Tag: privacy
-
Die 10 häufigsten LLM-Schwachstellen
by
in SecurityNews
Tags: access, ai, api, application-security, awareness, breach, cloud, control, cyberattack, data, detection, dos, encryption, injection, least-privilege, LLM, ml, monitoring, privacy, RedTeam, remote-code-execution, risk, service, tool, update, vulnerability, zero-trust -
In potential reversal, European authorities say AI can indeed use personal data, without consent, for training
by
in SecurityNewsThe European Data Protection Board (EDPB) issued a wide-ranging report on Wednesday exploring the many complexities and intricacies of modern AI model development. It said that it was open to potentially allowing personal data, without owner’s consent, to train models, as long as the finished application does not reveal any of that private information.This reflects…
-
Top 10 cyber security stories of 2024
by
in SecurityNewsData breaches, data privacy and protection, and the thorny issue of open source security were all hot topics this year. Meanwhile, security companies frequently found themselves hitting the headlines, and not always for good reasons. Here are Computer Weekly’s top 10 cyber security stories of 2024 First seen on computerweekly.com Jump to article: www.computerweekly.com/news/366617185/Top-10-cyber-security-stories-of-2024
-
Dutch regulator fines Netflix $5 million for data privacy violations
by
in SecurityNewsNetflix did not provide customers enough information about how it uses their data, the regulator found. ]]> First seen on therecord.media Jump to article: therecord.media/dutch-fines-millions-regulator-netflix
-
Irish Data Protection Commission (DPC) fined Meta Euro251 million for a 2018 data breach
by
in SecurityNewsMeta has been fined Euro251M ($263M) for a 2018 data breach affecting millions in the EU, marking another penalty for violating privacy laws. The Irish Data Protection Commission (DPC) fined Meta Euro251 million ($263M) for a 2018 data breach impacting 29 million Facebook accounts. >>The Irish Data Protection Commission (DPC) has today announced its final…
-
Meta Fined Euro251 Million for 2018 Data Breach Impacting 29 Million Accounts
by
in SecurityNewsMeta Platforms, the parent company of Facebook, Instagram, WhatsApp, and Threads, has been fined Euro251 million (around $263 million) for a 2018 data breach that impacted millions of users in the bloc, in what’s the latest financial hit the company has taken for flouting stringent privacy laws.The Irish Data Protection Commission (DPC) said the data…
-
Key steps to scaling automated compliance while maintaining security
by
in SecurityNewsIn this Help Net Security interview, Vivek Agarwal, Privacy Program Manager at Meta Platforms, shares insights on strategies for reducing time to market, improving vendor … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/12/18/vivek-agarwal-meta-vendor-risk/
-
Facebook Owner Hit With 251 Million Euros in Fines for 2018 Data Breach
by
in SecurityNewsEU privacy watchdogs hit Facebook owner Meta with fines totaling 251 million euros after an investigation into a 2018 data breach that exposed millions of accounts. The post Facebook Owner Hit With 251 Million Euros in Fines for 2018 Data Breach appeared first on SecurityWeek. First seen on securityweek.com Jump to article: www.securityweek.com/facebook-owner-hit-with-251-million-euros-in-fines-for-2018-data-breach/
-
US Congressional Task Force Offers Roadmap for AI Governance
by
in SecurityNewsLawmakers Urge Washington to Adapt Current Laws to Avoid Duplication. The bipartisan House Task Force on AI released a final report Tuesday urging Congress to adopt an agile, incremental approach to AI policy, avoid duplicative regulations, support AI talent pathways and ensure privacy and transparency in AI governance while addressing its growing energy demands. First…
-
Meta fined $263 million for alleged GDPR violations that led to data breach
by
in SecurityNewsIreland’s data privacy regulator said it was levvying the fine for data security failures that led to information on about 29 million Facebook users being exposed.]]> First seen on therecord.media Jump to article: therecord.media/meta-fined-263-million-gdpr-violations-data-breach
-
Security leaders top 10 takeaways for 2024
by
in SecurityNews
Tags: access, ai, attack, automation, best-practice, breach, business, ciso, cloud, compliance, corporate, crowdstrike, cybercrime, cybersecurity, data, deep-fake, detection, email, finance, fraud, governance, group, guide, hacker, identity, incident response, infosec, ISO-27001, office, okta, phishing, privacy, programming, regulation, risk, risk-management, saas, security-incident, service, software, startup, strategy, technology, threat, tool, training, vulnerabilityThis year has been challenging for CISOs, with a growing burden of responsibility, the push to make cybersecurity a business enabler, the threat of legal liability for security incidents, and an expanding attack landscape.As the year comes to a close, CISOs reflect on some of the takeaways that have shaped the security landscape in 2024.…
-
How companies can address bias and privacy challenges in AI models
In this Help Net Security interview, Emre Kazim, Co-CEO of Holistic AI, discusses the need for companies to integrate responsible AI practices into their business strategies … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/12/16/emre-kazim-holistic-ai-strategy/
-
Time of Reckoning Reviewing My 2024 Cybersecurity Predictions
by
in SecurityNews
