Cybersecurity experts warn ransomware gangs are taking a more public approach in efforts to coerce their victims to pay, Axios reports. In general, ransomware payments made to hackers have been decreasing lately, and gangs are now openly flaunting details about the data they steal to "publicly shame" victims into paying to reaccess their personal data.
France's data protection authority, the Commission nationale de l'informatique et des libertés, has been among the most active EU privacy regulators in recent years and that trend won't stop in 2023. CNIL Secretary General Louis Dutheillet de Lamothe unpacked the authority's enforcement priorities for the year, including mobile apps, artificial intelligence and cybersecurity, during a keynote speech at the IAPP Data Protection Intensive: France.
Digital transformation is progressing in the health care sector and it generates large volumes of data, offering a wide range of opportunities for research and innovation. However, with patient data, these opportunities may clash with requirements of applicable data protection laws, particularly consent requirements.
On March 15, IAPP Vice President and Chief Knowledge Officer Caitlin Fennessy, CIPP/US, and IAPP Legal Extern Enobong "Gift" Ekim, CIPM, will discuss the current and future state of privacy in Nigeria as part of the IAPP Privacy Around the Globe LinkedIn Live series.
As part of its Digital Economy Papers series, the Organisation for Economic Co-operation and Development released a report on emerging privacy-enhancing technologies.
Privacy experts can now use a new standard, the ISO/IEC 27559:2022 privacy-enhancing data deidentification framework. The result of a five-year effort, the framework will play a role in establishing best practices for the reuse and sharing of data about people, Privacy Analytics Chief Methodologist Luk Arbuckle writes.
MediaPost reports the U.S. Federal Trade Commission requested a 37% budget increase, approximately USD160 million, from U.S. Congress for the fiscal year 2024.
China is asserting more control over laying undersea internet cables in the South China Sea, Financial Times reports. Reportedly, China imposes a long permit approval process and some companies are avoiding the area altogether. One such project, SJC2, intended to connect Japan with Singapore, as well as Hong Kong and Taiwan, has been delayed for more than a year.Full Story
Following the publication of the U.S. National Cybersecurity Strategy, concrete steps must be undertaken to address ransomware attacks in the private and public sectors, Technology, Law and Security Program Director Gary Corn and Fellow Melanie Teplinsky, at American University Washington College of Law, write in Lawfare. Along with others, Corn and Teplinksy wrote a white paper that "identifies actionable recommendations" for responding to attacks.