Articles from Around the Web

Nearly half of US government employees targeted in cellular credential theft attacks

Nearly half of all U.S. state, local and federal government employees were targeted in cellular-based credential theft attacks in 2021, InfoSecurity Magazine reports, citing figures from security vendor Lookout. Per Lookout’s 2022 Government Threat Report, mobile-based credential phishing attempts of government employees increased 30% from 2020 to 2021. Attacks against federal government employees alone increased 47% in the same time span.

Research: Social media posts may impact student privacy

A study by researchers at Carnegie Mellon University, the University of Tennessee, Knoxville, Abl Schools, University of Utah and University of Tübingen found an estimated 4.9 million public Facebook posts shared by U.S. schools and districts could identify students, Science X Daily reports. The research found approximately 726,000 of the posts are believed to identify one or more students by first and last name.

CNIL-Inria Privacy Award submissions now open

France’s data protection authority, the Commission nationale de l'informatique et des libertés, announced nominations are now open for the seventh edition of the CNIL-Inria Privacy Award. The accolade is awarded to the author or authors of a scientific paper about privacy and personal data protection published between January 2020 and October 2022.

Governments join to act against ransomware

During the second International Counter Ransomware Initiative Summit, governments from 36 countries and the European Union committed to develop coordinated guidelines to prevent and respond to ransomware incidents, work together to increase political costs on countries enabling ransomware actors, and establish an International Counter Ransomware Task Force.

NSA Office of Inspector General found analyst’s surveillance project ‘egregious’

Newly discovered documents show a U.S. National Security Agency analyst developed a surveillance project 10 years ago involving unauthorized surveillance and collection of communications data of U.S. citizens or organizations, Bloomberg reports. A 2016 report by the NSA’s Office of Inspector General called the analyst’s actions “egregious,” but it was unclear whether any action was taken against the analyst.

Draft data protection law submitted in Ukraine

A draft data protection law has been submitted to the Parliament of Ukraine. The proposal would regulate personal data processing, as well as the processing of other types of data, including biometric information. An explanation of the draft said it is needed as current legislation “does not fully ensure the protection of personal data in Ukraine in the light of the development of international standards in this area.”Full Story

Op-ed: Update to data breach reporting guidance would be a ‘step backward’

The political turmoil concerning the U.K. government’s “mini-budget” should be a cautionary tale for the European Data Protection Board and its recently proposed “targeted update” to its “Guidelines on Personal Data Breach Notification,” Digiphile Services Limited Managing Director, Solicitor Phil Lee writes.

CARU finds app in violation of COPPA, self-regulatory guidelines

BBB National Programs’ Children’s Advertising Review Unit found Gameloft's Disney Getaway Blast mobile application violated the Children’s Online Privacy Protection Act and CARU’s Self-Regulatory Guidelines for Advertising and for Children’s Online Privacy Protection. CARU identified issues with Gameloft’s data collection and advertising practices and noted “unclear and inconsistent” language in its privacy policy.

CISA guidance outlines cyber risks to multifactor authentication

The U.S. Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency published fact sheets outlining threats against systems “using certain forms of multi-factor authentication,” InfoSecurity Magazine reports.

CPPA Board cancels upcoming meeting

The California Privacy Protection Agency Board canceled its upcoming meeting originally scheduled for Nov. 4. According to the meeting’s agenda, board members were anticipated to discuss and possibly take action on proposed regulations to Sections 7,000-7,304 of the California Consumer Privacy Act, as amended by the California Privacy Rights Act. Information regarding the next regular CPPA Board meeting will be posted on the agency’s website.

Search form

Search form

Search form

Discover the latest industry insights and developments with our News from Around the Web page. We curate feeds from a variety of reputable organizations, bringing you a comprehensive overview of relevant news and trends. Stay informed and connected with the most current updates from across the web.

Sign Up For Our Newsletter