Data privacy, Information and InfoSec - Cyber Security Informer

Security Compliance & Data Privacy Regulations

eSecurity Planet

AUGUST 9, 2022

Regulatory compliance and data privacy issues have long been an IT security nightmare. And since the EU’s General Data Protection Regulation (GDPR) took effect May 25, 2018, IT compliance issues have been at the forefront of corporate concerns. GDPR-style data privacy laws came to the U.S.

Data privacy

Data privacy Encryption Data breaches Insurance

Alyssa Miller: Charting the Course Through InfoSec and Aviation

Security Boulevard

MARCH 24, 2024

They discuss the challenges within the cybersecurity industry, including the transition to cloud computing and the neglect […] The post Alyssa Miller: Charting the Course Through InfoSec and Aviation appeared first on Shared Security Podcast.

InfoSec

InfoSec Social Engineering Engineering Cybersecurity

Obsidian Security Wins Top Honor At Global InfoSec Awards

Security Boulevard

APRIL 24, 2023

Obsidian Security is proud to be recognized as the Best SaaS/Cloud Security solution by Cyber Defense Magazine (CDM), the industry’s leading electronic information security magazine, during RSA Conference 2023. The post Obsidian Security Wins Top Honor At Global InfoSec Awards appeared first on Security Boulevard.

InfoSec

InfoSec Information Security Data privacy

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

Cyber CEO: Data Privacy Day – How to Enhance Your Data Privacy

Herjavec Group

JANUARY 27, 2022

January 28th is Data Privacy Day, an international effort to empower individuals and support businesses in the endeavor to respect privacy, safeguard data, and enable trust. This year, the National Cybersecurity Alliance has extended the data privacy campaign to be a week-long initiative.

Data privacy

Data privacy Digital transformation Education Cybersecurity

Managing security in the spotlight: TikTok’s CSO Roland Cloutier to kick off InfoSec World

SC Magazine

JUNE 4, 2021

The opening keynote for InfoSec World 2021 will feature Roland Cloutier, chief security officer of TikTok, who will share specific strategies to gain and maintain consumer trust – particularly following security issues and political turmoil. The Chinese-owned company is reportedly set to announce the sale of U.S.

CSO

CSO InfoSec Government Media

Data Classification Policy: Definition, Examples, & Free Template

Security Boulevard

FEBRUARY 22, 2024

Editor’s note: this piece was updated with fresh information in August 2021. Do you know where your most sensitive data is? Hopefully, your infosec management team is sleeping peacefully at this hour because your. The post Data Classification Policy: Definition, Examples, & Free Template appeared first on Hyperproof.

InfoSec

InfoSec Data privacy Cybersecurity

Spotlight on Cybersecurity Leaders: Bill Bowman

SecureWorld News

FEBRUARY 26, 2024

Bill Bowman, CISSP, CIPM, is the Chief Information Security Officer & Data Privacy Officer at financial software company Emburse. A : When I was with Bright Horizons, many top-tier clients demanded InfoSec competence. He serves on the Advisory Council for SecureWorld Boston and has spoken on our conference agendas.

Cybersecurity

Cybersecurity CISO InfoSec Data privacy

New York Financial Services Firms to Face More Cybersecurity Oversight

SecureWorld News

NOVEMBER 28, 2022

Under the proposed amendment , the onus is placed upon corporate boards and executive leadership to: Implement and maintain a written cybersecurity policy—approved annually—to protect information systems and nonpublic information stored on those systems. Have Infosec certifications and passion for #cyber and #dataprivacy.

Financial Services

Financial Services Cybersecurity CISO InfoSec

Importance of Cybersecurity Profession Highlights SecureWorld Chicago

SecureWorld News

JUNE 13, 2023

It was fitting that the opening keynote panel for SecureWorld Chicago on June 8th was titled " Making the Cybersecurity Music: Navigating Challenges and Opportunities in Today's InfoSec Landscape. Well, information security, cybersecurity happens to be a critical part of the business, being able to achieve strategic objectives. "You

Cybersecurity

Cybersecurity CISO InfoSec Risk

Security Roundup May 2023

BH Consulting

MAY 23, 2023

Repetition can lead people to over-disclose information, that could then put them at risk of identity theft and cybercrime. First published in the Journal of Cybersecurity , the research aims to understand the ‘privacy paradox’, where people share information without protecting it from others who don’t need to see it.

