iapp.org – The U.S. Federal Communications Commission offered clarification that callers must obtain consent prior to delivering “ringless voicemails.” Tweeted by @PrivacyPros https://twitter.com/PrivacyPros/status/1596307995461402625
EU Council releases new proposed Cyber Resilience Act text
iapp.org – The Czech presidency of the Council of the European Union released new text on the Cyber Resilience Act. Tweeted by @PrivacyPros https://twitter.com/PrivacyPros/status/1596187897115222016
WhatsApp data breach sees nearly 500 million user records up for sale
techradar.com – Almost a quarter of all WhatsApp user phone numbers are up for sale following apparent breach. Tweeted by @zabrinskyy https://twitter.com/zabrinskyy/status/1596447782302552064
OKE Group Attempts to Trade Old Customer Data with Newer Leaks
thecyberexpress.com – According to reports, the crime was attributed to the OKE group. However, much has not been discovered about them yet. Tweeted by @TheCyberExpress https://twitter.com/TheCyberExpress/status/1596161536753651716
Massive Twitter data breach was far worse than reported, reveal security researchers
9to5mac.com – A massive Twitter data breach last year, exposing more than five million phone numbers and email addresses, was worse than initially reported. We’ve been shown evidence that the same security vulnera… Tweeted by @yogi_Londhe https://twitter.com/yogi_Londhe/status/1596487846826631169
Lawsuit alleges Facebook collects personal data for ad targeting
iapp.org – A lawsuit filed in London’s High Court accuses Facebook of “surveillance advertising” and calls on the company to stop the practice. Tweeted by @PrivacyPros https://twitter.com/PrivacyPros/status/1595855326535892993
European Commission introduces public-sector interoperability legislation
iapp.org – The European Commission proposed the Interoperable Europe Act, aimed at streamlining public-sector data sharing across EU member states. Tweeted by @PrivacyPros https://twitter.com/PrivacyPros/status/1596127330237353984
Docker Hub repositories hide over 1,650 malicious containers
bleepingcomputer.com – Over 1,600 publicly available Docker Hub images hide malicious behavior, including cryptocurrency miners, embedded secrets that can be used as backdoors, DNS hijackers, and website redirectors. Tweeted by @JinibaBD https://twitter.com/JinibaBD/status/1596051109545938950
Fake MSI Afterburner targets Windows gamers with miners, info-stealers
bleepingcomputer.com – Windows gamers and power users are being targeted by fake MSI Afterburner download portals to infect users with cryptocurrency miners and the RedLine information-stealing malware. Tweeted by @WhaleCartel https://twitter.com/WhaleCartel/status/1595898539808366592
Meta links US military to fake social media influence campaigns
threatshub.org – ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News. Tweeted by @threatshub https://twitter.com/threatshub/status/1595822934584483840
German state DPA releases processor code of conduct
iapp.org – The LfDI released a code of conduct for processors, offering standardized rules to support companies in applying the EU GDPR. Tweeted by @PrivacyPros https://twitter.com/PrivacyPros/status/1595734465548107777
South Korea, UK finalize adequacy decision
iapp.org – The U.K. Department for Digital, Culture, Media and Sport announced the finalization of the country’s adequacy decision with South Korea. Tweeted by @PrivacyPros https://twitter.com/PrivacyPros/status/1595613350456614912
How machine learning can help small businesses deal with data privacy compliance
iapp.org – This article explores how machine learning can help small to mid-sized businesses attain privacy compliance. Tweeted by @PrivacyPros https://twitter.com/PrivacyPros/status/1595553102098112513
VR devices used in schools violate privacy laws
iapp.org – An analysis by Common Sense Media identified serious privacy concerns with the seven most popular virtual reality devices used in schools. Tweeted by @PrivacyPros https://twitter.com/PrivacyPros/status/1595523050539450368
Scotland to pilot digital identity platform
iapp.org – Scotland will pilot a digital identity platform with Disclosure Scotland in early 2023. Tweeted by @PrivacyPros https://twitter.com/PrivacyPros/status/1595477981769523201
Cyber Protection as Important as Missile Defense Systems: Retired NATO General
insurancejournal.com – A cyber attack on the German ports of Bremerhaven or Hamburg would severely impede NATO efforts to send military reinforcements to allies, retired U.S.
Cyber Risk Modeler DeNexus Opens UK Office
insurancejournal.com – DeNexus Inc., the Sausalito, Calif.-based provider of cyber risk modeling, has opened an office in London as part of its strategy to build out its cyber
MEPs pitch enforcement changes to proposed AI Act
iapp.org – European Parliament rapporteurs for the proposed Artificial Intelligence Act circulated a fresh compromise text focused on overhauling enforcement. Tweeted by @PrivacyPros https://twitter.com/PrivacyPros/status/1595372014763548672
AI sandboxes: A new European norm?
iapp.org – Join the IAPP on LinkedIn Live Dec. 8 for a conversation exploring the usefulness of AI sandboxes in the face of proposed EU legislation. Tweeted by @PrivacyPros https://twitter.com/PrivacyPros/status/1595341779468922881
India’s Digital Personal Data Protection Bill 2022: Does it overhaul the former PDPB?
iapp.org – PwC India Senior Associate Ravin Nandle provides an overview of India’s Digital Personal Data Protection Bill 2022. Tweeted by @PrivacyPros https://twitter.com/PrivacyPros/status/1595250942793854976