Tag: privacy
-
DEF CON 32 XR for All: Accessibility and Privacy for Disabled Users
by
in SecurityNewsAuthors/Presenters: Dylan Fox Our sincere appreciation to DEF CON, and the Authors/Presenters for publishing their erudite DEF CON 32 content. Originating from the conference’s events located at the Las Vegas Convention Center; and via the organizations YouTube channel. Permalink First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/12/def-con-32-xr-for-all-accessibility-and-privacy-for-disabled-users/
-
Navigating the Pixel Minefield: Strategies for Risk Mitigation
by
in SecurityNewsIn the previous posts, we explored the world of web pixels, uncovering potential privacy risks and highlighting the importance of a thorough audit. Now, let’s shift our focus to actionable strategies for mitigating these risks and ensuring your web pixel usage is both effective and ethical. 1. Embrace Transparency and Control: Users are increasingly concerned…The…
-
Texas hits data brokers for not registering, underscoring a larger privacy problem
by
in SecurityNewsTexas sent violation notices last Monday warning six businesses that they must register with the state or face fines of at least $100 a day spent unregistered, Recorded Future News learned through public records requests.]]> First seen on therecord.media Jump to article: therecord.media/texas-hits-data-brokers-for-not-registering
-
The Paper Passport Is Dying
by
in SecurityNews
Tags: privacySmartphones and face recognition are being combined to create new digital travel documents. The paper passport’s days are numbered”, despite new privacy risks. First seen on wired.com Jump to article: www.wired.com/story/the-paper-passport-is-dying/
-
Apple Intelligence raises stakes in privacy and security
by
in SecurityNewsApple’s latest innovation, Apple Intelligence, is redefining what’s possible in consumer technology. Integrated into iOS 18.1, iPadOS 18.1 and macOS Sequoia 15.1, this milestone puts advanced artificial intelligence (AI) tools directly in the hands of millions. Beyond being a breakthrough… First seen on securityintelligence.com Jump to article: securityintelligence.com/news/apple-intelligence-raises-stakes-in-privacy-and-security/
-
Unmasking the Risks: Auditing Your Web Pixel Usage
by
in SecurityNewsIn our last post, we discussed the powerful, yet potentially risky nature of web pixels. Now, let’s dive into how you can assess your organization’s use of these digital trackers and uncover potential privacy vulnerabilities. Conducting a Thorough Audit Think of this audit as a detective investigation, where you need to gather all the clues…The…
-
How Will Health Data Privacy, Cyber Regs Shape Up in 2025?
by
in SecurityNewsWashington and Nevada were among states enacting new data privacy laws in 2024, and that trend among states will likely continue into 2025 as the next presidential administration comes into office promising to reduce federal regulations, said attorney Melissa Crespo of law firm Morrison Foerster. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/interviews/how-will-health-data-privacy-cyber-regs-shape-up-in-2025-i-5431
-
7 biggest cybersecurity stories of 2024
by
in SecurityNews
Tags: access, ai, alphv, at&t, attack, authentication, breach, business, china, cio, ciso, citrix, cloud, credentials, crowdstrike, crypto, cyber, cybercrime, cybersecurity, data, data-breach, deep-fake, detection, email, espionage, exploit, extortion, finance, google, government, group, hacking, healthcare, incident response, infection, insurance, intelligence, international, jobs, lockbit, malicious, malware, mandiant, mfa, microsoft, network, nis-2, north-korea, office, phishing, phone, privacy, ransomware, regulation, risk, risk-management, scam, service, software, strategy, tactics, technology, threat, ukraine, update, vulnerability, windowsCybersecurity headlines were plenty this year, with several breaches, attacks, and mishaps drawing worldwide attention.But a few incidents in particular had far-reaching consequences, with the potential to reshape industry protections, shake up how vendors secure customers’ systems, or drive security leaders to reassess their strategies.Longer-term trends such as increased cybersecurity regulations and the impact of…
-
Italy’s data protection watchdog fined OpenAI Euro15 million over ChatGPT’s data management violations
by
