So far, 2019 is looking very similar to last year. We’re only a month into the new year and already the headlines have been filled with news of data breaches, privacy leaks and credential stuffing attacks. And all this as GDPR regulators begin to flex their muscles by levying financial penalties. To stay clear of regulatory trouble and minimise cyber risk, IT teams should remember the best practice basics and layer up multiple connected threat defence tools. Continue reading →
Last week Facebook and Google hit the headlines yet again for the wrong reasons after they were found to have bypassed Apple’s strict approvals process to distribute data harvesting apps to users. In Facebook’s case, the firm paid users as young as 13 in return for downloading the market research app. Critics claim it was less than open about the privacy-invading purposes of the app, and that its parental consent ‘checks’ could be easily faked.
It has all served as a timely reminder of the privacy and security risks families are exposed to on a regular basis today, as we celebrate Safer Internet Day (SID) around the world tomorrow, on the 5th February. Continue reading →
We’ve been waiting some time for European GDPR regulators to flex their muscles since the legislation came into force at the end of May 2018. Well, now they have, after Google was handed a €50m (£44m) fine in France. Although this particular case revolved around privacy and transparency over how consumers’ information is used, rather than data security, it clearly serves as a warning notice for firms, wherever they are.
In light of the judgement, IT and data protection teams should be redoubling their compliance efforts. As we predicted in December, a maximum 4% fine is still on the cards for this year, and the next one could be for a major data breach. Continue reading →
Last week, hundreds of German celebrities, politicians and others were hit by what has been described as the biggest data leak of its kind in the country’s history. It has since emerged this week that a 20-year-old living with his parents has confessed to the authorities, claiming he acted alone. If nothing else, it should remind IT security bosses in the UK of the persistent threat from hacktivists, and the need to double down on best practice cybersecurity in 2019. Continue reading →