Data News, Articles and Updates

BJC Healthcare in US suffers data breach, 33,000 affected

BJC HealthCare in the US said a data storage error potentially compromised 33,420 patient records when the information was accidentally made publicly available for nine months.

Report: Age verification tool for porn sites raises privacy concerns in UK

The UK-based digital watchdog organisation Open Rights Group is expressing concern that an age verification tool for pornography sites could potentially expose users' sensitive data, according to a report from the BBC.

Overcoming data overload in cyber-security

Faced with a shortage of skilled IT security staff, prioritising alerts can be an important strategy. By creating a set of defined processes and routines, security teams can review sets of data regularly in order to spot anomalies

Equifax breach worse than thought, consumers affected now total 147.9M

Equifax has once again bumped up the estimated number of US consumers affected by its massive breach - now saying that data on 147.9 million was somehow exposed.

Widespread security inertia leaving enterprises vulnerable to hackers

Even though enterprises across the world face varied cyber-threats in the form of ransomware attacks, phishing attacks, and attacks on unsecured data stored in the cloud, alarming levels of security inertia hold them back.

Data breach site adds 80M new records, updates 'Pwned Passwords' service

Data breach aficionado Troy Hunt has significantly updated his "Have I Been Pwned?" website in recent days, adding a data set of 2,844 breach incidents involving 80 million stolen records.

The privacy wars - individuals ask, where is our data and who has access?

We are seeing a shift in people's perception of how their personal data is collected, stored and used. Large-scale data breaches have raised the level of awareness in the general public, and shone a light on the role of data aggregators.

The tumultuous relationship between data and security

Companies struggle to understand, let alone quantify, their data risk and exposure. A new approach unites data operators managing and securing data with data consumers who need data to do their job.

US tax collector breach victims double original estimate

As typical with most breaches initially underestimating the overall impact of a cyber-security "incident," the hack of the Massachusetts Department of Revenue in the US was more than twice as large than originally anticipated.

Thales Data Threat Report: Increased security spend - in the wrong place

Some 78 percent of organisations polled The Thales 2018 Data Threat Report plan on increasing their IT security spending in 2018, up from 73 percent globally in 2017, and including nearly 86 percent of US organisations.

Unauthorised party access data on 800K Swisscom customers

Telecom giant Swisscom Wednesday disclosed that an unauthorised intruder misappropriated an unnamed sales partner's access to its data, thereby compromising basic information pertaining to approximately 800,000 customers.

GDPR and cyber-security: An opportunity that cannot be ignored

Data controllers and processors are required to carefully think about the ways to effectively secure personal data and take all necessary steps in this respect to prevent possible infringements of the Regulation.

UK's Snoopers' Charter 'inconsistent with EU law' says Court of Appeal

The Court of Appeal has found the UK's Data Retention and Investigatory Powers Act 2014, known as the Snoopers' Charter, unlawful as far as the prevention, investigation, detection and prosecution of serious crimes are concerned.

74% of privacy-immature organisations hit by losses of more than £350,000

Many organisations have been investing in resources and processes to meet GDPR standards ahead of the May deadline according to Cisco's first Privacy Maturity Benchmark Study.

661 blacklisted Bitcoin apps which leave users open to hackers

Apps on Google Play and others could steal money and personal data from victims. App stores are hosting 661 blacklisted Bitcoin apps which leave users open to hackers, accoriding to a recently published report.

Half of Norway's population have medical data leaked

Healthcare data has been stolen from more than half of Norway's population by a hacker or hacker group. The attack happened on 8 January according to BleepingComputer and came to light this week.

Four things you can do right now to prepare for GDPR compliance

Many organisations need to implement technology upgrades and end-to-end protection to assist them in meeting GDPR's data privacy requirements.

Coding protection directly into your data

Data breaches often stem from poorly-managed records. By encoding critical information about the records into the files themselves, companies can create a platform for security, efficiency and cost management.

Further thoughts on the year ahead with data destruction a bigger threat

After a year of high-profile cyber-security issues, rounded off by a PayPal data breach that exposed the PII of 1.6 million customers, data security looks set to be at the top of business agendas throughout 2018.

The Paradise Papers - a breach perspective

Leaking of the Paradise Papers raises several questions, as it should for all organisations, including Appleby itself, about how you manage, control and report on access to your sensitive data.

Chief data officers crucial to future-proof businesses & win public trust

Dr Jamie Graves at ZoneFox explains why Chief Data Officers are crucial for future-proofing businesses and winning back the public's trust.

Prioritising patient care in the age of cyber-crime

In less than six months, the GDPR will transform how organisation are able to use, store and share consumer data. This impacts every industry, but the already heavily-regulated healthcare sector will be hit particularly hard.

Wireless data tracking case to decide if US citizens have privacy rights

'An individual has no reasonable expectation of privacy in information voluntarily disclosed' is the premise being taken to the US Supreme Court Wednesday, to clarify if law enforcement must obtain warrants to access wireless data

The evolution of analytics in threat detection

Cyber threats are evolving quickly. Fortunately, so is incident detection and response (IDR), powered by data explains Eric Sun, with techniques such as honeypots identifying suspect behaviour.

Updated: DVLA selling details to parking firms seeking fines criticised

There has been speculation about the impact of incoming GDPR on government schemes that monitise the data of citizens given to them for the delivery of a service, which is then sold on without the data owner's consent.

The role of good data protection in a post cyber world

We now see 'weaponisation' of personal data against civilian groups largely indifferent to observation; as we live our lives online, criminal methods get easier, and rewards greater, cyber-crime is getting organised warns Peter Groucutt.

Ransomware attacks: why are CISOs still overlooking a key prevention method?

Don't simply reload backup data or even re-image the machine and then reload - it should undergo complete data sanitsation as progressive malware can leave behind elements that cause even more damage says Richard Stiennon.

Making data security a priority in a cloud first world

Moving to the cloud? Don't neglect the security challenges. Ensure you have a security policy that works seamlessly across on-premise and cloud says Dave Nicholson

'Data destruction' and its importance to secure your data privacy

Formatting old devices or deleting old information and selling it to third parties is common, says Sunil Chandna but data is not permanently removed and destruction or, preferably, true erasure of data is necessary.

Cracking the GDPR compliance conundrum in local government

Before you start looking at GDPR you need to understand what PII data you have, where it is, who has access, who it is shared with, and ultimately, how you can best manage it according to GDPR requirements says Julian Cook.