerted by KrebsOnSecurity

Krebs on Security

JUNE 9, 2020

that their information technology systems had been infiltrated by hackers who specialize in deploying ransomware. City officials now say they plan to pay the ransom demand, in hopes of keeping the personal data of their citizens off of the Internet. “Do they have our stuff? ” A DoppelPaymer ransom note. .

Ransomware

Ransomware Systems administration Cybersecurity Personal data

Apple AirTag Bug Enables ‘Good Samaritan’ Attack

Krebs on Security

SEPTEMBER 28, 2021

Setting it to Lost Mode generates a unique URL at [link] and allows the user to enter a personal message and contact phone number. This information pops up without asking the finder to log in or provide any personal information. The AirTag’s “Lost Mode” lets users alert Apple when an AirTag is missing.

Phishing

Phishing Communications Military Risk

California Privacy Law Overhaul – Proposition 24 Passes

Data Matters

NOVEMBER 4, 2020

Importantly, the CPRA imposes additional obligations on and considerations for businesses subject to the CCPA, including: Providing consumers with the right to prevent businesses from sharing their personal information with third parties for behavioral advertising or advertising based on a consumer’s precise geolocation.

Privacy

Privacy B2B Sales Data breaches

Confessions of an ID Theft Kingpin, Part I

Krebs on Security

AUGUST 26, 2020

For several years beginning around 2010, a lone teenager in Vietnam named Hieu Minh Ngo ran one of the Internet’s most profitable and popular services for selling “ fullz ,” stolen identity records that included a consumer’s name, date of birth, Social Security number and email and physical address. ” MICROBILT.

Computer and Electronics

Computer and Electronics Access IT Data collection

CCPA Update: Comment Period Closes on Third Round of Proposed Modifications to CCPA Regulations; CCPA Litigation Gaining Steam; Consumer Groups and Major Newspapers Urge “No” Vote on California’s Privacy Initiative

Data Matters

OCTOBER 29, 2020

Providing notice orally where personal information is collected over the phone. Existing regulations include identical examples of how businesses that collect personal information offline can provide notice at collection. § 999.305(a)(3). in privacy policy). in privacy policy).

Privacy

Privacy Sales Compliance Paper

The Security Pros and Cons of Using Email Aliases

Krebs on Security

AUGUST 10, 2022

For instance, if I were signing up at example.com, I might give my email address as krebsonsecurity+example@gmail.com. Then, I simply go back to my inbox and create a corresponding folder called “Example,” along with a new filter that sends any email addressed to that alias to the Example folder. What is an email alias?

Security

Security Data breaches Passwords Retail

Chatbots and Human Conversation

Schneier on Security

JANUARY 26, 2024

For most of history, communicating with a computer has not been like communicating with a person. ” The syntax of civility has crept into nearly every aspect of our encounters; we speak to this algebraic assemblage as if it were a person—even when we know that it’s not.

Communications

Communications Marketing Privacy IT

AT&T, Sprint, Verizon to Stop Sharing Customer Location Data With Third Parties

Krebs on Security

JUNE 19, 2018

In the wake of a scandal involving third-party companies leaking or selling precise, real-time location data on virtually all Americans who own a mobile phone, AT&T , Sprint and Verizon now say they are terminating location data sharing agreements with third parties. mobile networks. By that time, Sen. Ron Wyden (D-Ore.)

Privacy

Privacy Access IT Authentication

Library buyers' role in tech start-ups

CILIP

FEBRUARY 20, 2024

In this interview for CILIP's Buyers' Guide 2024 , Frode said: "What we are developing is an AI tool that makes it easier to discover information that you want to read, a tool that helps you discover things that you could be really interested in." “We I was struggling to find relevant articles for my master’s thesis as a student.

Libraries

Libraries Education Artificial Intelligence Sales

How to Get Executive Support for Your Next Information Governance Initiative

AIIM

NOVEMBER 23, 2021

Back in 2017, I called up a few of the information governance friends I’d made through the AIIM Community to better understand the challenges they were up against. If they don't, they will NEVER change the status of information management within their organizations. What Does Information Governance Mean in 2021 and Beyond?

