eSecurity Planet

JANUARY 5, 2023

After a year that saw massive ransomware attacks and open cyber warfare, the biggest question in cybersecurity for 2023 will likely be how much of those attack techniques get commoditized and weaponized. Also read: SANS Outlines Critical Infrastructure Security Steps as Russia, U.S. Trade Cyberthreats. RaaS and CaaS Continue to Grow.

Security 145

Security Ransomware Cybersecurity Privacy 145

eSecurity Planet

AUGUST 22, 2023

Cybersecurity can be difficult to implement, and to make matters worse, the security professionals needed to do it right are in short supply. Managed IT security service providers (MSSPs) make life easier for organizations by providing outsourced expertise and tools at a fraction of the cost, time, and trouble of doing it yourself.

Security 98

Security Cybersecurity Cloud Access 98

Hunton Privacy

JANUARY 18, 2023

On January 16, 2023, the Directive on measures for a high common level of cybersecurity across the Union (the “NIS2 Directive”) and the Directive on the resilience of critical entities (“CER Directive”) entered into force. Reinforced obligations. Reporting of incidents. Enforcement.

Cybersecurity 111

Cybersecurity Healthcare Encryption Risk 111

Data Matters

FEBRUARY 10, 2022

On Monday, January 24, 2022, in a speech at the Northwestern University Pritzker School of Law annual Securities Regulation Institute conference, Gary Gensler, Chair of the U.S. These SEC rules could broadly affect cybersecurity requirements across the U.S. Public companies currently must disclose material cybersecurity incidents.

Cybersecurity 88

Cybersecurity Marketing Risk Compliance 88

Hunton Privacy

OCTOBER 25, 2022

million fine to Interserve Group Limited for failing to keep employee personal data secure, which violates Article 5(1)(f) and Article 32 of the EU General Data Protection Regulation (“GDPR”), during the period of March 2019 to December 2020. On October 24, 2022, the UK Information Commissioner’s Office (“ICO”) issued a £4.4

Security 97

Security Personal data GDPR Insurance 97

eSecurity Planet

SEPTEMBER 10, 2021

From the very beginning of the cloud computing era, security has been the biggest concern among enterprises considering the public cloud. In addition, 95 percent of survey respondents confirmed that they are extremely to moderately concerned about public cloud security. What is cloud security?

Cloud 131

Cloud Security Encryption Risk 131

eSecurity Planet

DECEMBER 22, 2021

When it comes to managing cybersecurity risk , approximately 35 percent of organizations say they only take an active interest if something bad happens. But in order for businesses to maintain compliance with major privacy laws , they have to have security measures in place before an attack. Detailed privacy notices.

GDPR 144

GDPR Compliance Data Privacy Privacy 144

DLA Piper Privacy Matters

AUGUST 23, 2021

Rather than bringing substantial changes to the existing China data privacy framework, the PIPL helpfully consolidates and clarifies obligations on processing of personal information at a national law level. To be clear, this is not China’s own GDPR.

Data Privacy 111

Data Privacy Privacy Compliance Analytics 111

The Last Watchdog

NOVEMBER 30, 2021

Yet, in bringing us here, APIs have also spawned a vast new tier of security holes. Yet, API security risks haven’t gotten the attention they deserve. It has become clear that API security needs to be prioritized as companies strive to mitigate modern-day cyber exposures. Thus security-proofing APIs has become a huge challenge.

IT 240

IT Security Big data Digital transformation 240

DLA Piper Privacy Matters

AUGUST 8, 2023

Authors: Carolyn Bigg, Amanda Ge and Venus Cheung On July 24, 2023, the People’s Bank of China (“ PBOC ”) released the Measures for the Management of Data Security in the Business Areas Falling into PBOC’s Jurisdiction (Draft for Comment) (“ Draft Measures” ) for public consultation, which closes on August 24, 2023.

Financial Services 98

Financial Services Personal data Compliance Data collection 98

IBM Big Data Hub

JANUARY 22, 2024

The law outlines a set of data privacy rights for users and a series of principles for the processing of personal data. The only data processing activities exempt from the GDPR are national security or law enforcement activities and purely personal uses of data. However, GDPR compliance is not necessarily a straightforward matter.

GDPR 84

GDPR Compliance Personal data Privacy 84

Data Matters

AUGUST 5, 2019

Together, the new laws require the implementation of reasonable data security safeguards, expand breach reporting obligations for certain types of information, and require that a “consumer credit reporting agency” that suffers a data breach provide five years of identity theft prevention services for impacted residents.

