Sunday, September 27, 2020

Subscribers Only

Free

Equifax: 2.5 Million More Individuals Impacted by Hack, Total Rises to 145.5 million

More than 2 million more customers may be impacted by the Equifax data breach than the company’s original estimate of 143 million individuals, according to a statement from the company. The uncovered 2.5 million people brings the total number affected to 145.5 million. More at CyberScoop
Must be a Paid Member or a Free Trial Member to Access Content. Members log in here.

Compliance App Looks for Data Companies Don’t Know They’re Collecting

Law firm Norton Rose Fulbright has launched the Network Traffic Analyzer, a new data protection tool designed to help organizations keep track of data they didn’t even know they were collecting, which may be putting them in conflict with emerging data privacy regulations. Companies are turning to their law firms for help with cybersecurity and […]
Must be a Paid Member or a Free Trial Member to Access Content. Members log in here.

Ontario Government Seeks Input for Private Sector Privacy Legislation

Ontario’s Ministry of Government and Consumer Services is contemplating new private sector privacy legislation to govern how businesses collect, use, and disclose customers’ data. The ministry is seeking feedback through October 1 on key issues in this new privacy framework. Ontario has privacy legislation that applies to government institutions and specific health care providers, but […]
Must be a Paid Member or a Free Trial Member to Access Content. Members log in here.

In Race to GDPR Compliance, US Outpacing EU Counterparts

With enforcement of the EU’s General Data Protection Regulation only six months away, both US and EU companies are getting serious about becoming compliant, but more US organizations (84 percent) report that they’ll be ready than those in the EU itself (72 percent). A similar gap appears in survey reports of whether they’ll be ready […]
Must be a Paid Member or a Free Trial Member to Access Content. Members log in here.

NIST Seeks Feedback on Initial Guide on Trusted Cybersecurity Tools for Cloud Operations

The National Institute of Standards and Technology is seeking feedback regarding a draft practice guide for the use of trusted cybersecurity tools to conduct cloud workloads on hybrid cloud platforms. The document aims to showcase the effect of using credible computing systems on cloud operations, boost data security practices within workloads and protect data privacy. […]
Must be a Paid Member or a Free Trial Member to Access Content. Members log in here.

Commentary: Should U.S. Vendors Sell Parts to Huawei?

Mike Fritze of the Potomac Institute for Policy Studies questions whether measures taken so far – executive restrictions on the import of communications tech from China, and putting Huawei on the “entities list” restricting the expert of to them – are effective in protecting the United States. He distinguishes between the different goals and impacts of […]
Must be a Paid Member or a Free Trial Member to Access Content. Members log in here.

White House’s Lack of “Moral Infrastructure” Causes Cyber Advisers to Resign

More than a quarter of the 28-member panel advising the Department of Homeland Security on cybersecurity and infrastructure defense resigned en masse last week, citing “insufficient attention” from the White House to these issues and other objections. They represent another in a series of high-profile resignations from boards meant to advise the president on national […]
Must be a Paid Member or a Free Trial Member to Access Content. Members log in here.

Senate Wants to Boost Oversight of Pentagon’s Cyber Activities

Several provisions in the Senate’s version of the annual National Defense Authorization Act aim to increase oversight of cyber activities in the Department of Defense, including a new two-star general to serve as the senior military adviser to cyber policy. This uniformed official – also filling the existing position of deputy principal cyber adviser – […]
Must be a Paid Member or a Free Trial Member to Access Content. Members log in here.

Where CISA’s Plan for Securing Industrial Control Systems Intersects with Private-Sector Liability Protections

CISA’s new five-year strategy to invest in technology to protect high-risk industrial control systems from cyberattacks relies on private-sector entities sharing information about risks they face with the government, but doesn’t include the liability protections companies are asking for in exchange. It also doesn’t identify where the funds for the government’s part in the project […]
Must be a Paid Member or a Free Trial Member to Access Content. Members log in here.

Amended Colorado Bill Aims to Enhance Data Privacy Laws

Lawmakers in Colorado are considering legislation that would significantly strengthen the state’s data privacy protections. The bill was passed unanimously by its House Committee on State, Veterans, and Military Affairs, and goes next to the Committee on Appropriations. The bill would expand the definition of “personal information” to include medical, health insurance, and biometric data, […]
Must be a Paid Member or a Free Trial Member to Access Content. Members log in here.