Security Boulevard

FEBRUARY 23, 2025

Home Office Contractor's Data Collection Sparks Privacy Concerns The Home Office faces scrutiny after revelations that its contractor, Equifax, collected data on British citizens while conducting financial checks on migrants applying for fee waivers.

Cybersecurity 52

Cybersecurity Government Data collection Encryption 52

Security Affairs

JULY 16, 2025

The APT stole network configs, admin credentials, and data exchanged with units across all U.S. This info could help future hacks and weaken state-level defenses against Chinese cyberattacks during crises, posing serious risks to U.S. government and critical infrastructure entities across 12 sectors, including Energy and Water.

Telecommunications 137

Telecommunications Hacking Government Data collection 137

Security Affairs

MARCH 7, 2025

This article uses differential privacy in healthcare, finance, and government data analytics to explore the mathematical foundation, implementation strategies, and real-world applications of differential privacy. According to Erlingsson (2014), Google’s RAPPOR system collects user data while maintaining anonymity.

Artificial Intelligence 67

Artificial Intelligence Healthcare Data privacy Banking 67

Lenny Zeltser

JUNE 27, 2025

Through these discussions, we agreed on the monitoring approaches and established checks and balances to mitigate the risk of data abuse. Data Collection and Retention: Here, both security and privacy want to minimize data, since less data means less risk.

Data privacy 58

Data privacy Data collection CISO Cybersecurity 58

Malwarebytes

MARCH 27, 2025

This week we learned that the US Government uses Signal for communication, after a journalist was accidentally added to a Signal chat. Probably the largest alternative to Signal, WhatsApp is owned by Meta, and has faced criticism for its data-sharing practices. Switching to Signal is justified if privacy is your top priority.

Encryption 57

Encryption Data collection Mobile Authentication 57

Centraleyes

APRIL 17, 2025

For example, requiring managerial approval for large transactions or implementing strict system access restrictions ensures that risks are mitigated at the outset. If controls are applied haphazardly, poorly monitored, or lack standardization, financial reporting risks still persist. Where Does COSO Fit In?

Risk 52

Risk Technology Accountability Cybersecurity 52

eSecurity Planet

JUNE 25, 2025

Run by a nonprofit and funded by donations, there are no ads, trackers, or data collection in Signal. Key features E2EE on messages, calls, and media Minimal data collection. Open-source code or security audits: Allows the security community to inspect how the app handles encryption and user data.

Encryption 57

Encryption Data collection Backups Accountability 57

Zero Day

JUNE 22, 2025

Close Home Tech Security 16 billion passwords leaked across Apple, Google, more: What to know and how to protect yourself Wondering if your information is posted online from a data breach? Here's how to check if your accounts are at risk and what to do next. Your MacBook is getting a big upgrade.

Passwords 101

Passwords Data breaches Password Management Identity Theft 101

Centraleyes

OCTOBER 28, 2024

Data Mapping: Identify and catalog all data assets, their sources, and how they flow through your organization. Risk Assessment: Conduct periodic risk assessments to identify potential vulnerabilities and assess compliance with data protection laws. Is our data accurate, complete, and well-managed?

Data privacy 52

Data privacy Encryption Risk Data breaches 52

eSecurity Planet

JUNE 25, 2025

Run by a nonprofit and funded by donations, there are no ads, trackers, or data collection in Signal. Key features E2EE on messages, calls, and media Minimal data collection. Open-source code or security audits: Allows the security community to inspect how the app handles encryption and user data.

Encryption 52

Encryption Data collection Backups Accountability 52

Centraleyes

DECEMBER 12, 2024

economy and a key focus of recent federal initiatives aimed at leveling the playing field in government contracting. This includes everything from risk assessments to employee training programs and incident response plans. Continuous monitoring: Provide real-time insights into risk levels, compliance gaps, and emerging threats.

Small Business 52

Small Business Risk Cybersecurity Encryption 52

SecureWorld News

JANUARY 15, 2025

With data collected from 121 organizations across diverse industries, BSIMM15 serves as both a benchmarking tool and a strategic guide for improving software security maturity. Government and European Union have passed or drafted regulations that will require companies to secure the software they sell or use.