Information governance

Information governance Government Customer Experience Archiving

US: Version 3.0 of the CCPA: Major Implications

DLA Piper Privacy Matters

MARCH 19, 2020

The change would expand the definition from benefits or offers “as compensation for the disclosure, deletion or sale of personal information” to benefits or offers “related to the collection, retention or sale of personal information.” regarding when an IP address is “personal information.”. Opt-out button.

Sales

Sales Compliance Privacy Analytics

When is a Scrape a Breach?

Troy Hunt

DECEMBER 15, 2021

A decade and a bit ago during my tenure at Pfizer, a colleague's laptop containing information about customers, healthcare providers and other vendors was stolen from their car. It was the largest incident of it's kind in Australia and it included my own personal data. Is this a data breach?

Data breaches

Data breaches Passwords Access Personal data

In a Few Days, Credit Freezes Will Be Fee-Free

Krebs on Security

SEPTEMBER 10, 2018

A handy PDF produced earlier this year by the Consumer Financial Protection Bureau (CFPB) lists all of the known entities that maintain, sell or share credit data on U.S. My guess is the vast majority of Americans have never heard of most of these companies. But thanks to a federal law enacted earlier this year, after Sept.

Access

Access Military Retail Security

California Age-Appropriate Design Code Act

Data Protection Report

SEPTEMBER 23, 2022

b. Whether, how, and for what purpose the online product, service, or feature collects or processes sensitive personal information of children. c. Whether, how, and for what purpose the online product, service, or feature collects or processes sensitive personal information of children. b. Five.

Compliance

Compliance Privacy Access Risk

CCPA In-Depth Series: Draft Attorney General Regulations on Consumer Notice

Data Matters

OCTOBER 22, 2019

Indeed, even if they do not resolve all of the Law’s many ambiguities, they do provide helpful implementation guidance – along with surprising new requirements, some of which may questionably extend beyond the CCPA itself. Check back daily for the next installment, or visit the CCPA Monitor for a collection of all our CCPA insights.

Privacy

Privacy Sales Paper Compliance

‘Spam Nation’ Villain Vrublevsky Charged With Fraud

Krebs on Security

MARCH 22, 2022

Pavel Vrublevsky , founder of the Russian payment technology firm ChronoPay and the antagonist in my 2014 book “ Spam Nation ,” was arrested in Moscow this month and charged with fraud. These diary entries, interspersed between highly technical how-tos, are all written in Russian and in the third person.

Risk

Risk Marketing Archiving IT

7 customer experience trends in 2024

IBM Big Data Hub

FEBRUARY 12, 2024

They site their production process, material sourcing information, product care information, and even their sustainability reports. For example, brand recognition on a podcast episode is great for awareness, but how many times do you click out of a podcast to purchase something?

Customer Experience

Customer Experience Artificial Intelligence Marketing Access

How to prepare for the California Consumer Privacy Act

Thales Cloud Protection & Licensing

AUGUST 15, 2019

Last August, my colleague Ashvin Kamaraju wrote a blog shortly after this took place. What is considered Personal Information under the CCPA. Personal Information excluded by the CCPA. Similar to GDPR, the CCPA excludes from its scope information that is publicly available.

Privacy

Privacy GDPR Digital transformation Sales

All Buttoned Up: The California AG Proposes Additional CCPA Regulations

Data Matters

DECEMBER 14, 2020

All of the newly proposed changes relate to the right to opt-out of the sale of personal information. The first series of recommended changes focuses on what a business must share regarding the right to opt-out with consumers with whom they interact offline.

Sales

Sales Privacy IT

State of the Union: CCPA and Beyond in 2020

Data Protection Report

JANUARY 13, 2020

On New Year’s Day, you may have received emails from numerous companies saying their privacy policies have changed, or noticed a link at the bottom of many companies’ homepages stating “Do Not Sell My Info.” The CCPA requires that businesses disclose whether or not they sell Personal Information (PI).

