Cyber incidents doubled in 2017
The Online Trust Alliance (OTA), an Internet Society initiative with the mission to enhance online trust, today released its Cyber […]
data breach
Former employees say Lyft staffers spied on passengers
Similar to Uber’s “God View” scandal, Lyft staffers have been abusing customer insight software to view the personal contact info […]
10 Costs Your Cyber Insurance Policy May Not Cover
If you handle enterprise security, chances are good you’ve purchased – or at least researched – cyber insurance coverage. After […]
Top Data Governance Issues from 2017 and What to Watch in 2018
Having advised companies on privacy and data security issues for the past 20 years, it is always interesting to consider […]
Tinder’s Lack of Encryption Lets Strangers Spy on Your Swipes
Researchers at Tel Aviv-based app security firm Checkmarx demonstrated that Tinder still lacks basic HTTPS encryption for photos. Just by […]
Months after Equifax data breach, we’re still no closer to privacy protections
After lots of huffing and puffing for the cameras in the wake of the Equifax breach, Republican lawmakers have blocked […]
Why Some Healthcare Entities Pay Ransoms
A recent incident involving an Indiana hospital that publicly admitted to paying a $55,000 ransom to unlock data following a […]
NSA deleted surveillance data it pledged to preserve
The National Security Agency destroyed surveillance data it pledged to preserve in connection with pending lawsuits and apparently never took […]
UK’s Home Office pays out £15,500 to asylum seeker over data breach
The Home Office has paid out £15,500 in compensation after admitting handing over sensitive information about an asylum seeker to […]
Lessons learnt from UK cyber breach enforcement case
On 10 January 2018, the UK ICO issued a fine to Carphone Warehouse amounting to £400,000, close to the maximum […]
Inside Uber’s $100,000 Payment to a Hacker, and the Fallout
How Uber grappled with a 2016 hack is under scrutiny and has cast a chill over how other companies deal […]
UK’s DPA expands guidance on data breaches
United Kingdom’s Information Commissioner’s Office (‘ICO’) on 12 January 2018 announced that it had expanded its guidance on personal data […]