With cyberwarfare in the headlines due to the Russia-Ukraine conflict, it is another reminder that we must maintain a sense of urgency about our information security. We need to continuously harden our systems, which includes increasing the speed with which we implement software and operating system updates, deploying heuristic-based endpoint detection and response (EDR) tools, regularly conducting vulnerability scans, enhancing our logging and event management processes, and more.
Read more »Data Privacy & Cybersecurity
February 2022
-
Russia-Ukraine Conflict: Ransomware Updates & Cybersecurity Consequences Posted on: February 28, 2022 In: Data Privacy & Cybersecurity
-
Cyber Extortion: Harvesting the Fruits of Business Email Compromises Posted on: February 25, 2022 In: Data Privacy & Cybersecurity
Business email compromises have long been the staple of online criminal activity. As they continue to enhance their ability to monetize unlawful access to email accounts, malicious actors are now accessing and downloading emails and attachments, as well as files stored in OneDrive and SharePoint platforms, and using the sensitive information to extort ransom payments from legitimate email account holders.
Read more »
-
Canada Reforms Its Data Privacy Laws Through Enactment of Quebec Bill 64 Posted on: February 16, 2022 In: Data Privacy & Cybersecurity
In September 2021, Quebec Bill 64, An Act to modernize legislative provisions as regards the protection of personal information, was unanimously adopted by lawmakers in the province. With a three-year phased implementation beginning on September 22, 2022, the new law aims to reform privacy laws in Canada by amending existing privacy laws and adding other requirements concerning public bodies and private enterprises handling personal information focusing on accountability in the use of personal information.
Read more »
-
Austrian DPA Says Google Analytics Use Violates GDPR Posted on: February 08, 2022 In: Data Privacy & Cybersecurity
In recent months, a total of 101 complaints have been filed against data exporters in Europe for allegedly transferring data to the United States in violation of the European Union’s General Data Protection Regulation (GDPR) by way of the use of Google Analytics. The first decision by the Austrian Data Protection Authority (DPA) on January 13, 2022 held that an Austrian company was in violation of GDPR for impermissibly transferring personal data to the US via Google Analytics.
Read more »
Blog Search
Featured Posts
- December 06, 2022 Just In Time: Last Minute Compliance Tips for the CPRA and VCDPA