Artificial Intelligence

Artificial Intelligence Identity Theft Social Engineering InfoSec

Data Breach Misattribution, Acxiom & Live Ramp

Troy Hunt

NOVEMBER 22, 2022

That's a particularly sore point for me right now because of this incident just last week: This is the dumbest infosec story I’ve read in… forever? For example, the sort of data requested when filling out dodgy online competitions. neat. . :) As far as name and address they are correct. number U.S.

Data breaches

Data breaches Data privacy Hacking InfoSec

Charlotte Conference Kicks Off Season with Thought Leaders' Expertise

SecureWorld News

MARCH 8, 2023

She also spoke to the broader consequences of staff shortages and how this may affect the global cybersecurity workforce gap. And two vendor panels: There's a Bad Moon On the Rise – Are You Ready? The next opportunity to catch a SecureWorld event is SecureWorld Boston , taking place at the Hynes Convention Center on March 22-23.

Cybersecurity

Cybersecurity Risk InfoSec Data privacy

Bipartisan Digital-Privacy Bill, Delete Your Data Before Selling Your Car, Firefox Total Cookie Protection

Security Boulevard

JUNE 19, 2022

A new bipartisan privacy bill, the American Data Privacy and Protection Act, “could” be the first privacy legislation in the US not doomed to fail, a story about why you should delete your location and private data in your car’s navigation system before selling it, and details on Firefox’s new privacy feature called “Total Cookie […].

Data privacy

Data privacy Technology InfoSec Information Security

Does Cybersecurity Awareness Month actually improve security?

Malwarebytes

OCTOBER 4, 2021

Cybersecurity Awareness Month is a fixture of the calendar now, as are Data Privacy Day, World Password Day, and a host of other well-intentioned privacy and security themed events. A lot of it is the same basic information you see on mainstream news reports, or blogs. The questions is, is anybody listening? Winding down.

Cybersecurity

Cybersecurity Phishing InfoSec Data privacy

Security Roundup January 2021

BH Consulting

JANUARY 12, 2021

In the words of Duo Security’s Head of Advisory CISOs Wendy Nather, “This is not a marketing report to toss in your swag bag and ignore …this report will change how we think about running infosec programs.” Data Privacy Day with a difference. MORE Fines against banks for data breaches more than doubled last year.

Data privacy

Data privacy InfoSec DNS CISO

Massive AT&T Data Leak, The Danger of Thread Hijacking

Security Boulevard

APRIL 7, 2024

Episode 324 features discussions on a significant AT&T data breach affecting 73 million customers and a sophisticated thread jacking attack targeting a journalist.

Data breaches

Data breaches Accountability Social Engineering Data privacy

Accelerate Open Banking Innovation with These 7 Data Capabilities

Security Boulevard

JULY 28, 2021

With 90% of the data risk surface in pre-production, it’s all too easy for an insecure dataset to slide out, so data must be made safe before it is copied to non-production environments. Assure data compliance. Find and protect sensitive data and personally identifiable information.

Banking

Banking Marketing Digital transformation Risk

Professional services - preliminaries

Notice Bored

APRIL 21, 2022

Yesterday I proposed a guideline on the information risk, security and privacy aspects of professional services. Contracting is an important control in its own right with significant information and commercial risks associated. Today, I'm exploring the preliminary phase. Is there a cultural fit, here, or a misfit?

Risk

Risk Data privacy Government Accountability

Redesigning the Security Narrative

Duo's Security Blog

APRIL 29, 2022

As I immersed myself in foreign concepts around the information security industry, marketing, and business practices at scale, I grew to appreciate not just the technology we were building at Duo, but the people who built it, the diverse audiences that we addressed, and the unique problems-to-solve around security at large.

Marketing

Marketing InfoSec Architecture Authentication

Facebook Doesn’t Know Where Your Data Is, New Hire Spearmishing Attack, Smart Thermostat Lock Out

Security Boulevard

SEPTEMBER 19, 2022

In recent court testimony two Facebook engineers were asked what information, precisely, does Facebook store about us, and where is it? Surprisingly they said, they don’t know.

Engineering

Engineering Data privacy Technology InfoSec

Safety first: Will insurance companies stall or accelerate cybersecurity progress?

SC Magazine

FEBRUARY 8, 2021

Ultimately, he believes “this is good for businesses as, through the insurance process, they will gain better visibility into their cyber risks and measures they can deploy to keep digital operations secure and compliant to data privacy regulations.”. billion in premium. But much will rely on regulation.