Cybersecurity 68

Cybersecurity Data breaches Privacy Risk 68

Data Protection Report

JANUARY 6, 2020

The Court of Justice of the European Union (CJEU) will determine the validity of the EU Standard Contractual Clauses (SCCs) ( Data Protection Commissioner v Facebook Ireland Limited, Maximillan Schrems ) whilst the General Court of the EU will consider the future of Privacy Shield (La Quadrature du Net v Commission).

Privacy 85

Privacy GDPR Data breaches Risk 85

IBM Big Data Hub

FEBRUARY 23, 2024

The General Data Protection Regulation (GDPR), the European Union’s landmark data privacy law, took effect in 2018. The only processing operations exempt from the GDPR are national security and law enforcement activities and purely personal uses of data. Even the world’s biggest businesses are not free from GDPR woes.

GDPR 79

GDPR Compliance Personal data Privacy 79

The Last Watchdog

JANUARY 30, 2019

And this continues to include enterprises that have poured a king’s ransom into hardening their first-party security posture. Privacy Shield , as well as the new EU privacy rules known as General Data Protection Regulation or GDPR. There is impetus for change – beyond the fear of sustaining a major data breach.

Risk 147

Risk Financial Services Insurance Cybersecurity 147

eSecurity Planet

APRIL 22, 2022

If your company has not already experienced a significant cybersecurity event, it is probably only a matter of time before it does. But there’s a catch: Insurers are going to carefully assess your cybersecurity controls before writing any policy, and there are limits to coverage. Also read: The Top Cybersecurity Companies.

Insurance 118

Insurance Ransomware Cybersecurity Marketing 118

DLA Piper Privacy Matters

JANUARY 11, 2021

On 16 December 2020, the European Commission adopted a proposal for a Directive on measures for a high common level of cybersecurity across the Union (“NIS II Directive”) that revises the current Directive on Security of Network and Information Systems (“NIS Directive”). Cybersecurity risk management and reporting obligations.

Cybersecurity 91

Cybersecurity Computer and Electronics Manufacturing Cloud 91

eSecurity Planet

APRIL 29, 2024

The 911 call center needs a robust phone system, trained staff, and a decision-tree process to understand how to route issues to the appropriate emergency or non-emergency agencies to address a caller’s needs. These include new opportunities, clear priorities, and better security, performance, and resilience.

Risk 65

Risk Compliance Communications Insurance 65

Data Protection Report

JANUARY 6, 2020

The Court of Justice of the European Union (CJEU) will determine the validity of the EU Standard Contractual Clauses (SCCs) ( Data Protection Commissioner v Facebook Ireland Limited, Maximillan Schrems ) whilst the General Court of the EU will consider the future of Privacy Shield (La Quadrature du Net v Commission).

Privacy 52

Privacy GDPR Data breaches Risk 52

Data Protection Report

APRIL 27, 2023

The key difference between OpenAI’s models and other ANNs is the vast size of GPT-3 and GPT-4’s training corpus and the special mathematical features of the individual ANN nodes called “transformers” that make them particularly adept at analyzing and generating language. There have been many other ANNs prior to OpenAI’s models.

Risk 97

Risk Personal data Privacy Data Privacy 97

Security Affairs

JULY 3, 2023

Semi-Structured Data: Semi-structured data lies between the structured and unstructured categories. Understanding what can lead to a loss of data is important for organizations when drafting their cyber security policies, especially with relating to compliance. They pose a significant threat to data security.

Unstructured data 98

Unstructured data Metadata Encryption Data structuring 98

DLA Piper Privacy Matters

JUNE 21, 2021

China’s Data Security Law (“ DSL ”) has come into force and takes effect on 1 September 2021. The DSL covers personal and non-personal data, and pays particular (but not exclusive) attention to the security of “important data” and a new category of “national core data”. Authors: Carolyn Bigg , Venus Cheung, Fangfang Song.

Security 71

Security Compliance Data Privacy Risk 71

Schneier on Security

FEBRUARY 2, 2023

People train for months. A system called Mayhem, created by a team of Carnegie-Mellon computer security researchers, won. It came in last overall, but it didn’t come in last in every category all of the time. In 2018, I wrote about how AI could change the attack/defense balance in cybersecurity. Winning is a big deal.

Artificial Intelligence 112

Artificial Intelligence Military Privacy Cybersecurity 112

DLA Piper Privacy Matters

NOVEMBER 16, 2021

The draft Network Data Security Management Regulation (“ Draft Regulation ”) was published for consultation on 14 November 2021, and is very wide-ranging in the compliance areas covered. Organisations are reminded of the need to register with the CAC within 15 working days of identifying “important data”.

