thecyberexpress.com – The Vice Society ransomware group has claimed the HAW Hamburg Data Breach, two months after the institution disclosed a cyber incident. Tweeted by @TheCyberExpress https://twitter.com/TheCyberExpress/status/1632716378942898178
Warning on SolarWinds-like supply-chain attacks: ‘They’re just getting bigger’ – ThreatsHub Cybersecurity News
threatshub.org – ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News. Tweeted by @threatshub https://twitter.com/threatshub/status/1632491818784014336
Week in review: LastPass breach, GCP data exfiltration, UEFI bootkit
helpnetsecurity.com – Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: Google Cloud Platform allows data exfiltration without a Tweeted by @Paula_Piccard https://twitter.com/Paula_Piccard/status/1632710365812498432
Colour-Blind, a fully featured info stealer and RAT in PyPI
securityaffairs.com – Experts discovered a fully featured information stealer, tracked as ‘Colour-Blind’ in the Python Package Index (PyPI). Tweeted by @JinibaBD https://twitter.com/JinibaBD/status/1632683669239283712
US Congress targets children’s advertising
iapp.org – Congress is considering legislation that would regulate how social media platforms and advertisers interact with young users. Tweeted by @PrivacyPros https://twitter.com/PrivacyPros/status/1632458497898979332
India ranks second in total number of data breaches exposed in 2022: Report
techcircle.in – Around 2.29 billion records were exposed worldwide in data breach incidents in 2022, with India accounting for 20% of the total, taking it to the second position, a new report revealed on Wednesday. Tweeted by @TechCircleIndia https://twitter.com/TechCircleIndia/status/1632222811921043457
Single Employee Caused Recent LastPass Data Breach
androidinfotech.com – LastPass, a popular password manager, has been hit by two data breaches that compromised the personal data of millions of users. Tweeted by @selva_gnsh https://twitter.com/selva_gnsh/status/1632353352783736832
Data breach: Credit Suisse client info stolen
theswisstimes.ch – In a letter to its biggest clients, Credit Suisse revealed that an employee stole their personal information years ago. Tweeted by @TheSwissTimes https://twitter.com/TheSwissTimes/status/1632147331922501635
The IAPP’s top 5 most-read articles for the week of Feb. 27, 2023
iapp.org – We know there is a lot of privacy news to sift through each week. To make it easier, we compiled a list of the most-read articles for the week of Feb. 28, 20… Tweeted by @PrivacyPros https://twitter.com/PrivacyPros/status/1632093773177016322
Advocacy group files complaints over cookie-based authentication
iapp.org – NOYB filed several complaints against websites and data brokers it believes improperly addressed access requests using cookies for authentication. Tweeted by @PrivacyPros https://twitter.com/PrivacyPros/status/1632365546577580032
FTC fines online counselor $7.8M, halts sensitive data sharing
iapp.org – The FTC announced a proposed order against online counseling service BetterHelp over alleged improper data sharing for advertising purposes. Tweeted by @PrivacyPros https://twitter.com/PrivacyPros/status/1631701635012362259
A view from DC: In Utah, ‘parent over shoulder’ will be the new normal
iapp.org – IAPP Managing Director, Washington, DC, Cobun Zweifel-Keegan, CIPM, CIPP/US, takes a look at the latest privacy developments in the U.S. Tweeted by @PrivacyPros https://twitter.com/PrivacyPros/status/1631761644278763520
FTC Commissioner Christine Wilson to resign March 31
iapp.org – U.S. Federal Trade Commissioner Christine Wilson will resign from her post March 31. Tweeted by @PrivacyPros https://twitter.com/PrivacyPros/status/1631791761591791619
Notes from the IAPP Canada Managing Director, March 3, 2023
iapp.org – Kris Klein looks at the measures taken across Canada after an investigation into TikTok, including banning TikTok on government devices. Tweeted by @PrivacyPros https://twitter.com/PrivacyPros/status/1631852049653551104
Committee approval of India’s proposed data protection bill sparks confusion
iapp.org – Conflicting reports emerged over parliamentary committee approval of India’s proposed Digital Personal Data Protection Bill. Tweeted by @PrivacyPros https://twitter.com/PrivacyPros/status/1632003189355446273
Responsible AI: What Does It Take to Turn Principles into Practice?
govtech.com – Are new regulations needed to safeguard AI use, or will best practices recommendations and existing laws be enough? And how can privacy frameworks set the groundwork for responsible AI practices? Tweeted by @PrivacyPros https://twitter.com/PrivacyPros/status/1631357463445266442
Australia’s Privacy Act reform to cover SMEs
iapp.org – ABC News reports on the potential for certain small and medium-sized businesses to be regulated under Australia’s Privacy Act reform. Tweeted by @PrivacyPros https://twitter.com/PrivacyPros/status/1631580422588051456
Meta’s Record Privacy Settlement Spurs Dispute Over State Claims
insurancejournal.com – Meta Platforms Inc. is wrong to say its $725 million settlement of a lawsuit claiming Facebook illegally shared user data with a controversial research
PLUS Panelists Warn Insurers Not to Get Comfortable Riding the Cyber Rollercoaster
carriermanagement.com – Jeremy Gittler, practice leader and head of Cyber Americas at AXA XL, thinks of the cyber insurance industry as a rollercoaster. He says that after
London Cyber Decoys Attacked 91 Million Times in January by Over 101,000 Hackers
insurancejournal.com – Computers specially configured to make cyber criminals think they were small businesses operating in London were attacked by hackers over 2,000 times