in SecurityNewsItaly’s data protection watchdog fined OpenAI Euro15 million for ChatGPT’s improper collection of personal data. Italy’s privacy watchdog, Garante Privacy, fined OpenAI Euro15M after investigating ChatGPT’s personal data collection practices. The Italian Garante Priacy also obliges OpenAI to conduct a six-month informational campaign over ChatGPT’s data management violations. The decision stems from a March 2023…
-
The Hidden Cost of Web Pixels A Privacy and Security Nightmare
by
in SecurityNewsHey everyone, let’s talk about something we all encounter every day on the internet: web pixels. You might know them as tracking pixels or pixel tags. These tiny snippets of code, often invisible to the naked eye, are embedded in websites and emails. They might seem harmless, but they can have big consequences for your…The…
-
U.S. Court rules against NSO Group in WhatsApp spyware Lawsuit
by
in SecurityNewsA U.S. court ruled in favor of WhatsApp against NSO Group, holding the spyware vendor liable for exploiting a flaw to deliver Pegasus spyware. WhatsApp won a legal case against NSO Group in a U.S. court over exploiting a vulnerability to deliver Pegasus spyware. Will Cathcart of WhatsApp called the ruling a major privacy victory,…
-
Why cryptography is important and how it’s continually evolving
by
in SecurityNewsCryptography is fundamental to modern cybersecurity, forming the foundation for secure communication and data protection in a world increasingly reliant on digital technologies. Its importance cannot be overstated, as it safeguards sensitive information, preserves privacy, and builds trust in the digital world. As cyber threats evolve, cryptography continues to advance, addressing emerging challenges which have…
-
Beware Of Shadow AI Shadow IT’s Less Well-Known Brother
While AI tools can enable employees to be innovative and productive, significant data privacy risks can stem from their usage. The post Beware Of Shadow AI Shadow IT’s Less Well-Known Brother appeared first on SecurityWeek. First seen on securityweek.com Jump to article: www.securityweek.com/beware-of-shadow-ai-shadow-its-less-well-known-brother/
-
Malicious Apps On Amazon Appstore Records Screen And Interecpt OTP Verifications
by
in SecurityNewsA seemingly benign health app, >>BMI CalculationVsn,
-
Italy’s Privacy Watchdog Fines OpenAI for ChatGPT’s Violations in Collecting Users Personal Data
by
in SecurityNewsItaly’s data protection watchdog fined OpenAI 15 million euros ($15.6 million) after wrapping up a probe into collection of personal data. The post Italy’s Privacy Watchdog Fines OpenAI for ChatGPT’s Violations in Collecting Users Personal Data appeared first on SecurityWeek. First seen on securityweek.com Jump to article: www.securityweek.com/italys-privacy-watchdog-fines-openai-for-chatgpts-violations-in-collecting-users-personal-data/
-
Apple Complains Meta Requests Risk Privacy in Spat Over EU Efforts to Widen Access to iPhone Tech
Apple complained that requests from Meta Platforms for access to its operating software threaten user privacy, in a spat fueled by the European Union’s intensifying efforts to get the iPhone maker to open up to products from tech rivals. The post Apple Complains Meta Requests Risk Privacy in Spat Over EU Efforts to Widen Access…
-
ICO Warns of Mobile Phone Festive Privacy Snafu
The Information Commissioner’s Office has warned that millions of Brits don’t know how to erase personal data from their old devices First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/ico-warns-festive-mobile-phone/
-
Italy Fines OpenAI Euro15 Million for ChatGPT GDPR Data Privacy Violations
by
in SecurityNewsItaly’s data protection authority has fined ChatGPT maker OpenAI a fine of Euro15 million ($15.66 million) over how the generative artificial intelligence application handles personal data.The fine comes nearly a year after the Garante found that ChatGPT processed users’ information to train its service in violation of the European Union’s General Data Protection Regulation (GDPR).The…
-
Understanding Cyber Threats During the Holiday Season
by
in SecurityNewsUnderstanding Cyber Threats During the Holiday Season Understanding Cyber Threats During the Holiday Season The holiday season, while festive, presents heightened cybersecurity risks for businesses. Cybercriminals exploit increased online activity and reduced vigilance during this period. Understanding these threats is crucial for effective defense. The holiday season, while festive, presents heightened cybersecurity risks for businesses….The…
-
Is Your Company’s Website Compromising Customer Data?
