Tag: privacy
-
CCPA: Understanding how synthetic data can help achieve compliance
You’ve probably felt the pain of trying to move fast while navigating a growing maze of privacy rules. Learn how synthetic data helps your organization comply with CCPA. First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/01/ccpa-understanding-how-synthetic-data-can-help-achieve-compliance/
-
Breach Roundup: Software Update Caused Verizon Outage
Also, Venezuela Cyberattack, Endesa Confirms Breach and Telegram IP Leak. This week, a software flaw caused the Verizon outage. U.S. cyberattack in Venezuela. ICE identities published online. BreachForums users leaked. Spanish energy provider Endesa data breach. Telegram privacy risk. A MuddyWater upgrade. Dutch man sentenced for hacking a maritime port. A ServiceNow patch. First seen…
-
NDSS 2025 PolicyPulse:Precision Semantic Role Extraction For Enhanced Privacy Policy Comprehension
Session 8D: Usability Meets Privacy Authors, Creators & Presenters: Andrick Adhikari (University of Denver), Sanchari Das (University of Denver), Rinku Dewri (University of Denver) PAPER PolicyPulse: Precision Semantic Role Extraction For Enhanced Privacy Policy Comprehension The effectiveness of natural language privacy policies continues to be clouded by concerns surrounding their readability, ambiguity, and accessibility. Despite…
-
AI in Manufacturing: The Growing Risk and Reward Dilemma Escalating Data Security
Explore the challenges and strategies for securing AI integration in manufacturing, focusing on governance, data privacy, and the role of connected worker platforms. First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/01/ai-in-manufacturing-the-growing-risk-and-reward-dilemma-escalating-data-security/
-
Proton expands Lumo AI assistant with encrypted, project-based workspaces
Lumo is Proton’s AI assistant, built with a focus on privacy and user control. It runs on Proton’s infrastructure and is designed so conversations are not used to train models … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/01/14/proton-lumo-1-3-projects/
-
Dark Patterns, Children’s Data and Corporate Fiduciary Risk
How UX Decisions Are Becoming Regulatory Liabilities for CISOs Children’s data is entering a new regulatory era where dark patterns, defaults and monetization choices can signal breached fiduciary duty. As privacy, safety and consumer laws converge globally, CISOs must treat manipulative UX, consent flows and retention practices as core security and governance risks. First seen…
-
Telegram to Add Warning for Proxy Links After IP Leak Concerns
Telegram will add a warning for proxy links after reports showed they can expose user IP addresses with a single click, bypassing VPN or privacy settings. First seen on hackread.com Jump to article: hackread.com/telegram-add-warning-proxy-links-ip-leak/
-
California Fines, Bans Data Broker in Privacy Crackdown
Regulators Cite Sales of Sensitive Health, Demographic Data. California state regulators fined a Texas company that buys and sells data for targeted marketing, including lists pertaining to health conditions of older adults, as part of a crackdown on data brokers. The firm is now banned from selling all Californians’ personal information. First seen on govinfosecurity.com…
-
Navigating Privacy and Cybersecurity Laws in 2026 Will Prove Difficult
No matter what new laws or regulations make the cut for 2026, it’s clear that compliance challenges will persist and federal legislation will be limited. First seen on darkreading.com Jump to article: www.darkreading.com/cyber-risk/navigating-privacy-and-cybersecurity-laws-in-2026-will-prove-difficult
-
Apple confirms Google Gemini will power Siri, says privacy remains a priority
Apple and Google have confirmed that the next version of Siri will use Gemini and Google Cloud in a multi-year collaboration between the two tech giants. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/apple/apple-confirms-google-gemini-will-power-siri-says-privacy-remains-a-priority/
-
California Shuts Down Health Data Resales By Unregistered Brokers
California privacy regulator, the CPPA, is cracking down on data brokers trading personal data without authorization First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/california-shuts-health-data/
-
California bans data broker reselling health data of millions
The California Privacy Protection Agency (CalPrivacy) has taken action against the Datamasters marketing firm that sold the health and personal data of millions of users without being registered as a data broker. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/legal/california-bans-data-broker-reselling-health-data-of-millions/
-
NDSS 2025 EMIRIS: Eavesdropping On Iris Information Via Electromagnetic Side Channel
Session 8B: Electromagnetic Attacks Authors, Creators & Presenters: Wenhao Li (Shandong University), Jiahao Wang (Shandong University), Guoming Zhang (Shandong University), Yanni Yang (Shandong University), Riccardo Spolaor (Shandong University), Xiuzhen Cheng (Shandong University), Pengfei Hu (Shandong University) PAPER EMIRIS: Eavesdropping On Iris Information Via Electromagnetic Side Channel Iris recognition is one of the most secure biometric…
-
Illinois Department of Human Services (IDHS) suffered a data breach that impacted 700K individuals
Illinois Department of Human Services (IDHS) exposed personal and health data of nearly 700,000 residents due to incorrect privacy settings. The Illinois Department of Human Services (IDHS ) disclosed a data breach after misconfigured privacy settings exposed personal and health data of nearly 700,000 residents. On September 22, 2025, IDHS discovered that internal maps meant…
-
Illinois Notifies 700,000 of Misconfiguration Breach
