China’s National Information Security Standardisation Technical Committee has released amendments to 2017’s Information Technology – Personal Information Security Specification for public comment. Since becoming effective in May 2018, the standard has set out best practices expected by Chinese regulators, and has been widely used by companies to benchmark compliance in China. The amendments reflect evolved […]
Healthcare hotline in Sweden suffers data breach
The Swedish Healthcare Guide service, which patients can call over the phone, has divulged that multiple vulnerabilities in its systems led to the exposure of information from 2.7 million sensitive calls for five years. The service’s open server had no login credentials, which meant that 170,000 hours of phone calls made between 2013 and 2018 […]
Renewed calls for US data privacy law
Politicians in the States have received more calls to strengthen data privacy laws and align more with the GDPR. Citing the damage done by the Facebook Cambridge Analytica scandal, the federal government’s chief auditor submitted a 56-page document to Congress last week. In a statement, chairman of the House Energy and Commerce Committee, Frank Pallone […]
More potential victims in LandMark White data breach
Customers of Westpac Group who have had a property valuation through the banking organisation may have been impacted by the recent LandMark White data breach, reports reveal. Westpac says that LandMark White operates as a third party to facilitate property valuations – an outsourcing arrangement which may have exposed the personal details of customers at […]
Chinese Huawei suitable for UK’s telecom development say experts
Cyber-security experts have said that risks can be managed, regarding the prospective involvement of Chinese tech giant, Huawai in Britain’s telecom undertakings. The stance of Britain’s National Cyber Security Centre has been frowned upon in the US, where the business and political elite are not keen on the idea of a Chinese cyber firm being […]
Australian political parties hacked
The Australian prime minister, Scott Morrison, has revealed that computer networks of political parties and parliament were infiltrated by malicious software recently. Just months before the Australian nation heads into an election, the PM said that the intrusion was caused by a sophisticated “state actor” and explained that no electoral interference had taken place as […]
UK politicians put renewed regulation pressures on Facebook following Zuckerberg ‘failure’
MPs in Britain have once again voiced the need for Facebook to have stricter regulations, calling for urgent measures to combat the proliferation of fake news through the social network, a BBC report reveals. The firm’s chief, Mark Zuckerberg has been accused of failing to demonstrate leadership and personal responsibility by a Commons committee, due […]
Data protection in the Brexit landscape
Last week, European Data Protection Authorities and the European Data Protection Supervisor met in the European Data Protection Board to discuss a wide range of topics on the challenges ahead in the data protection landscape. Transfers of personal data between EEA (European Economic Area) financial supervisory authorities and non-EU counterparts was among issues on the […]
Addressing the five biggest corporate challenges in compliance
The recent implementation of GDPR has made IT compliance a board level topic. Whilst GDPR itself is concerned with data privacy, It has forced organisations to think more widely about the implications of their business processes and to understand that they need to have controls in place to ensure that not only are they acting […]
GDPR requests finds that Netflix records adventure film choices
Choose-your-own-adventure production, Blackmirror’s Bandersnatch, which is available on Netflix, keeps a record of all user choice data, a Motherboard report reveals. Research conducted by Michael Veale unearthed the tracking behaviour when he emailed Netflix, requesting his viewing data under GDPR subject access request rules. Veale had intended to execute the action to teach people how […]
Valentine’s Day data breach for dating app
Account holders of a US dating app named Coffee Meets Bagel had a heart-breaking start to their Valentine’s Day this year. While couples elsewhere were exchanging chocolates, cards and flowers, around 6 million Coffee Meets Bagel users were greeted by email explaining that an “unauthorised party” had obtained access to their names and email addresses. […]