Insurance

Insurance Cyber Insurance Cybersecurity Government

Twitter’s Paywall 2FA, Mental Health Data for Sale, Meta’s Verified Program

Security Boulevard

FEBRUARY 26, 2023

How data brokers are selling sensitive mental health data for a few hundred dollars with little attempt to hide identifying information such as names […] The post Twitter’s Paywall 2FA, Mental Health Data for Sale, Meta’s Verified Program appeared first on The Shared Security Show.

Authentication

Authentication Data breaches Data privacy Technology

Live at RSA: AI Hype, Enhanced Security, and the Future of Cybersecurity Tools

Security Boulevard

MAY 12, 2024

In this first-ever in-person recording of Shared Security, Tom and Kevin, along with special guest Matt Johansen from Reddit, discuss their experience at the RSA conference in San Francisco, including their walk-through of ‘enhanced security’ and the humorous misunderstanding that ensued.

Cybersecurity

Cybersecurity Data privacy Technology InfoSec

Microsoft’s Copilot+ Recall Feature, Slack’s AI Training Controversy

Security Boulevard

MAY 26, 2024

Episode 331 of the Shared Security Podcast discusses privacy and security concerns related to two major technological developments: the introduction of Windows PC’s new feature ‘Recall,’ part of Microsoft’s Copilot+, which captures desktop screenshots for AI-powered search tools, and Slack’s policy of using user data to train machine learning features (..)

Technology

Technology Data privacy InfoSec Information Security

The Three Keys to Success in Cybersecurity

Security Boulevard

DECEMBER 31, 2023

In this episode, host Tom Eston shares the three key lessons he’s learned over his 18-year career in cybersecurity: effective communication, continuous learning, and empathy.

Cybersecurity

Cybersecurity Data privacy Technology InfoSec

New Tracker Warning Features on iPhones & Androids, 2024 Verizon Data Breach Investigations Report

Security Boulevard

MAY 19, 2024

In episode 330 Tom, Scott, and Kevin discuss the new features for iPhones and Android phones designed to warn users about secret trackers, possibly aiding in identifying stalkers.

Data breaches

Data breaches Technology Social Engineering Data privacy

The Three Keys to Success in Cybersecurity

Security Boulevard

JANUARY 2, 2024

One of the big questions that I often get is: How does someone become successful in a cybersecurity career? In this blog I want to share with you the three key lessons I’ve learned during my 18-year journey in the cybersecurity industry.

Cybersecurity

Cybersecurity Data privacy CISO Technology

Most Advanced iPhone Exploit Ever, Google’s $5 Billion Settlement, Apple’s Journal App

Security Boulevard

JANUARY 7, 2024

In this episode, we discuss the most sophisticated iPhone exploit ever, Google’s agreement to settle a $5 billion lawsuit about tracking users in ‘incognito’ mode, and a new iOS app, Journal. The iPhone exploit, known as Operation Triangulation, has complex chains of events that lead to compromised iPhone security.

Data privacy

Data privacy Technology Mobile InfoSec

Privacy Challenges in Relationships, Phishing Down but Vulnerabilities Up?

Security Boulevard

APRIL 28, 2024

Discussions include the impact of high-profile vulnerabilities and […] The post Privacy Challenges in Relationships, Phishing Down but Vulnerabilities Up? Despite phishing’s decreased prevalence, it remains the second most popular method for gaining initial network access.

Phishing

Phishing Data privacy Passwords Technology

Linux Backdoor Infection Scare, Massive Social Security Number Heist

Security Boulevard

APRIL 14, 2024

In episode 325, Tom and Kevin discuss a significant backdoor threat that nearly compromised Linux systems globally, stemming from an infiltration into an open-source project called XZ Utils by attackers who gained commit access and inserted a backdoor.

Cybersecurity

Cybersecurity Data breaches Data privacy Technology

Okta Hacked Again, Quishing Is The New Phishing, Google Play Protect Real-Time Scanning

Security Boulevard

NOVEMBER 5, 2023

In this episode, we explore the recent Okta breach where hackers obtained sensitive customer data via unauthorized access to the Okta support system. Next, we discuss the emerging threat of “quishing,” a combination of voice calls and phishing that preys on unsuspecting victims.

Phishing

Phishing Hacking Data breaches Data privacy

Who’s to Blame for Hacked Social Media Accounts, Spoofed Online Meeting Requests and Malware

Security Boulevard

MARCH 10, 2024

In episode 320, Tom and Scott discuss the contentious issue of who is accountable when Facebook or Instagram accounts are hacked, discussing potential failings on both the user’s and Meta’s part. They explore the possibility of inadequate security measures on these platforms and the implications of Meta potentially profiting from fraudulent ads.