Software 117

Software Artificial Intelligence Technology Risk 117

Zero Day

JUNE 20, 2025

Here are the facts and how to protect yourself Wondering if your information is posted online from a data breach? Here's how to check if your accounts are at risk and what to do next. PT Moor Studio/Getty With so much news about data breaches, you have to be careful not to panic each time you hear of a new one.

Passwords 106

Passwords Data breaches Password Management Identity Theft 106

Thales Cloud Protection & Licensing

MARCH 19, 2025

In 2024, 44% of consumers globally trusted banks with their personal data, but by 2025, this figure dropped to 32% for those aged 1624. While insurers benefit from regulatory oversight like the banking sector, persistent friction points like opaque claims processes and intrusive data collection eroded goodwill.

Insurance 71

Insurance Banking Authentication Data privacy 71

Malwarebytes

APRIL 9, 2025

Bad vibes are big news in privacy right now, with the public feeling isolated in securing their sensitive information from companies, governments, AI models, and scammers. Elsewhere, 69% of people said they use an ad blocker for online browsing, and 75% of people opt out of data collection, as possible.

Government 130

Government Identity Theft Data collection Accountability 130

Malwarebytes

JUNE 25, 2025

At the federal level, there is currently no comprehensive law that expressly regulates the use of facial recognition by government agencies. In China, new regulations effective from June 2025 require businesses to be transparent about facial recognition use and allow individuals to refuse biometric data collection in many cases.

Technology 69

Technology Artificial Intelligence Government Data collection 69

Zero Day

JUNE 26, 2025

We see this already with certain partnerships, like Oura's collaboration with Essence Healthcare , where every Essence patient receives a free Oura Ring to track their health data and take that data to their doctor for medical assessment. What it means for your health, privacy, and wallet HHS secretary RFK Jr.

Government 75

Government Password Management Small Business Artificial Intelligence 75

Centraleyes

JULY 10, 2025

The directive mandates companies to report on Environmental, Social, and Governance (ESG) issues. On top of that, it requires this data to be externally verified. For example, a company must report not just on its carbon emissions but also on the risks posed by climate change , such as supply chain disruptions or changing regulations.

Data collection 52

Data collection Risk Government Marketing 52

Schneier on Security

JULY 1, 2021

To overcome these challenges and champion the positive effects of cyber insurance, this paper calls for a series of interventions from government and industry. To date, the UK government has taken a light-touch approach to the cyber insurance industry. Often, that’s paying the ransom.

Insurance 321

Insurance Cyber Insurance Ransomware Marketing 321

Schneier on Security

NOVEMBER 9, 2018

The boundaries between research and grey data are blurring, making it more difficult to assess the risks and responsibilities associated with any data collection. Many sets of data, both research and grey, fall outside privacy regulations such as HIPAA, FERPA, and PII.

Data collection 225

Data collection Cyber Risk Risk Government 225

Security Affairs

OCTOBER 30, 2023

Canada banned the Chinese messaging app WeChat and Kaspersky antivirus on government mobile devices due to privacy and security risks. The Government of Canada announced a ban on the use of the WeChat and Kaspersky applications on government-issued mobile devices due to privacy and security risks.

Mobile 142

Mobile Government Data collection Antivirus 142

Centraleyes

MAY 27, 2024

What is the Centraleyes AI Governance Framework? The AI Governance assessment, created by the Analyst Team at Centraleyes, is designed to fill a critical gap for organizations that use pre-made or built-in AI tools. What are the requirements for AI Governance? The primary goals of the AI Governance assessment are threefold.

Government 110

Government Risk Technology Data collection 110

Schneier on Security

JANUARY 14, 2020

The security risks inherent in Chinese-made 5G networking equipment are easy to understand. Because the companies that make the equipment are subservient to the Chinese government, they could be forced to include backdoors in the hardware or software to give Beijing remote access. What's more, U.S.

Data collection 279

Data collection Software Government Marketing 279

Schneier on Security

DECEMBER 19, 2023

A society where big companies tell blatant lies about how they are handling our data—­and get away with it without consequences­—is a very unhealthy society. A key role of government is to prevent this from happening. On a personal level we risk losing out on useful tools.

Government 322

Government Banking Risk Internet 322

Schneier on Security

SEPTEMBER 30, 2022

Users in countries not covered by data protection regulations, such as GDPR in the EU and the California Consumer Privacy Act in the U.S., are at higher privacy risk. One hundred and three apps have differences based on country in their privacy policies.

