IT Governance

JANUARY 9, 2024

LockBit claims responsibility for Capital Health security incident The LockBit ransomware group has claimed responsibility for an attack on Capital Health , a healthcare provider in Pennington, New Jersey, last November. KG Source 1 ; source 2 (New) Manufacturing Germany Yes 1.1 They accessed 41.5 Data breached: 41,500,000 records.

Data Privacy 75

Data Privacy Privacy Manufacturing Data breaches 75

IT Governance

JANUARY 30, 2024

Mobile network database breach exposes 750 million Indians’ personal data The Indian security company CloudSEK claims to have found the personal data of 750 million Indians for sale on an “underground forum”. Compromised data includes victims’ names, addresses, phone numbers and Aadhaar numbers (a 12-digit government identification number).

Data Privacy 52

Data Privacy Retail Privacy Manufacturing 52

IT Governance

JANUARY 16, 2024

Source (New) Manufacturing USA Yes 42 GB Auto-Motion Shade Inc. Drug Mart Source 1 ; source 2 (Update) Healthcare USA Yes 36,749 Elliott Group Source (New) Manufacturing USA Yes 31.5 Source (New) Real estate USA Yes 10 GB Unitex Source (New) Manufacturing USA Yes 9.5 Source (New) Transport Canada Yes 38 GB U.S.

Data Privacy 52

Data Privacy Privacy Manufacturing Retail 52

Security Affairs

NOVEMBER 24, 2022

The British government banned the installation of Chinese-linked security cameras at sensitive facilities due to security risks. Reuters reports that the British government ordered its departments to stop installing Chinese security cameras at sensitive buildings due to security risks. Pierluigi Paganini.

Government 84

Government Security Risk Manufacturing 84

IT Governance

FEBRUARY 27, 2024

The breached data includes names, addresses, emails, phone numbers, dates of birth, and financial account and Social Security numbers. The breached data may include names, Social Security numbers and health insurance information. For some victims, the stolen data also included Social Security numbers and health insurance information.

Data Privacy 52

Data Privacy Manufacturing Privacy Data breaches 52

IT Governance

FEBRUARY 21, 2024

Fowler sent a responsible disclosure notice when he discovered the database and it was secured the following day. Source New Manufacturing USA Yes 20,415 TECA Srl Source New Transport Italy Yes 16.7 Known records breached Zenlayer Source New Telecoms USA Yes 384,658,212 ASA Electronics Source New Engineering USA Yes 2.7

Data Privacy 52

Data Privacy Manufacturing Privacy Energy and Utilities 52

IT Governance

FEBRUARY 14, 2024

Compromised data includes policyholders’ and their families’ civil status, dates of birth and social security numbers, as well as the name of their health insurer and information relating to their contracts. It has since been confirmed by Anukul Peedkaew, the permanent secretary of social development and human security.

Data Privacy 52

Data Privacy Manufacturing Privacy Security 52

IT Governance

DECEMBER 19, 2023

An investigation determined that personal data, including names, addresses, phone numbers, Social Security numbers, dates of birth and bank account numbers, belonging to nearly 15 million people was obtained by an unauthorised party between 30 October and 1 November. GB Coca-Cola Singapore Source (New) Manufacturing Singapore Yes 413.92

Data Privacy 52

Data Privacy Manufacturing Privacy Energy and Utilities 52

IT Governance

JANUARY 23, 2024

Publicly disclosed data breaches and cyber attacks: in the spotlight More than 70 million email addresses added to Have I Been Pwned The security researcher Troy Hunt has added more than 70 million email addresses from the Naz.API data set to his Have I Been Pwned data breach notification service. VF Corporation confirms 35.5

Data Privacy 52

Data Privacy Privacy Manufacturing Retail 52

IT Governance

FEBRUARY 6, 2024

Enforcement Uber fined €10 million for GDPR breaches The Dutch data protection authority, Autoriteit Persoonsgegevens, has fined Uber €10 million for failing to be transparent about its data retention practices and making it difficult for drivers to exercise their data privacy rights.

Data Privacy 88

Data Privacy Privacy Insurance Security 88

IT Governance

MARCH 5, 2024

Source (New) Engineering Japan Yes >5 TB Array Networks Source (New) Cyber security USA Yes 2.5 TB Turtlemint Source (New) Insurance India Yes 1,800,000 Chunghwa Telecom Source (New) Telecoms Taiwan Yes 1.7

Data Privacy 52

Data Privacy Privacy Manufacturing Retail 52

IT Governance

OCTOBER 24, 2023

Breached organisation: BHI Energy, providing staffing solutions to the nuclear, fossil, wind, hydro and government energy markets. Incident details: Network security incident, where allegedly AlphV gained unauthorised access and made demands to the hospital’s leadership, suggesting a ransomware attack. Records breached: Unknown.

