background preloader

Online security

Facebook Twitter

Where's Your Data? Privacy Challenges for IT Leaders — Data Privacy Asia Newsletter. It is also extremely important to factor in the way that data is collected.

Where's Your Data? Privacy Challenges for IT Leaders — Data Privacy Asia Newsletter

The ubiquitous use of cloud applications such as Dropbox is still an area of concern, as are networked fax machines which are still in widespread use in small to medium sized business. Key internal and external stakeholders need to be made aware of concerns and related security risks surrounding these methods of gathering data. The question of who exactly has access to the data, not only internally bit also amongst external stakeholders is of particular concern.

Doing business with government can be especially challenging due to the rigid requirements that government entities have regarding data requirements. It is not unknown for government agencies to require clear text messages and email attachments to be used to provide personal information to them. Storage remains at the core of any PIA. Personal end point devices and their use needs to be carefully controlled and vetted. Backups. 1500 companies in over 100 countries hit by malicious Adwind backdoor RAT. More than 1,500 companies in over 100 countries have suffered an infection at the hands of the Adwind Remote Access Tool (RAT).

1500 companies in over 100 countries hit by malicious Adwind backdoor RAT

Discovered by researchers at Kaspersky Lab, this new attack campaign suggests that Adwind, a multifunctional backdoor which has targeted more than 450,000 individual users (including Mac lovers) since 2013, has developed a taste for business victims. The Adwind malware (also known as AlienSpy, Frutas, Unrecom, Sockrat and jRAT) appears particularly drawn to retail and distribution, with approximately one-fifth of this operation's victims falling under that category.

But Adwind isn't too picky. It's also preyed upon organizations in the architecture, shipping, construction, insurance, and legal sectors. An attack begins when a business receives an email from what appears to be HSBC, one of the largest banking and finance organizations in the world. But the attachment contains no such thing. "Instead of instructions, the attachments contain the malware sample. List of data breaches and cyber attacks in February 2017 – IT Governance Blog. Comment chiffrer ses documents et ses répertoires ? Ico bring your own device byod guidance.

Windows 10 issues

Nuisance calls and messages. Nuisance calls and spam texts remain a continuing concern for consumers and a key area of action for the ICO.

Nuisance calls and messages

Latest news From 23 November 2015, we held a joint ‘week of action’ on nuisance calls and messages with the Ministry of Justice Claims Management Regulator. During the week we co-ordinated our planned enforcement activity, worked together to audit claims management companies for compliance with the law, and published a short video explaining how one person’s data can be used, passed on and re-used.We also sent out over 1,000 letters to organisations registered with the ICO for trading and sharing personal data. During the month to the end of November, we: had 91 cases under investigation;held 2 compliance meetings;issued 54 third party information notices. Other activity We updated our joint action plan with Ofcom to tackle nuisance calls and texts. Current trends Concerns reported, by type Between 1 January and 30 November 2015 we received 157,941 concerns.

UK's largest online pharmacy fined £130,000 for selling patients' personal data to scammers. The UK's biggest online pharmacy has been fined £130,000 ($200,000) for selling patients' personal data to scammers who targeted the sick and vulnerable.

UK's largest online pharmacy fined £130,000 for selling patients' personal data to scammers

Pharmacy2U (P2U) was punished by the Information Commissioner's Office (ICO) for offering the names and addresses of people who purchased prescriptions and other remedies from their site through online marketing list company, Alchemy Direct Media. The pharmacy was found to have unlawfully sold the personal data of more than 21,000 NHS patients and P2U customers without informing them beforehand or getting their consent to have the data sold on.

Solar energy firm receives record fine for automated nuisance calls. A green energy company which plagued consumers with millions of nuisance phone calls offering ‘free’ solar panels has received a record fine from a Government watchdog for “deliberately and recklessly” breaching marketing regulations.

Solar energy firm receives record fine for automated nuisance calls

Home Energy & Lifestyle Management Ltd (Helms), based in Glasgow, has been slapped with a £200,000 fine by the Information Commissioner’s Office (ICO) after pestering householders with millions of automated calls on an “industrial scale”. An ICO investigation found that Helms made over six million calls as part of a massive automated call marketing campaign offering ‘free’ solar panels. It said an organisation should have individuals’ permission – which specifically names the company concerned – in order to make automated calls, yet this was not the case. Tech Support Scams: a Beginner's Guide. Posted by David Harley on November 26, 2015.

Tech Support Scams: a Beginner's Guide

Introduction. 12-15-2015 Privacy Professor Rebecca Herold. PrivacyProfessor6SecurityandPrivacyThreatsoftheHolidaySeason20152. How to encrypt your entire life in less than an hour. “Only the paranoid survive.” — Andy Grove Andy Grove was a Hungarian refugee who escaped communism, studied engineering, and ultimately lead the personal computer revolution as the CEO of Intel.

How to encrypt your entire life in less than an hour

He died earlier this year in Silicon Valley after a long fight with Parkinson’s disease. When one of the most powerful people in the world encourages us to be paranoid, maybe we should listen. Apple users targeted in first known Mac ransomware campaign. CJUE : pour l’avocat général, contraindre à sécuriser un hotspot Wi-Fi est illégal. L’avocat général de la CJUE a rendu ses conclusions dans une affaire importante née en Allemagne.

CJUE : pour l’avocat général, contraindre à sécuriser un hotspot Wi-Fi est illégal

Elle concerne l’éventuelle responsabilité du gestionnaire d’un hotspot Wi-Fi quant aux œuvres mises à disposition par des tiers sur son accès. Le litige est né en 2010 lorsque Sony Music a adressé une mise en demeure à Thomas Mc Fadden, l’exploitant d’une entreprise de sonorisation.