An enterprise-wide view of risk management

The third instalment in the PrivSec Podcast Series sees Nick James, CEO and Founder of Data Protection World Forum discuss risk management with Rowenna Fielding, Data Privacy Lead at Protecture.  Beyond being a fundamental pillar of organisational compliance with the General Data Protection Regulation (GDPR), sound risk management strategy will shed light on business problems […]

ICO intends to fine Marriott International, Inc more than £99m for data breach

Marriott International has received a notification from the Information Commissioner’s Office (ICO) of the regulator’s intention to fine the hotel chain £99,200,396. In November 2018, Marriott disclosed that their Starwood reservation database had been compromised between 2014 and 2018. The breach resulted in approximately 339 million guest records globally being exposed, of which around 30 […]

Record GDPR fine provides stark data and payment protection warning to business owners

PCI Pal’s CEO James Barham is encouraging businesses to step-up data protection processes and utilising descoping payment security technologies. Following reports confirming that British Airways had received notification from the Information Commissioner’s Office (ICO) of its intention to issue BA with a fine of £183 million, CEO of PCI Pal, James Barham has stressed the […]

Regulators investigate Desjardins data breach

An investigation has been launched by two Canadian privacy monitors into the Desjardins Group data breach that impacted around three million group members. The probes, conducted by the Office of the Privacy Commissioner of Canada and the equivalent office in Quebec, will explore Desjardins’ level of compliance to federal and provincial data regulation in the […]

Fraudio: Cyber-criminals fake boss voices to steal money

Millions have pounds have been stolen from a security firm through a “deepfaked” audio hacking campaign, reports reveal. Software security firm, Symantec, says it has been the victim of three “deepfake” attacks – a method whereby hackers use AI technology to manufacture other people’s voices to trick listeners into following instructions. In this case, a […]

Looking at the current state of data security

The following staggering numbers were revealed by digital security specialists Gemalto: 3.35 billion – the number of data records that were compromised worldwide in the first half 2018 alone. 214 – the number of data records that are lost or stolen every second. 72% – the jump in the number of records compromised in 2018 […]

Customer email addresses exposed in E.On email blunder

E.On has apologised after an automatic mass email inadvertently sent customers the addresses of hundreds of other customers at the energy supplier. The messages, which held requests for energy consumers’ meter readings, should have been delivered to each individual customer. However, each email also bore the details of a further 497 E.On customer names. The […]

Spize website fined SG$20K following data breach

Data regulators in Singapore have issued a takeaway restaurant, Spize, with a fine of SG$20K (£11,736) for a data breach and several further data law transgressions. Singapore’s data regulator, the Personal Data Protection Commission (PDPC) was told by a member of public on 12th August 2017 that personal data was publicaly accessible through the Spize […]