Data Privacy 107

Data Privacy Privacy Security Data breaches 107

IG Guru

FEBRUARY 2, 2022

Larry Ponemon is the Chairman and Founder of the Ponemon Institute and is considered a pioneer in privacy auditing and the Responsible Information Management or RIM framework. Dr. Ponemon was appointed to the Advisory Committee for Online…Full Profile Rich Nass Executive Vice-President, Brand […].

Manufacturing 75

Manufacturing Security Privacy Information governance 75

Collibra

JUNE 21, 2023

Businesses everywhere are seeking ways to leverage LLMs as fast as governments are talking about ways to regulate them. Security/Privacy risks: Poor data quality can expose sensitive information, which can inadvertently lead to security breaches and the unauthorized use of personal information. You need AI governance.

Government 88

Government IT Risk Privacy 88

IT Governance

NOVEMBER 28, 2023

The post The Week in Cyber Security and Data Privacy: 20 – 26 November 2023 appeared first on IT Governance UK Blog. In the meantime, if you missed it, check out last week’s round-up. Please do also let us know what you think about our new table format.

Data Privacy 52

Data Privacy Privacy Energy and Utilities Data breaches 52

The Last Watchdog

JULY 10, 2023

Consumers don’t just need to trust that their bank is keeping their money and data safe – they need to trust that there are not privacy vulnerabilities in their lightbulbs. This data shows that additional work must be done to build awareness around the meaning of IoT and how consumers can secure their IoT devices.

IoT 189

IoT Security Cybersecurity Compliance 189

Thales Cloud Protection & Licensing

SEPTEMBER 11, 2018

Achieving the IoT’s bold objective requires not only bringing many small things together and carefully orchestrating their interconnections, but also the assurance that their integrity and the data they collect remains secure and trustworthy. Therefore, manufacturing is the first critical link in the chain to establish trust across the IoT.

Manufacturing 89

Manufacturing IoT Authentication Paper 89

Schneier on Security

JUNE 25, 2020

New research: " Best Practices for IoT Security: What Does That Even Mean? " Confusion is evident from guidelines that conflate desired outcomes with security practices to achieve those outcomes. Back in 2017, I catalogued nineteen security and privacy guideline documents for the Internet of Things.

IoT 126

IoT Security Manufacturing Government 126

Hunton Privacy

OCTOBER 14, 2021

During the week of October 4, 2021, California Governor Gavin Newsom signed into law bills amending the California Privacy Rights Act of 2020 (“CPRA”), California’s data breach notification law and California’s data security law. Genetic Data: California Data Breach Notification and Data Security Law Amendment Bill.

Privacy 98

Privacy Insurance Security Data breaches 98

eSecurity Planet

JULY 21, 2021

Reports that the NSO Group’s Pegasus spyware was used by governments to spy on Apple iPhones used by journalists, activists, government officials and business executives is becoming a global controversy for NSO, Apple and a number of governments at the center of the scandal. Journalists, Government Officials Targeted.

Security 125

Security Government Privacy Ransomware 125

Thales Cloud Protection & Licensing

NOVEMBER 6, 2019

The issue is that these tens of billions of new devices will likely amplify the inherent security risks of IoT. In the absence of IoT security regulations, many smart product manufacturers simply release new devices that lack built-in security measures and have not undergone proper security review and testing.

IoT 122

IoT Risk Energy and Utilities Security 122

eSecurity Planet

JANUARY 22, 2021

As more information about IoT device vulnerabilities is published, the pressure on industry and government authorities to enhance security standards might be reaching a tipping point. While it’s a progressive step for the network security of the U.S. government, standards will not apply to the IoT market at-large.

IoT 145

IoT Cybersecurity Manufacturing Government 145

Security Affairs

DECEMBER 21, 2018

2018 was the year of the Internet of Things (IoT), massive attacks and various botnets hit smart devices, These are 5 IoT Security Predictions for 2019. The regulation around IoT security was this year’s signal that the answer is, fortunately, no. Insights from VDOO’s leadership. 2019 will continue these trends but at a faster pace.

IoT 87

IoT Security Manufacturing Privacy 87

eSecurity Planet

MARCH 3, 2023

The initiatives that stand out the most — critical infrastructure security standards, a national data privacy and security law, and liability for security failures — will likely take time and the support of Congress to implement. is the creation of mandatory requirements for critical infrastructure security.