Tags: ai, attack, automation, awareness, breach, business, chatgpt, china, compliance, cyber, cyberattack, cybercrime, cybersecurity, data, data-breach, disinformation, election, espionage, exploit, healthcare, incident response, infrastructure, jobs, law, linkedin, malware, monitoring, moveIT, phishing, privacy, ransomware, regulation, risk, russia, service, software, supply-chain, technology, threat, tool, ukraine, update, vulnerability, warfare, zero-dayThe brutal reality is that cybersecurity predictions are only as valuable as their accuracy. As 2024 comes to a close, I revisit my forecasts to assess their utility in guiding meaningful decisions. Anyone can make predictions (and far too many do), but actually being correct is another matter altogether. It is commonplace for security companies…
-
Google Timeline location purge causes collateral damage
by
in SecurityNewsPrivacy measure leaves some mourning lost memories First seen on theregister.com Jump to article: www.theregister.com/2024/12/13/google_timeline_purge/
-
Texas AG launches investigation into 15 tech companies for violating child privacy law
by
in SecurityNewsPaxton has been aggressively enforcing Texas’ new privacy law. He sued General Motors for its data privacy practices in August and more recently has sent violation notices to eight companies he accused of violating Texans’ data privacy rights.]]> First seen on therecord.media Jump to article: therecord.media/texas-ag-launches-investigation-into-tech-firms-child-privacy
-
Thales and Imperva Win Big in 2024
by
in SecurityNews
Tags: access, api, application-security, attack, authentication, banking, business, ciso, cloud, communications, compliance, conference, control, cyber, cybersecurity, data, ddos, defense, encryption, firewall, gartner, group, guide, iam, identity, infosec, insurance, intelligence, malicious, mfa, microsoft, monitoring, privacy, risk, saas, service, software, strategy, threat, usaThales and Imperva Win Big in 2024 madhav Fri, 12/13/2024 – 09:36 At Thales and Imperva, we are driven by our commitment to make the world safer, and nothing brings us more satisfaction than protecting our customers from daily cybersecurity threats. But that doesn’t mean we don’t appreciate winning the occasional award. In the year…
-
Texas AG launches investigation into 14 tech companies for violating child privacy law
by
in SecurityNewsPaxton has been aggressively enforcing Texas’ new privacy law. He sued General Motors for its data privacy practices in August and more recently has sent violation notices to eight companies he accused of violating Texans’ data privacy rights.]]> First seen on therecord.media Jump to article: therecord.media/texas-ag-launches-investigation-into-tech-firms-child-privacy
-
Security researchers find deep flaws in CVSS vulnerability scoring system
by
in SecurityNewsThe industrywide method for assessing the severity of vulnerabilities in software and hardware needs to be revised because it provides potential misleading severity assessment, delegates at Black Hat Europe were told Thursday.The Common Vulnerability Scoring System (CVSS) makes use of various metrics to quantify vulnerability severity. A presentation at Black Hat by cybersecurity experts from…
-
Texas adds data broker specializing in driver behavior to list of alleged privacy law violators
by
in SecurityNewsArity, a data broker, is accused by Texas’ attorney general of sharing drivers’ behavior data without clear notice or consent. The notice follows several others to app companies in recent weeks. First seen on therecord.media Jump to article: therecord.media/arity-data-broker-texas-data-privacy-violation-notice
-
3 Common GDPR Challenges and How to Overcome Them
by
in SecurityNewsPractical tips for GDPR compliance Responsible for data protection and EU GDPR (General Data Protection Regulation) compliance? Chances are you’ve come across these 3 common challenges: Data privacy trainer Andy Snow hears about these challenges a lot, having trained over 4,000 people on the GDPR. Here are his practical tips for overcoming them. In this…
-
Trump FTC pick seen as mixed bag for data privacy enforcement
by
in SecurityNewsFerguson has voted in favor of every privacy-related enforcement since he began his tenure as a commissioner in April, but a leaked memo he wrote to Trump suggest he will diverge from the current approach in important ways.]]> First seen on therecord.media Jump to article: therecord.media/trump-ftc-pick-ferguson-seen-as-mixed-bag-on-privacy
-
El Salvador’s cyber laws threaten media freedom and privacy, human rights experts warn
by
in SecurityNewsNew laws in El Salvador “could be used to delete online publications that are critical of the government under the guise of data protection,” said Juanita Goebertus of Human Rights Watch. “This is a recipe for censorship and opacity.”]]> First seen on therecord.media Jump to article: therecord.media/el-salvador-cyber-data-protection-laws-human-rights-concerns
-
Websites and HIPAA: Navigating Online Tracking Technologies
by
in SecurityNewsToday, healthcare providers, insurers, and other HIPAA-covered entities are increasingly relying on websites to share information, engage with patients, and streamline operations. While websites offer numerous benefits, it’s crucial to understand the implications of online tracking technologies for the privacy and security of protected health information (PHI). This blog post examines the intersection of websites,…The…
-
Symmetrical Cryptography Pioneer Targets the Post-Quantum Era
by
in SecurityNewsResearchers at Cavero have created a correlating numbers mechanism, adding a layer of privacy that even threat actors can’t gain enough information to breach. First seen on darkreading.com Jump to article: www.darkreading.com/cyber-risk/symmetrical-cryptography-post-quantum-era
-
Traveling for the Holidays? Your Digital Identity Is Along for the Ride
by
in SecurityNewsTraveling for the Holidays? Your Digital Identity Is Along for the Ride andrew.gertz@t“¦ Tue, 12/10/2024 – 14:20 Identity & Access Management Access Control Thales – Cloud Protection & Licensing Solutions More About This Author > Thales Contributors: Frederic Klat, Sales Acceleration Director, and Ward Duchamps, Director of Strategy and Innovation, CIAM If you’re one…