Compliance 118

Compliance Personal data Security Risk 118

eSecurity Planet

APRIL 7, 2023

Kali Linux turns 10 this year, and to celebrate, the Linux penetration testing distribution has added defensive security tools to its arsenal of open-source security tools. For now, Kali is primarily known for its roughly 600 open source pentesting tools, allowing pentesters to easily install a full range of offensive security tools.

Energy and Utilities 141

Energy and Utilities Cybersecurity Security Passwords 141

KnowBe4

FEBRUARY 14, 2023

link] Spear Phishing Attacks Increase 127% As Use of Impersonation Skyrockets Impersonation of users, domains and brands is on the rise, as is the use of malicious links, in response to security vendors improving their ability to detect malicious attachments. Blog post with links: [link] Are Your Users Making Risky Security Mistakes?

Phishing 83

Phishing Security awareness Compliance Risk 83

Hunton Privacy

JANUARY 26, 2018

On January 25, 2018, the Standardization Administration of China published the full text of the Information Security Technology – Personal Information Security Specification (the “Specification”). The Specification divides personal information into two categories: personal information and sensitive personal information.

Information Security 48

Information Security Security Privacy Personal data 48

eSecurity Planet

AUGUST 10, 2023

Threat intelligence feeds are continually updated streams of data that inform users of different cybersecurity threats, their sources, and any infrastructure impacted or at risk of being impacted by those threats. As a bonus, many of these tools are free to access and have specialized feeds that focus on different industries and sectors.

Cybersecurity 96

Cybersecurity Access Metadata Energy and Utilities 96

eSecurity Planet

MAY 24, 2024

Cloud security fundamentals are the core requirements that ensure data protection, regulatory compliance, and access management in a cloud environment. Understanding cloud security challenges and knowing the cloud security tools available in the market significantly contribute to enhanced cloud security.

Cloud 118

Cloud Security Compliance Encryption 118

Hunton Privacy

JULY 11, 2017

On July 10, 2017, the Cyberspace Administration of China published a new draft of its Regulations on Protecting the Security of Key Information Infrastructure (the “Draft Regulations”), and invited comment from the general public.

Energy and Utilities 45

Energy and Utilities Security Cybersecurity Manufacturing 45

eSecurity Planet

OCTOBER 6, 2023

Despite all the advances in cybersecurity, email remains the starting point for the vast majority of cyberattacks, as phishing, malware and social engineering remain effective attack techniques. That makes email security software a worthwhile investment for organizations of all sizes. user/month Coro edge: $11.99/user/month

Security 131

Security Phishing Compliance Cybersecurity 131

Data Protection Report

OCTOBER 1, 2019

Although California has recently captured the lion’s share of attention with respect to privacy and security, on October 23, 2019, New York’s amended security breach law goes into effect, and on March 1, 2020, new security safeguards go live (N.Y. Readers may recall that New York’s security breach notification law (N.Y.

Security 40

Security Financial Services Passwords Risk 40

eSecurity Planet

MAY 28, 2024

Cloud security issues refer to the threats, risks, and challenges in the cloud environment. Challenges are gaps and barriers to attaining good security. To combat these cloud security issues, develop a robust cloud security strategy that addresses all three to provide comprehensive protection.

Cloud 69

Cloud Risk Security Access 69

Hunton Privacy

NOVEMBER 29, 2022

The Cybersecurity and Infrastructure Security Agency (“CISA”) recently released a draft of the agency’s Cross-Sector Cybersecurity Performance Goals (“CPGs”) for critical infrastructure in the United States.

Cybersecurity 61

Cybersecurity Communications Risk Government 61

eSecurity Planet

APRIL 26, 2024

Network security architecture is a strategy that provides formal processes to design robust and secure networks. Effective implementation improves data throughput, system reliability, and overall security for any organization. Network Elements Networks connect physical and virtual assets and control the data flow between them.

Security 118

Security Cloud Cybersecurity Risk 118

eSecurity Planet

DECEMBER 18, 2023

Cloud computing services, such as Infrastructure as a Service (IaaS), Platform as a Service (PaaS), and Software as a Service (SaaS), each have unique security concerns. IaaS involves virtualized computing resources over the internet, with users responsible for securing the operating system, applications, data, and networks.

Security 112

Security Cloud Encryption Compliance 112

Data Matters

NOVEMBER 5, 2018

To fulfill this role, the guidance lays out three broad categories for federal action: First, AV 3.0 Cybersecurity and privacy, with the guidance emphasizing the reliance of automated vehicles on connectivity to communicate and exchange data and the attendant risks to both security and consumer privacy that result.

Cybersecurity 87

Cybersecurity Government Communications Privacy 87