Privacy

Privacy B2B Sales Compliance

U.S. Mobile Giants Want to be Your Online Identity

Krebs on Security

SEPTEMBER 12, 2018

This includes knowing the approximate real-time location of the customer; how long they have been a customer and used the device in question; and information about components inside the customer’s phone that are only accessible to the carriers themselves, such as cryptographic signatures tied to the device’s SIM card.

Authentication

Authentication Retail Passwords Access

California Privacy Compliance Obligations May Soon Change Under CPRA Ballot Initiative

HL Chronicle of Data Protection

MAY 26, 2020

Requires entities sharing common control and common branding to also share consumer personal information to be considered the same “business.”. common branding” is a shared name, servicemark, or trademark such that the “average consumer” would understand the two entities are commonly owned. Data Minimization (new).

Privacy

Privacy Compliance Sales Data Privacy

California Enacts Broad Privacy Laws Modeled on GDPR

Data Matters

JUNE 29, 2018

It is intended to give consumers more transparency regarding and control over their data and establishes highly detailed requirements for what companies that collect personal data about California residents must disclose. . derive 50 percent or more of annual revenues from selling consumers’ personal information.

GDPR

GDPR Privacy Sales Data breaches

A February 2020 Surprise: California Attorney General Proposes Significant Revisions to CCPA Regulations

Data Matters

FEBRUARY 12, 2020

service providers are allowed to use personal information to improve their products and services, so long as they aren’t using the information to build profiles or clean or augment other data. In these revisions, the Attorney General did not change the definition, but he helpfully clarified its scope.

Privacy

Privacy Compliance Archiving Sales

Takeaways From CCPA Public Forums

Data Matters

FEBRUARY 12, 2019

The forums won’t likely provide definitive answers, they will likely provide some of the best information available. Code § 1798.185(a): Categories of Personal Information. Rules for Notices and Information. What are the next steps? What will the regulations necessarily cover? . Rules for Opt-Out of Sale.

Sales

Sales Privacy Data Privacy Compliance

State of the Union: CCPA and Beyond in 2020

Data Protection Report

JANUARY 13, 2020

On New Year’s Day, you may have received emails from numerous companies saying their privacy policies have changed, or noticed a link at the bottom of many companies’ homepages stating “Do Not Sell My Info.” The CCPA requires that businesses disclose whether or not they sell Personal Information (PI).

Privacy

Privacy B2B Sales Compliance

Canadian Police Raid ‘Orcus RAT’ Author

Krebs on Security

APRIL 2, 2019

Data inclusive on these drives include but are not limited to: User information inclusive of user names, real names, financial transactions, and further. Reached via email, Rezvesz declined to say whether he was arrested in connection with the search warrant , a copy of which he shared with KrebsOnSecurity. 2017 analysis of the RAT.

Marketing

Marketing Passwords Systems administration Access

Draft Bill Imposes Steep Penalties, Expands FTC’s Authority to Regulate Privacy

Hunton Privacy

NOVEMBER 2, 2018

released a draft bill, the Consumer Data Protection Act , that seeks to “empower consumers to control their personal information.” Senator Wyden stated, “My bill creates radical transparency for consumers, gives them new tools to control their information and backs it up with tough rules.”.

Privacy

Privacy Cybersecurity IT Information Security

Why Twilio’s $3.2B acquisition of Segment may not be enough

Reltio

OCTOBER 22, 2020

Segment is a Customer Data Platform (CDP) player that focuses exclusively on person data. While Segment has done really well in the SMB market segments, they don’t have a track record selling to Global 2000 enterprise customers. . People’s names spelled differently: Are Robert Smith and Bob Smith one person or two different people? .

Personal data

Personal data Marketing Customer Experience Retail

California, Massachusetts, and Michigan – 2020 Ballot Initiatives on Privacy

Data Protection Report

NOVEMBER 6, 2020

The CPRA potentially extends the 12-month “look-back” period for access requests to an amount of time to be determined by new regulations, but this change would affect only information collected on or after January 1, 2022. We had previously summarized that amendment here. Importantly, CPRA does not contain any new private right of action.