Media

Media Accountability Hacking Malware

New Hotel Lock Vulnerabilities, Glassdoor Anonymity Issues

Security Boulevard

MARCH 31, 2024

In episode 323, the hosts discuss two prominent topics. The first segment discusses a significant vulnerability discovered in hotel locks, branded as ‘Unsaflok,’ affecting 3 million doors across 131 countries. The vulnerability allows attackers to create master keys from a regular key, granted access to all doors in a hotel.

Data privacy

Data privacy Technology InfoSec Information Security

The World of Scambaiting, Preventing Social Media Account Takeovers, Network Wrenches Hacked

Security Boulevard

JANUARY 21, 2024

In Episode 313, hosts Tom and Scott discuss the world of scambaiting, discussing what it is, the tactics used, and its effectiveness in stopping scammers. They talk about popular channels like Scammer Payback and Kitboga that show these scams in progress.

Media

Media Accountability Hacking Scams

Jason Haddix on Bug Bounties and Cybersecurity Career Growth

Security Boulevard

FEBRUARY 11, 2024

In episode 316, we have the pleasure to chat with Jason Haddix, a prominent influencer in the cybersecurity community. With an intriguing career path, from being a ‘computer kid’, venturing into the nascent dark web, to becoming a respected figure in the Bug Bounty space, his journey is nothing short of inspiration.

Cybersecurity

Cybersecurity Data privacy Technology InfoSec

How to Break Into a Cybersecurity Career – Phillip Wylie

Security Boulevard

JUNE 11, 2023

In this exciting episode of our podcast we have the pleasure of speaking with Phillip Wylie, a remarkable professional with a captivating career in cybersecurity. Join us as we discuss Phillip’s unique journey and uncover valuable insights on breaking into the cybersecurity field.

Cybersecurity

Cybersecurity Penetration Testing Data privacy Technology

Microsoft Lost Its Keys, Voice Cloning Scams, The Biden-Harris Cybersecurity Labeling Program

Security Boulevard

JULY 23, 2023

In this episode, we discuss the recent Microsoft security breach where China-backed hackers gained access to numerous email inboxes, including those of several federal government agencies, using a stolen Microsoft signing key to forge authentication tokens. A TikTok influencer used a voice cloning app to expose a cheating boyfriend.

Scams

Scams Cybersecurity Authentication Government

The TikTok Ban Bill, Your Car is Spying on You, Signal’s Username Update

Security Boulevard

MARCH 17, 2024

In episode 321, the hosts discuss how connected cars are sharing driving data with insurance companies, potentially leading to increased rates for drivers. They also talk about the anti-TikTok bill passed by the House, which could force ByteDance to sell TikTok or face a ban in app stores.

Insurance

Insurance Surveillance Data privacy Technology

Meta’s Threads and Your Privacy, Airline Reservation Scams, IDOR Srikes Back

Security Boulevard

JULY 9, 2023

However, there’s a catch – the app collects extensive personal data, sparking concerns about privacy. Next, we dive into the world of airline reservation scams, exposing how […] The post Meta’s Threads and Your Privacy, Airline Reservation Scams, IDOR Srikes Back appeared first on Shared Security Podcast.

Scams

Scams Media Data privacy Technology

iOS 17 NameDrop Debunking, Real World QR Code Attacks, Impact of Ransomware on Hospitals

Security Boulevard

DECEMBER 10, 2023

In episode 307, Tom and Scott debunk misinformation circulating about the iOS 17 NameDrop feature by law enforcement and others on social media. Next, they discuss the potential risks of QR code scams, detailing a real-life incident where a woman lost a significant amount of money due to a QR code scam.

Ransomware

Ransomware Scams Media Risk

Cybersecurity’s Role in Combating Midterm Election Disinformation

Security Boulevard

NOVEMBER 6, 2022

Katie Teitler, Senior Cybersecurity Strategist at Axonius and co-host on the popular Enterprise Security Weekly podcast, joins us to discuss the role of cybersecurity in combating midterm election disinformation.

Cybersecurity

Cybersecurity Data privacy Technology InfoSec

The FBI’s Qakbot Takedown, QR Code Phishing Attacks, Dox Anyone in America for $15

Security Boulevard

SEPTEMBER 10, 2023

In this episode we discuss the FBI’s remarkable takedown of the Qakbot botnet, a saga involving ransomware, cryptocurrency, and the FBI pushing an uninstaller to thousands of victim PCs. Next, we explore how a major U.S. energy organization fell victim to a QR code phishing attack, highlighting the ever-evolving tactics used by attackers.

