iapp.org – The U.K.’s proposed Data Protection and Digital Information Bill is facing delays as a new public consultation will be launched in the coming weeks. Tweeted by @PrivacyPros https://twitter.com/PrivacyPros/status/1587535482220675075
FTC alleges ‘lax security’ at edtech company led to data breaches
iapp.org – A U.S. Federal Trade Commission complaint alleges edtech company Chegg’s “lax security practices” led to four separate data breaches. Tweeted by @PrivacyPros https://twitter.com/PrivacyPros/status/1587595647447957504
DMA enters into force
iapp.org – The EU Digital Markets Act has entered into force. Tweeted by @PrivacyPros https://twitter.com/PrivacyPros/status/1587746722624700422
Amendment to Dutch money laundering bill features further restrictions on data sharing
iapp.org – Netherlands’ banks are turning to artificial intelligence to help police money laundering efforts, per a draft amendment to the Wwft. Tweeted by @PrivacyPros https://twitter.com/PrivacyPros/status/1587777187347849218
People Moves: Chaucer Taps AXA XL’s Piers to Lead Cyber; LSM Appoints Chubb’s Vince as Head of Broker Mgmt; QBE Int’l Names Stokoe, Fuller to Exec Bo…
insurancejournal.com – This edition of International People Moves details appointments at Chaucer, Liberty Specialty Markets, and QBE International. A summary of these new hires
Patient Data Left on Dark Web for Months as Australian Clinical Labs Delayed Disclosure
swarmnetics.com – At least 17,500 of the leaked ACL records contained some sort of pathology patient data. About 28,000 of the records went to the dark web accompanied by a credit card number, and 3,300 included a CVV. Tweeted by
AEPD creates tool for data controllers to identify relevant authorities to report a breach
iapp.org – Spain’s AEPD created a tool designed to help organizations determine whether to notify a data protection regulator following a breach event. Tweeted by @PrivacyPros https://twitter.com/PrivacyPros/status/1587354027104391170
States launching mobile IDs cite improved privacy, security
iapp.org – States implementing mobile driver’s licenses say they improve user privacy and security over physical cards. Tweeted by @PrivacyPros https://twitter.com/PrivacyPros/status/1587113603118907392
Country leaders gather to discuss ransomware threats
iapp.org – Leaders from 36 countries and the European Union are gathering to discussed confronting ransomware attacks. Tweeted by @PrivacyPros https://twitter.com/PrivacyPros/status/1587233258185498624
Proposed CPRA regulations move forward, public comment period to open soon
iapp.org – The CPPA board advanced modified proposed CPRA regulations with a plan to submit final rules to the Office of Administrative Law by the end of the year. Tweeted by @PrivacyPros https://twitter.com/PrivacyPros/status/1587263340392468485
Overview of EU Strategy for Data: Digital Services Act
iapp.org – The IAPP Research and Insights team provides privacy professionals with an overview of the DSA including the law’s objectives, key requirements and enforceme… Tweeted by @PrivacyPros https://twitter.com/PrivacyPros/status/1586991652563984385
Global Privacy Assembly votes to admit CPPA
iapp.org – The Global Privacy Assembly voted to admit the California Privacy Protection Agency a full voting member. Tweeted by @PrivacyPros https://twitter.com/PrivacyPros/status/1587052529833082882
Notes from the IAPP Canada Managing Director, Oct. 28, 2022
iapp.org – IAPP Managing Director, Canada, Kris Klein looks at the 44th annual Global Privacy Assembly in Turkey. Tweeted by @PrivacyPros https://twitter.com/PrivacyPros/status/1586780313430245379
What Cyber Underwriters Miss: Small Businesses Aren’t Using MFA Correctly, Advisen Panel Says
carriermanagement.com – As cyber threat actors continue to innovate and find new ways to increase their odds of success, panelists at the 2022 Advisen Cyber Risk Insights
Europe’s Biggest Copper Smelter Targeted as Part of Wider Cyberattack on Metals Industry
insurancejournal.com – Aurubis, Europe’s biggest copper smelter, said on Friday it had been targeted as part of a wider cyberattack on the metals and mining industry which had
Time is Ticking on a New OpenSSL Vulnerability
armis.com – Critical Update: “The foundation of secure data transport is exposed: OpenSSL warns of a critical security vulnerability in widely used SSL library.” Tweeted by @Capital_FinServ https://twitter.com/Capital_FinServ/status/1586632667453325315
Japan to citizens: Get a digital ID or health insurance gets harder
threatshub.org – ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News. Tweeted by @threatshub https://twitter.com/threatshub/status/1586690259382808581
Countries concerned about the sudden surge in data breaches
latesthackingupdates.com – Countries concerned about the sudden surge in data breaches sudden surge in data breaches Tweeted by @LHackingupdates https://twitter.com/LHackingupdates/status/1586445795272065024
Hackers nab $14.5M from DeFi platform Team Finance
scmagazine.com – Hackers infiltrated the Team Finance decentralized finance platform through a vulnerability and exploited cryptocurrency tokens amounting to $14.5 million, according to The Record, a news site by cyb… Tweeted by @javier_carriazo https://twitter.com/javier_carriazo/status/1586699122744217601
German state DPA: ‘legal ambiguity’ remains surrounding EU-US data transfer order
iapp.org – The Baden-Württemberg State Commissioner for Data Protection and Freedom of Information said “legal ambiguity” remains in the the EU-U.S. Data Privacy Fra… Tweeted by @PrivacyPros https://twitter.com/PrivacyPros/status/1586659390001651714