Privacy | SC Media

Privacy

Researcher finds malware in USG Sony Chip HD 6 Camera surveillance kit.

Peeping Toms secretly livestream hundred of South Korean hotel guests

By

Two men were arrested in South Korea in a scandal involving hidden cameras that secretly filmed 1,6000 people in their hotel rooms. The men allegedly recorded women and live streamed them to paying customers to watch in the scandal which involved 42 rooms in 30 accommodations in 10 cities around the country. Cameras were hidden…

FDA presents guidelines for medical device security

Meditab affiliate exposes medical records, PII on unprotected server

By

Once again, information was left exposed on an unprotected server – this time by an affiliate of Meditab, a California maker of medical records software sold to doctors, pharmacies and hospitals. Researchers at SpiderSilk found that anyone could read in realtime unencrypted medical records, personal information, drug prescriptions, doctors’ notes and the like from faxes…

Tesla allegedly spied on and ran smear campaign on a whistleblower

By

A former security manager told Bloomberg Businessweek that Tesla hacked, spied on, and engaged in a smear campaign against whistleblower Martin Tripp. Sean Gouthro, a former security manager at Tesla’s Nevada Gigafactory, claimed Elon Musk personally hired Tesla investigators to hack into an employee’s phone, spy on his messages, and even mislead police about a…

Under GDPR, can a CISO be the DPO?

The General Data Protection Regulation (GDPR) is a European Union regulation that was instituted on May 25th, 2018 to rule on how companies and entities should address and ensure personal data protection. More specifically, the GDPR is a set of guidelines on how companies must manage their IT landscapes, staff, partners and operational processes in…

Sen. Elizabeth Warren: Break up big tech to promote privacy and competition

By

Sen. Elizabeth Warren, D-Mass., is calling for the break up of big tech companies including Google, Amazon, Facebook and even Apple. Citing weak antitrust enforcement leading to a dramatic reduction in competition and innovation in the tech sector, on Friday, the Massachusetts Democrat released an op-ed arguing for the break up of the tech giants…

Dutch Data Protection Authority chips away at ‘cookie walls,’ declaring they violate GDPR

By

Websites that restrict visitors from viewing and interacting with their content unless they first accept the use of cookies that track their browsing activities are violating the terms of the European Union’s General Data Protection Regulation (GDPR), the Netherlands’ Dutch Data Protection Authority (DDPA) has determined. Also known as the Autoriteit Persoonsgegevens (AP), the DDPA…

Meeting GDPR standards doesn’t guarantee Calif. privacy law compliance, experts warn

By

Soon to be the most restrictive privacy law in the U.S., the California Consumer Privacy Act is set to take effect in January 2020. And companies that sit back and assume their compliance with GDPR is enough to meet the new legislation’s high expectations are in for a rude awakening, warned a panel of privacy…

Privacy means more than meeting a compliance checklist

Global and domestic privacy regulations like GDPR and the California Consumer Privacy Act (CCPA) are forcing businesses to develop and implement comprehensive data management processes to comply with new privacy requirements. Paul Iagnocco In this age of compliance, privacy strategies have become ongoing initiatives, rather than one-time implementations. New privacy-by-design principles can help companies integrate…

Undisclosed number of TurboTax accounts breached

By

Intuit, the company behind tax preparation software TurboTax, said users’ accounts may have been accessed by an unauthorized party. Threat actors used usernames and password combinations obtained from a non-Intuit source after an undisclosed number of TurboTax accounts were breached in a credential stuffing attack. Tax returns from the prior year, current tax returns in…

UK committee hammers Facebook on privacy failures

By

A U.K. parliament report condemning a multitude of actions by Facebook called for closer regulation of the social media giant stating the company often ignored its own privacy policy and its executives were less than forthcoming when testifying before a parliament committee. The House of Commons Digital, Culture, Media and Sport Committee’s Disinformation and ‘fake…

Next post in Privacy & Compliance News and Analysis