Phishing

Phishing Cryptocurrency Ransomware Social Engineering

Ohio’s New Social Media Law, Meta’s Link History Feature, 175 Million Passcode Guesses

Security Boulevard

JANUARY 14, 2024

In episode 312, Tom and Scott discuss the implications of a new law in Ohio that may require parental consent for children under 16 using social media, including the pros and cons of this legislation.

Media

Media Data privacy Technology InfoSec

Hacking Ham Radio: Why It’s Still Relevant and How to Get Started

Security Boulevard

JUNE 13, 2022

This week we discuss hacking ham radio with special guests Caitlin Johanson, Rick Osgood, and Larry Pesce. In this episode you’ll learn what ham radio is, why its still relevant, why would attackers want to hack ham radio, all about packet radio and APRS (Automatic Packet Reporting System), and what equipment and licensing you need […].

Hacking

Hacking Healthcare Data privacy Technology

Security Compliance & Data Privacy Regulations

Alyssa Miller: Charting the Course Through InfoSec and Aviation

Webinars

Trending Sources

Obsidian Security Wins Top Honor At Global InfoSec Awards

Webinars

Cyber CEO: Data Privacy Day – How to Enhance Your Data Privacy

Managing security in the spotlight: TikTok’s CSO Roland Cloutier to kick off InfoSec World

Data Classification Policy: Definition, Examples, & Free Template

Spotlight on Cybersecurity Leaders: Bill Bowman

New York Financial Services Firms to Face More Cybersecurity Oversight

Importance of Cybersecurity Profession Highlights SecureWorld Chicago

Security Roundup May 2023

Data Breach Misattribution, Acxiom & Live Ramp

Charlotte Conference Kicks Off Season with Thought Leaders' Expertise

Bipartisan Digital-Privacy Bill, Delete Your Data Before Selling Your Car, Firefox Total Cookie Protection

Does Cybersecurity Awareness Month actually improve security?

Security Roundup January 2021

Massive AT&T Data Leak, The Danger of Thread Hijacking

Accelerate Open Banking Innovation with These 7 Data Capabilities

Professional services - preliminaries

Redesigning the Security Narrative

Facebook Doesn’t Know Where Your Data Is, New Hire Spearmishing Attack, Smart Thermostat Lock Out

Safety first: Will insurance companies stall or accelerate cybersecurity progress?

Twitter’s Paywall 2FA, Mental Health Data for Sale, Meta’s Verified Program

Live at RSA: AI Hype, Enhanced Security, and the Future of Cybersecurity Tools

Microsoft’s Copilot+ Recall Feature, Slack’s AI Training Controversy

The Three Keys to Success in Cybersecurity

New Tracker Warning Features on iPhones & Androids, 2024 Verizon Data Breach Investigations Report

The Three Keys to Success in Cybersecurity

Most Advanced iPhone Exploit Ever, Google’s $5 Billion Settlement, Apple’s Journal App

Privacy Challenges in Relationships, Phishing Down but Vulnerabilities Up?

Linux Backdoor Infection Scare, Massive Social Security Number Heist

Okta Hacked Again, Quishing Is The New Phishing, Google Play Protect Real-Time Scanning

Who’s to Blame for Hacked Social Media Accounts, Spoofed Online Meeting Requests and Malware

New Hotel Lock Vulnerabilities, Glassdoor Anonymity Issues

The World of Scambaiting, Preventing Social Media Account Takeovers, Network Wrenches Hacked

Jason Haddix on Bug Bounties and Cybersecurity Career Growth

How to Break Into a Cybersecurity Career – Phillip Wylie

Microsoft Lost Its Keys, Voice Cloning Scams, The Biden-Harris Cybersecurity Labeling Program

The TikTok Ban Bill, Your Car is Spying on You, Signal’s Username Update

Meta’s Threads and Your Privacy, Airline Reservation Scams, IDOR Srikes Back

iOS 17 NameDrop Debunking, Real World QR Code Attacks, Impact of Ransomware on Hospitals

Cybersecurity’s Role in Combating Midterm Election Disinformation

The FBI’s Qakbot Takedown, QR Code Phishing Attacks, Dox Anyone in America for $15

Ohio’s New Social Media Law, Meta’s Link History Feature, 175 Million Passcode Guesses

Hacking Ham Radio: Why It’s Still Relevant and How to Get Started

Stay Connected