Tag: data protection
478 articles

Microsoft Disrupts ASP.NET Flaw Allowing SYSTEM Privilege Escalation
Microsoft has patched a critical ASP.NET Core vulnerability, CVE-2026-40372, that allowed unauthenticated attackers to forge authentication cookies and gain SYSTEM privileges on affected devices. This fix addresses a flaw in the ASP.NET Core Data Protection cryptographic APIs that could be exploited for privilege escalation.

Ransomware Attacks Expose Flaws in Business Backup Strategies
Having up-to-date backups is only half the battle - if your systems are down and doors are closed, are you truly protected? Backups safeguard your data, but it's Business Continuity and Disaster Recovery (BCDR) that keeps your business running smoothly during downtime.

NAKIVO Bolsters Backup Software with Enhanced Ransomware Defense
Say goodbye to data worries with NAKIVO Backup & Replication v11.2, the latest release that supercharges your backup software with lightning-fast operations, rock-solid reliability, and proactive ransomware defense. This game-changing update gives you an unbeatable shield against cyber threats and data loss.

Google Fortifies Ad Ecosystem, Cracks Down on 8.3B Policy-Violating Ads
Google is taking a giant leap in protecting user privacy and cracking down on fraud, having blocked over 8.3 billion ads and suspended 24.9 million accounts in a single year. This bold move is part of a broader effort to reshape how apps handle sensitive data, with a focus on transparency and security.

Google Chrome Fails to Thwart Browser Fingerprinting
If a browser claims to be safe but fails to block one of the easiest ways for advertisers to track you online, can it really be considered safe? Google Chrome, despite its reputation for security, surprisingly leaves users vulnerable to browser fingerprinting, a pervasive tracking method that can uniquely identify and follow you around the web.

Quantum Security Faces Three Looming Realities
As World Quantum Day dawns, security leaders are facing a pressing question: what three looming realities will redefine how organizations safeguard their data, assets, and missions? The answer will be crucial in determining where they focus their attention, budget, and talent in the years to come.

Sanders Probes AI Impact on Privacy
Senator Sanders just had a striking conversation with an AI named Claude about the impact of artificial intelligence on privacy - and his one-line verdict says it all: Claude is actually pretty good on the issues. This brief endorsement carries significant weight, sparking important discussions about the role of AI in shaping our future.
Shadow AI Emerges as Unseen Threat in Enterprise Security
As AI assistants and automation services increasingly seep into everyday use, employers are faced with a daunting question: are productivity gains worth the risk of losing control? Employees are quietly adopting unsanctioned AI tools, often blurring the lines between efficiency and security.

HHS Weighs HIPAA Security Rule Update Amid Compliance Cost Concerns
As the HHS Office for Civil Rights considers updating the HIPAA Security Rule, a pressing question remains: will the cost of compliance outweigh the risk of leaving protected health information vulnerable? The director bluntly puts it, the cost of inaction may outweigh compliance burdens.

Proton Unveils Meet, a Secure Video Conferencing Alternative
Say goodbye to compromising your privacy for seamless online meetings! Proton's new Meet platform is here to revolutionize video conferencing with end-to-end encryption, giving you the freedom to be yourself without worrying about surveillance or data exploitation.

Alarming Rise in Employee Data Breaches Hits Seven-Year High
Employee data breaches have reached a seven-year high, exposing a harsh reality: even the most basic security measures are being overlooked, putting sensitive employee information at risk. Can organizations protect their most valuable asset - their employees' personal data - from these preventable breaches?

VPN Adoption Soars Amid Alarming Surveillance Concerns
As online surveillance concerns reach an all-time high, people are racing to protect their digital lives - and VPN adoption is soaring as a result. Americans are leading the charge, turning to Virtual Private Networks to shield their online activities from prying eyes.

DoD Unveils Critical Privacy Training Rule to Bolster Contractor Security
The Department of Defense has proposed a new rule requiring government contractors to provide critical privacy training to their staff, taking a proactive stance to safeguard sensitive citizen information in an era of escalating cyber threats. This move marks a significant step forward in bolstering security and protecting personal data.

ICO Slams UK Scammers with Critical £100,000 Fine
The Information Commissioner's Office has hit Birmingham-based scammers TMAC with a £100,000 fine for making over 4.2 million unwanted calls to UK residents, a move aimed at putting a stop to the nuisance. But will this hefty penalty be enough to deter others from following in their footsteps?

UK government Exclusive cyber exemption sparks distrust
An exclusive cyber exemption—where ministers strip legal duties from public bodies but promise to keep security standards—asks a blunt question: can public trust rest on assurances after breaches at the Legal Aid Agency and Foreign Office? Critics say promises aren’t a substitute for enforceable accountability.

ICO Exclusive Audit: Mobile Games Deemed Concerning
A childs tap on a free game can hand companies a trove of data, payments and attention—and the ICOs new probe into the mobile gaming sector shows why that should make parents and players sit up and take notice.

UK data regulator Exclusive: defends criticised MoD breach
The ICO has decided not to open a formal probe after reviewing the MoD’s handling of the 2021 leak that exposed thousands of Afghan allies. But with people still at risk and fixes only partly implemented, can that judgement reassure those whose lives were put in danger?

payment data breach: Stunning Alarming Risk Exposed
About 180,000 people had names and payment details left exposed — putting them at heightened risk of fraud and identity theft; here’s what to do now to protect yourself and why companies must tighten their defenses.

cyber risks: Must-Have Legal Protections & Best Practices
Imagine a software update or personal phone turning into courtroom evidence — cyber incidents now trigger regulatory fines, class actions, and contract disputes. Treat cybersecurity as a legal risk: bring lawyers into governance, tighten contracts and vendor controls, and document AI and BYOD policies before an incident makes the decisions for you.

cyber risk management: Must-Have Best Legal Defense
Cyber incidents aren’t just IT headaches — they’re legal minefields that can trigger fines, lawsuits and boardroom liability. Align contracts, AI governance, vendor controls and BYOD policies so technical breaches don’t become costly legal crises.

auto insurance records Exposed: Shocking Risky Leak
Imagine anyone being able to read your policy—because more than 5 million auto insurance records were left publicly accessible online, putting drivers at immediate risk of fraud and identity theft. This glaring misconfiguration shows how easily useful data can become a goldmine for scammers.

Data minimisation: Stunning GDPR Win Against Experian
The Dutch data watchdog fined Experian €2.7m for collecting and keeping more personal data than necessary, a sharp reminder that GDPR’s data‑minimisation rules aren’t optional. The ruling signals that data brokers and businesses must justify every data point they hold — or face stricter enforcement that could reshape product design, retention policies and privacy controls.

58-hour delay: Stunning £14m fine exposes risky lapse
The ICO fined Capita £14m after a 58‑hour delay in reporting a 2023 breach that exposed 6.6 million records — a stark reminder that slow incident response can magnify harm and erode public trust.

Capita fined £14m: Shocking Risky Wake-up Call
When the company you trust with your data leaves the front door ajar, millions can pay the price — Capita was fined £14m after a 2023 breach exposed 6.6 million records, a sharp reminder that outsourcing data demands airtight security and clear accountability.