Mapping Platform Exposed Addresses and Medical Assistance Plans. The Illinois Department of Human Services is notifying more than 700,000 people of a breach involving incorrect privacy settings left in place for several years that exposed online data pertaining to Medicare, Medicaid and rehabilitation services recipients. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/illinois-notifies-700000-misconfiguration-breach-a-30486
-
Illinois Department of Human Services data breach affects 700K people
The Illinois Department of Human Services (IDHS), one of Illinois’ largest state agencies, accidentally exposed the personal and health data of nearly 700,000 residents due to incorrect privacy settings. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/illinois-department-of-human-services-data-breach-affects-700k-people/
-
CCPA Compliance Checklist for 2026: What You Need to Know
Key Takeaways The California Consumer Privacy Act (CCPA) is California’s primary privacy law governing how businesses collect, use, disclose, and protect personal information about California residents. Since its introduction, the law has steadily evolved, expanding both the rights granted to individuals and the expectations placed on organizations that handle personal data. The CCPA law gives……
-
ChatGPT Health: Top Privacy, Security, Governance Concerns
OpenAI: Tool Will ‘Securely’ Connect With Medical Records, But How Will That Work?. OpenAI is rolling out a new version of ChatGPT dedicated to health that the company said will also securely connect users’ medical records and wellness apps to better personalize responses. OpenAI says more than 230 million people each week ask ChatGPT wellness…
-
ChatGPT Health feature draws concern from privacy critics over sensitive medical data
The artificial intelligence juggernaut in a blog post encouraged its hundreds of millions of users to connect medical records and wellness app data to the new health-focused chatbot feature, adding that it will be outfitted with extra data privacy protections. First seen on therecord.media Jump to article: therecord.media/chatgpt-health-draws-concern-privacy-critics
-
Zero-Knowledge Compliance: How Privacy-Preserving Verification Is Transforming Regulatory Technology
Traditional compliance often forces companies to expose sensitive information to prove they follow the rules. This approach increases the risk of breaches and raises severe privacy concerns. With rising regulatory pressure and stricter data sovereignty laws, more organizations are exploring zero-knowledge frameworks as a safer alternative. Zero-knowledge proofs (ZKPs) allow businesses to prove adherence without..…
-
OpenAI says ChatGPT won’t use your health information to train its models
OpenAI is rolling out ChatGPT Health, which is a dedicated space for health conversations. Amidst privacy concerns, OpenAI said it won’t use your health data. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/artificial-intelligence/openai-says-chatgpt-wont-use-your-health-information-to-train-its-models/
-
Critical macOS Flaw Lets Attackers Bypass Apple Privacy Controls Without Consent
A newly disclosed macOS vulnerability bypasses Apple’s TCC privacy controls, allowing silent access to files, microphone data, and user activity. The post Critical macOS Flaw Lets Attackers Bypass Apple Privacy Controls Without Consent appeared first on TechRepublic. First seen on techrepublic.com Jump to article: www.techrepublic.com/article/news-macos-flaw-apple-privacy-controls/
-
Court Demands OpenAI Hand Over 20M Anonymized ChatGPT Chats in AI Copyright Dispute
A federal judge has ordered OpenAI to turn over 20 million anonymized ChatGPT conversation logs in a major copyright lawsuit, rejecting the company’s arguments that privacy concerns should limit the disclosure. District Judge Sidney H. Stein upheld a ruling by Magistrate Judge Ona T. Wang requiring OpenAI to produce records for news organization plaintiffs, including…
-
8 things CISOs can’t afford to get wrong in 2026
Tags: access, advisory, ai, attack, automation, awareness, breach, business, ciso, cloud, communications, compliance, control, cyber, cyberattack, cybersecurity, data, data-breach, defense, dora, encryption, finance, firmware, GDPR, healthcare, identity, incident response, india, infrastructure, injection, insurance, intelligence, iot, jobs, law, malicious, monitoring, network, privacy, ransom, regulation, resilience, risk, saas, scam, service, software, strategy, supply-chain, tactics, technology, theft, threat, tool, training, update, vulnerability, zero-trust“Identity and access controls for AI agents and AI platforms are one of the most important areas of concern for CISOs,” says Jason Stading, director at global technology research and advisory firm ISG. “Right now, permissions and access rights for AI are a black box in many areas. We will see a major push over…
-
NDSS 2025 Exploiting the Complexity Of Modern CSS For Email And Browser Fingerprinting
Session 8A: Email Security Authors, Creators & Presenters: Leon Trampert (CISPA Helmholtz Center for Information Security), Daniel Weber (CISPA Helmholtz Center for Information Security), Lukas Gerlach (CISPA Helmholtz Center for Information Security), Christian Rossow (CISPA Helmholtz Center for Information Security), Michael Schwarz (CISPA Helmholtz Center for Information Security) PAPER Cascading Spy Sheets: Exploiting the Complexity…
-
Privacy will be under unprecedented attack in 2026
The UK and Europe are ramping up opposition to encryption and stepping up surveillance of private communications. Here is what to expect this year First seen on computerweekly.com Jump to article: www.computerweekly.com/news/366636751/Privacy-will-be-under-unprecedented-attack-in-2026