Search Results for: gdpr

Breaches related to open source components have grown 50 percent since 2017, and an eye-opening 121 percent since 2014, according to a new survey from open source governance and DevSecOps automation specialist Sonatype.

But the survey finds that those companies with mature DevOps practices are 24 percent more likely to have deployed automated security practices throughout their development lifecycle.

Continue reading →

If you're a user of Facebook Messenger and you're in Europe, you may well notice a message popping up suggesting that you check your privacy settings. The reminder comes ahead of the new GDPR laws which come into force next month.

The message tells Messenger users to check their privacy settings by May 25. The date is significant, as this is when GDPR kicks in. While the laws apply to Europe, Facebook has already indicated that it will comply with them around the world.

Continue reading →

The recent privacy scandal involving Cambridge Analytica and Facebook data has focused attention on personal data on social networks. With the impending arrival of GDPR in Europe and the requirement for data portability, Facebook-owned Instagram is planning to make it possible for users to download all of their data.

With Zuckerberg facing questions in Congress about Facebook's competition, the timing of this revelation is interesting. With the ability to easily download the content of their Instagram accounts, users will be able to more easily move to alternative services.

Continue reading →

One of the biggest problems companies face in securing their networks is the number of alerts generated which is why many are turning to AI solutions to cope with the workload.

Scottish company ZoneFox is launching an updated version of its security platform that offers better risk management and enriched insights, further time savings and improved scalability.

Continue reading →

Initially thought to affect 50 million accounts, it later transpired that as many as 87 million Facebook users were affected by the Cambridge Analytica data harvesting scandal. Today, the social network is due to send a message to those whose data was involved.

While the bulk of affected users -- around 70 million -- live in the US, there are also significant numbers in Europe, Facebook's message is said to be "detailed" and will appear in news feeds at some point today.

Continue reading →

It's not all that long since Facebook suspended data firm Cambridge Analytica for harvesting personal information from millions of users. Now the social network has suspended AggregateIQ -- another data firm, this time linked to the pro-Brexit Vote Leave campaign -- because of possible connections to Cambridge Analytica's parent company.

AggregateIQ is thought to be linked to Strategic Communication Laboratories (SCL), and there are concerns that the firm may therefore have improperly obtained data from Facebook users.

Continue reading →

When it came to light that messages sent by Mark Zuckerberg and other Facebook executives via Facebook Messenger had been deleted, there was widespread concern about not only the social network's use of a feature unavailable to anyone else, but also the lack of transparency about it.

Still reeling from the Cambridge Analytica debacle and other privacy scandals, Facebook has now announced that the feature will in fact be rolling out to everyone -- although not necessarily any time soon. The company insists that this is something that has been under consideration for some time, and also promises that no more of Zuckerberg's message will be retracted in the meantime.

Continue reading →

As if trust in Facebook could not drop any further, it has come to light that the social network deleted messages sent by Mark Zuckerberg from the recipients' Messenger inboxes. The deletions only applied to Zuckerberg's messages, leaving the other side of the conversation intact -- a feature not available to the average Messenger user.

Facebook did not operate transparently in deleting the messages, as it made no announcement either publicly, or to those involved in the conversations. When confronted about the matter, Facebook said that the deletions were carried out because of "corporate security".

Continue reading →

In a few weeks, privacy is set to improve for Facebook users -- at least this is the case for people in Europe. May 25 sees the implementation of General Data Protection Regulation (GDPR), and it means that European users will have the right to not only request details of the information stored about them, but also the right to demand its deletion.

While this will be a legal obligation within Europe, it would have been the perfect opportunity for Facebook to extend the same rights to its users around the world. But it's not going to. Mark Zuckerberg has confirmed that GDPR-style privacy protection is not going to be extended to the US and other parts of the world.

Continue reading →

Lax policies and a lack of control is giving far too many employees access to sensitive data according to the latest Global Data Risk Report from data security specialist Varonis.

The report, based on analysis of Data Risk Assessments conducted by Varonis in 2017 for customers and potential customers on their file systems, uncovers some startling figures, with 58 percent of organizations found to have more than 100,000 folders open to all employees.

Continue reading →

Correctly calculating the probability of risk is becoming critical to organizations. And it’s not just because it is essential and fundamental to good Risk Management practice, but also because new laws such as GDPR are mandating it. Security measures must be appropriate to the risk, and the risk is suffering a data breach. So, calculating the probability of a data breach happening, regardless of scope, is vital to determining appropriate security measures.

ISACA, previously known as the Information Systems Audit and Control Association but now known solely by its acronym, talks about the probability of risk as:

Continue reading →

Ahead of GDPR in Europe, Apple has released iOS 11.3, complete with a selection of privacy-focused tools. But while privacy is at the heart of the release, it is far from being the end of the story.

The recent Facebook scandal has focused attention on privacy, and this is something Apple will be more than happy to capitalize upon, bringing GDPR-prompted tools to the world -- not just Europe. But iOS 11.3 also includes an extensive changelog with a range of fixes and updates.

Continue reading →

Terry Myerson, the executive vice president of Windows, is to leave Microsoft "in the coming months". Myerson has been at Microsoft for 21 years, and has been involved in Windows Phone, Windows 10, Xbox One, and Surface devices.

His departure is part of a large reorganization at Microsoft that sees Rajesh Jha, the executive VP of Microsoft Office products, expanding his responsibilities to take over Myerson's role, and Panos Panay serving as the company’s Chief Product Officer.

Continue reading →

Most of us click on the Agree button when we install apps without actually reading the privacy agreement.

But some new research from Princeton University and other bodies reveals that many apps use a network of third-party services  --  often invisible to the user -- that provide analytics, social network integration, and monetization.

Continue reading →

This year’s Mobile World Congress was one of the best I’ve attended. While there was a lot of hype around the launch of Samsung’s Galaxy S9 , which looks pretty great, overall there was less of a focus on specific models and operating systems and more attention being paid to the new technologies that are solving customers’ problems, such as artificial intelligence (AI) and the Internet of Things (IoT). There was also a lot of discussion about how we secure, manage and control these technologies and how to comply with new and upcoming regulations, such as the General Data Protection Regulation (GDPR).

Here are my main takeaways from this year’s show:

Continue reading →