by
in SecurityNewsIf you are a security, compliance, and privacy professional, it’s time to focus on an often-ignored issue”, client-side security. While many organizations dedicate significant resources to protecting their servers, there’s a critical question to consider: are you also safeguarding what’s happening on your users’ browsers? Every time a user visits your website, their browser downloads…
-
Bipartisan bills to protect car owners’ privacy introduced in House and Senate
by
in SecurityNewsThe Auto Data Privacy and Autonomy Act would require automakers to create opt-in mechanisms for vehicle data collection and would bar manufacturers from sharing, selling or leasing customer data without explicit consent]]> First seen on therecord.media Jump to article: therecord.media/bipartisan-bills-car-owner-privacy-introduced-house-senate
-
European authorities say AI can use personal data without consent for training
by
in SecurityNewsThe European Data Protection Board (EDPB) issued a wide-ranging report on Wednesday exploring the many complexities and intricacies of modern AI model development. It said that it was open to potentially allowing personal data, without owner’s consent, to train models, as long as the finished application does not reveal any of that private information.This reflects…
-
NYDOH Cybersecurity Regulations: What Healthcare Providers Need to Know in 2025
by
in SecurityNews10 NYCRR 405.46: NY’s New Hospital Cyber Regulation Hospitals are no strangers to health data privacy laws like HIPAA. But New York’s new cybersecurity regulations take things to the next level. Finalized by the New York State Department of Health (NYDOH) in October 2024, these laws aim to fill gaps left by existing frameworks. They……
-
IAM Predictions for 2025: Identity as the Linchpin of Business Resilience
by
in SecurityNews
Tags: access, ai, apple, attack, authentication, banking, breach, business, cloud, compliance, corporate, credentials, crime, data, deep-fake, detection, finance, iam, identity, malicious, microsoft, mobile, office, passkey, password, privacy, regulation, resilience, risk, service, supply-chain, theft, threat, tool, vulnerabilityIAM Predictions for 2025: Identity as the Linchpin of Business Resilience madhav Thu, 12/19/2024 – 05:33 As we look toward 2025, the lessons of 2024 serve as a stark reminder of the rapidly evolving identity and access management (IAM) landscape. The numbers tell the story: The latest Identity Theft Resource Center report indicates that consumers…
-
Dutch DPA Fines Netflix Euro4.75 Million for GDPR Violations Over Data Transparency
by
in SecurityNewsThe Dutch Data Protection Authority (DPA) on Wednesday fined video on-demand streaming service Netflix Euro4.75 million ($4.93 million) for not giving consumers enough information about how it used their data between 2018 and 2020.An investigation launched by the DPA in 2019 found that the tech giant did not inform customers clearly enough in its privacy…
-
Is Your Hospital Sharing Patient Data with Facebook? A Guide for Security and Privacy Teams
by
in SecurityNewsRecent lawsuits have revealed a critical privacy concern for healthcare providers the sharing of patient data with Facebook through tracking pixels. We wrote this article to help your security and privacy teams assess their risk, identify key stakeholders, and understand the urgency of this issue. What is the risk? Many hospitals use Meta Pixel,…The post…
-
Die 10 häufigsten LLM-Schwachstellen
by
in SecurityNews
Tags: access, ai, api, application-security, awareness, breach, cloud, control, cyberattack, data, detection, dos, encryption, injection, least-privilege, LLM, ml, monitoring, privacy, RedTeam, remote-code-execution, risk, service, tool, update, vulnerability, zero-trust -
In potential reversal, European authorities say AI can indeed use personal data, without consent, for training
by
in SecurityNewsThe European Data Protection Board (EDPB) issued a wide-ranging report on Wednesday exploring the many complexities and intricacies of modern AI model development. It said that it was open to potentially allowing personal data, without owner’s consent, to train models, as long as the finished application does not reveal any of that private information.This reflects…
-
Top 10 cyber security stories of 2024
by
in SecurityNewsData breaches, data privacy and protection, and the thorny issue of open source security were all hot topics this year. Meanwhile, security companies frequently found themselves hitting the headlines, and not always for good reasons. Here are Computer Weekly’s top 10 cyber security stories of 2024 First seen on computerweekly.com Jump to article: www.computerweekly.com/news/366617185/Top-10-cyber-security-stories-of-2024
-
Dutch regulator fines Netflix $5 million for data privacy violations
by
in SecurityNewsNetflix did not provide customers enough information about how it uses their data, the regulator found. ]]> First seen on therecord.media Jump to article: therecord.media/dutch-fines-millions-regulator-netflix