Cybersecurity 117

Cybersecurity Government Manufacturing Personal data 117

Hunton Privacy

JANUARY 10, 2018

On January 9, 2018, the FTC issued a paper recapping the key takeaways from the FTC’s and National Highway Traffic Safety Administration’s June 2017 workshop on privacy and security issues involving connected cars. The workshop featured representatives from consumer groups, industry, government and academia.

Privacy 48

Privacy Personal data Manufacturing Security 48

Thales Cloud Protection & Licensing

JULY 15, 2021

Key Developments in IoT Security. The rush to market for consumers to enjoy the modern conveniences offered by these devices shocked the security community. Security experts were concerned that these devices were built with no security in mind. Has the security of these devices gotten better, or remained the same?

IoT 100

IoT Security Data Privacy Encryption 100

The Last Watchdog

MARCH 13, 2019

And yet we are overlooking profound privacy and security ramifications. billion IoT devices in use as of 2017, half are consumer gadgets, like smart TVs, speakers, watches, baby cams and home thermostats; much of the rest is made up of things like smart electric meters and security cameras in corporate and government use.

IoT 189

IoT Energy and Utilities Security Privacy 189

IBM Big Data Hub

JULY 7, 2023

But with a proactive approach to data security, organizations can fight back against the seemingly endless waves of threats. IBM Security X-Force found the most common threat on organizations is extortion, which comprised more than a quarter (27%) of all cybersecurity threats in 2022. Where do data breaches originate?

Security 40

Security Data breaches Data Privacy Compliance 40

Hunton Privacy

MARCH 2, 2023

s ability to assist allies and partners in strengthening cybersecurity, (iv) building coalitions to reinforce global norms of responsible state behavior, and (v) securing global supply chains for information, communications and operational technology products and services that power the U.S.

Cybersecurity 110

Cybersecurity IoT Military Insurance 110

Krebs on Security

APRIL 15, 2020

The Coronavirus has prompted thousands of information security professionals to volunteer their skills in upstart collaborative efforts aimed at frustrating cybercriminals who are seeking to exploit the crisis for financial gain. “A nurse or doctor can’t do what we do, and we can’t do what they do,” Espinosa said.

Cybersecurity 295

Cybersecurity Phishing Government Ransomware 295

Security Affairs

APRIL 26, 2023

German government warns that technology to regulate power consumption in Huawei network appliances could be used for sabotage purposes. government officials as well as European security authorities, which have warned of the risks associated with Chinese telecoms equipment.” In November 2019, the U.S.

Government 94

Government Communications Risk Cybersecurity 94

DLA Piper Privacy Matters

JULY 13, 2022

Secure Data Environments. The NHS will step up its investment in and use of ‘secure data environments’ (sometimes referred to as ‘trusted research environments’). In simple terms, these are specially designated, secure servers on which a third party researcher’s access to health data can be properly controlled and monitored.

Artificial Intelligence 97

Artificial Intelligence Privacy Government Access 97

The Last Watchdog

MARCH 4, 2020

However, to fully capture the benefits of an IoT-centric economy, a cauldron of privacy and security concerns must first be quelled. It is incumbent upon enterprises plunging forward with digital transformation to embed security and emphasize cyber hygiene – much more so than they generally do today.

IoT 157

IoT Authentication Security Encryption 157

Data Protection Report

JANUARY 30, 2018

The law also included various privacy and security provisions that have received considerably less press. Commercial manufacturers or commercial users of UAVs in the United States should consider how this law will impact future design or operation of UAVs.

Privacy 40

Privacy Manufacturing Communications Security 40

Thales Cloud Protection & Licensing

JANUARY 3, 2024

Revolutionizing Identity Verification with AI The integration of AI in identity verification is set to redefine security protocols. This evolution will require a strategic rethinking of current security measures. The need for enhanced security and user convenience drives this change.

Encryption 87

Encryption Data Privacy Privacy B2B 87

Security Affairs

NOVEMBER 25, 2020

Belden, the manufacturer of networking and cable products, disclosed a data breach, threat actors have stolen employee and business information. The company said the breach did not impact operations at manufacturing plants, quality control or shipping, it added that attackers only had access to a “limited number” of company servers.

Data breaches 102

Data breaches Manufacturing Insurance Access 102

eSecurity Planet

JANUARY 21, 2021

Governance, risk, and compliance (GRC) software helps businesses manage all of the necessary documentation and processes for ensuring maximum productivity and preparedness. It includes multi-disciplinary risk and compliance management solutions and tools, including: IT & security risk management. Third-party governance.

Compliance 57

Compliance Risk Government Retail 57