Mobile 342

Mobile Internet Internet VPN 342

Schneier on Security

SEPTEMBER 26, 2019

There is definitely a national security risk in buying computer infrastructure from a country you don't trust. It's also why the United States has blocked the cybersecurity company Kaspersky from selling its Russian-made antivirus products to US government agencies. The risk of discovery is too great, and the payoff would be too low.

Surveillance 241

Surveillance Wireless Government Internet 241

Krebs on Security

MAY 18, 2022

for “deceptive statements” the company and its founder allegedly made over how they handle facial recognition data collected on behalf of the Internal Revenue Service , which until recently required anyone seeking a new IRS account online to provide a live video selfie to ID.me. ’ ID.me

Government 313

Government Accountability Surveillance Data collection 313

Security Affairs

MARCH 1, 2023

The Canadian government announced it will ban the video app TikTok from all government-issued devices over security concerns. The app will be removed from government devices this week. The app “presents an unacceptable level of risk to privacy and security,” explained Canada’s chief information officer.

Mobile 98

Mobile Government Data collection Data privacy 98

CSO Magazine

AUGUST 15, 2022

have questioned its data collection practices and potential ties to the Chinese state. The concerns have deepened after Buzzfeed published a report saying that data of some American users had been repeatedly accessed from China. Both lawmakers and citizens in the U.S. user traffic to servers operated by Oracle.

Data collection 112

Data collection Risk Government 112

Centraleyes

MARCH 25, 2024

Let’s discuss an acronym reshaping the business world: Vendor Risk Management , or VRM. With supply chains extending across multiple regions and involving numerous third-party vendors, organizations face unprecedented challenges in managing vendor risks effectively. What risks are you facing?

Risk 111

Risk Data collection Architecture Government 111

Security Affairs

NOVEMBER 6, 2024

The Canadian government ordered ByteDance to wind up TikTok Technology Canada, Inc. However, the government pointed out that Canadians can still access and use TikTok by choice, the use of a social media platform is a personal choice. ” reads the statement published by Canadian Government.

Government 124

Government Mobile Media Technology 124

The Last Watchdog

NOVEMBER 21, 2018

These regulations have certainly contributed to the movement towards consumerism and prompted businesses in the United States to rethink data collection and management, considering how violating these regulations could adversely affect their business and brand. For many, the answer is yes. If the U.S.

Data privacy 133

Data privacy Data collection Big data Government 133

Krebs on Security

OCTOBER 12, 2018

Tony Sager (TS): The federal government has been worrying about this kind of problem for decades. In the 70s and 80s, the government was more dominant in the technology industry and didn’t have this massive internationalization of the technology supply chain. The attacker in this case has a risk model, too.

Computers and Electronics 251

Computers and Electronics Internet Internet Technology 251

Security Boulevard

FEBRUARY 7, 2025

Bipartisan Effort Seeks to Protect National Security Amid Concerns Over Chinese Data Collection WASHINGTONA new bill set to be introduced Thursday was initiated based on an analysis by Ivan Tsarynny , CEO of Feroot Security, which uncovered serious security risks posed by the DeepSeek chatbot application.

Government 52

Government Data collection Risk 52

The Last Watchdog

SEPTEMBER 20, 2019

Local government agencies remain acutely exposed to being hacked. However, at this moment in history, two particularly worrisome types of cyber attacks are cycling up and hitting local government entities hard: ransomware sieges and election tampering. That’s long been true.

Ransomware 153

Ransomware Government Firewall Cyber Insurance 153

IT Security Guru

AUGUST 7, 2024

These regulations stress the fair treatment of customers, transparent sales practices, robust governance and consent. The Legacy Risks Many insurance companies are still bogged down with legacy solutions which hamper innovation and undermine customer trust.

Insurance 124

Insurance Data collection Authentication Technology 124

SecureWorld News

JANUARY 17, 2024

Artificial intelligence (AI) promises to transform major sectors like healthcare, transportation, finance, and government over the coming years. As adoption accelerates, so too do emerging cybersecurity risks. Continuous risk assessment and governance throughout the AI system lifecycle remains essential.

Artificial Intelligence 113

Artificial Intelligence Data collection Architecture Healthcare 113