Welcome to Information Security Media Group's Black Hat and DEF CON 2024 Compendium featuring latest insights from the industry's top cybersecurity researchers and ethical hackers, as well as perspectives from CEOs, CISOs and government officials on the latest trends in cybersecurity and AI.
Your personal information is continuously harvested and analyzed by countless data brokers eager to sell to the highest bidder. From your name to your online activities, to your employment details and even your real-time location - all are on the market for anyone interested.
Join us for this webinar with Roger A....
An AI-powered virtual care provider's unsecured database allegedly exposed thousands of sensitive mental health and substance abuse treatment records between patients and their counselors on the internet - where they were available to anyone, said the security researcher who discovered the trove.
Texas Attorney General Ken Paxton is suing the Biden administration, alleging that "unlawful" HIPAA Privacy Rule regulations are hindering the state's law enforcement investigations into abortion cases and other reproductive health care cases.
The Dutch data regulator is the latest agency to fine artificial intelligence company Clearview AI over its facial data harvesting and other privacy violations of GDPR rules, joining regulatory agencies in France, Italy, Greece and the United Kingdom.
A vendor that provides information systems and transcription services to radiology practices is alerting 411,037 people of a hack discovered last December involving the theft of sensitive data. The firm already faces at least four proposed federal class action lawsuits related to the hack.
Dating apps collect and sell user location data, leading to significant privacy risks. Users are vulnerable to stalking, harassment and even prosecution in certain countries, says Victor Le Pochat, postdoctoral researcher at KU Leuven. Pochat and Dhont called for improved data protection measures.
As the chief privacy officer at UChicago Medicine, Karen Habercoss likes to tell her peers, "I know more about security than the average bear." And her knowledge has been put to the test in recent years, with the adjustment to remote work, telehealth and digital transformation.
New York-based biotechnology firm Enzo Biochem will pay $4.5 million in state fines and must implement a list of security improvements, thanks to a 2023 ransomware attack that affected 2.4 million patients nationwide. Investigators highlighted the company's failure to fix known security risks.
Data privacy is evolving from a regulatory compliance initiative to a customer trust imperative.
Check out this eBook to see how the Data Privacy Maturity Model captures this transition in four stages:
Reactive
Proactive
Strategic
Scaled
The introduction of the California Consumer Privacy Act (CCPA) in 2018 was a turning point for US state privacy laws. Since then, the privacy landscape in the US has rapidly expanded and now plays host to no fewer than 17 comprehensive state privacy laws.
While legislators continue to try and pass a federal privacy...
Whether you’re new to privacy or have been working in the space for some time, it can be a confusing place. There are strange terms, countless acronyms, hundreds of laws – many of which overlap – and multiple reasons to justify the importance of privacy.
In this eBook we will take a closer look at:
Some of...
The Data Privacy Maturity Model (DPMM) serves as a comprehensive guide for organizations to evolve their data privacy programs from a tactical, compliance focused approach to a strategic, value-driven framework. It’s designed to help organizations not only comply with regulations but also build customer trust and...
The principles of the EU-US DPF provide US organizations with clear responsibilities for protecting personal data that has been transferred from the EU. This ensures that EU data subjects receive effective safeguards and protection, as required by the GDPR, when their data is transferred to non-EU countries.
This...
Federal regulators smacked an ambulance firm with a $115,200 civil monetary penalty for failing to provide a patient with her requested health records for more than a year. The penalty is the U.S. Department of Health and Human Services' 49th HIPAA "right of access" enforcement action.
Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing bankinfosecurity.eu, you agree to our use of cookies.