Privacy

Privacy B2B Communications Access

US: CPRA analysis: The ‘good’ and ‘bad’ news for CCPA-regulated ‘businesses’

DLA Piper Privacy Matters

MAY 11, 2020

Clarify the definition of “sale” and differentiate and exempt from the “Do Not Sell” right and the CCPA “selling” notice requirements, the “sharing” of personal information for cross-context behavioral advertising in some instances. Right to correct inaccurate personal information.

Privacy

Privacy Unstructured data Access Data collection

California Enacts Broad Privacy Protections Modeled on GDPR

Data Matters

JUNE 29, 2018

It is intended to give consumers more transparency regarding and control over their data and establishes highly detailed requirements for what companies that collect personal data about California residents must disclose. . derive 50 percent or more of annual revenues from selling consumers’ personal information.

GDPR

GDPR Privacy Sales Data breaches

Why You Should Opt Out of Sharing Data With Your Mobile Provider

Mozilla Drops Onerep After CEO Admits to Running People-Search Networks

Webinars

Trending Sources

You Can Now Ask Google to Remove Your Phone Number, Email or Address from Search Results

Webinars

Identity Thieves Bypassed Experian Security to View Credit Reports

Are You One of the 533M People Who Got Facebooked?

Missouri Governor Vows to Prosecute St. Louis Post-Dispatch for Reporting Security Vulnerability

GUEST ESSAY: These common myths and misconceptions make online browsing very risky

Breached Data Indexer ‘Data Viper’ Hacked

Data privacy examples

Red Cross Hack Linked to Iranian Influence Operation?

First CCPA Enforcement Action Settlement Announced by California AG

LeakedSource Owner Quit Ashley Madison a Month Before 2015 Hack

Florence, Ala. Hit By Ransomware 12 Days After Being Alerted by KrebsOnSecurity

Apple AirTag Bug Enables ‘Good Samaritan’ Attack

California Privacy Law Overhaul – Proposition 24 Passes

Confessions of an ID Theft Kingpin, Part I

CCPA Update: Comment Period Closes on Third Round of Proposed Modifications to CCPA Regulations; CCPA Litigation Gaining Steam; Consumer Groups and Major Newspapers Urge “No” Vote on California’s Privacy Initiative

The Security Pros and Cons of Using Email Aliases

Chatbots and Human Conversation

AT&T, Sprint, Verizon to Stop Sharing Customer Location Data With Third Parties

Library buyers' role in tech start-ups

How to Get Executive Support for Your Next Information Governance Initiative

US: Version 3.0 of the CCPA: Major Implications

When is a Scrape a Breach?

In a Few Days, Credit Freezes Will Be Fee-Free

California Age-Appropriate Design Code Act

CCPA In-Depth Series: Draft Attorney General Regulations on Consumer Notice

‘Spam Nation’ Villain Vrublevsky Charged With Fraud

7 customer experience trends in 2024

How to prepare for the California Consumer Privacy Act

All Buttoned Up: The California AG Proposes Additional CCPA Regulations

State of the Union: CCPA and Beyond in 2020

U.S. Mobile Giants Want to be Your Online Identity

California Privacy Compliance Obligations May Soon Change Under CPRA Ballot Initiative

California Enacts Broad Privacy Laws Modeled on GDPR

A February 2020 Surprise: California Attorney General Proposes Significant Revisions to CCPA Regulations

Takeaways From CCPA Public Forums

State of the Union: CCPA and Beyond in 2020

Canadian Police Raid ‘Orcus RAT’ Author

Draft Bill Imposes Steep Penalties, Expands FTC’s Authority to Regulate Privacy

Why Twilio’s $3.2B acquisition of Segment may not be enough

California, Massachusetts, and Michigan – 2020 Ballot Initiatives on Privacy

US: CPRA analysis: The ‘good’ and ‘bad’ news for CCPA-regulated ‘businesses’

California Enacts Broad Privacy Protections Modeled on GDPR

Stay Connected