Blog
Data Privacy & Cybersecurity Blog Posts From February 2022
-
Blog: Russia-Ukraine Conflict: Ransomware Updates & Cybersecurity Consequences
Date: February 28, 2022
Title: Russia-Ukraine Conflict: Ransomware Updates & Cybersecurity Consequences
Summary: With cyberwarfare in the headlines due to the Russia-Ukraine conflict, it is another reminder that we must maintain a sense of urgency about our information security. We need to continuously harden our systems, which includes increasing the speed with which we implement software and operating system updates, deploying heuristic-based endpoint detection and response (EDR) tools, regularly conducting vulnerability scans, enhancing our logging and event management processes, and more....
-
Blog: Cyber Extortion: Harvesting the Fruits of Business Email Compromises
Date: February 25, 2022
Title: Cyber Extortion: Harvesting the Fruits of Business Email Compromises
Summary: Business email compromises have long been the staple of online criminal activity. As they continue to enhance their ability to monetize unlawful access to email accounts, malicious actors are now accessing and downloading emails and attachments, as well as files stored in OneDrive and SharePoint platforms, and using the sensitive information to extort ransom payments from legitimate email account holders....
-
Blog: Canada Reforms Its Data Privacy Laws Through Enactment of Quebec Bill 64
Date: February 16, 2022
Title: Canada Reforms Its Data Privacy Laws Through Enactment of Quebec Bill 64
Summary: In September 2021, Quebec Bill 64, An Act to modernize legislative provisions as regards the protection of personal information, was unanimously adopted by lawmakers in the province. With a three-year phased implementation beginning on September 22, 2022, the new law aims to reform privacy laws in Canada by amending existing privacy laws and adding other requirements concerning public bodies and private enterprises handling personal information focusing on accountability in the use of personal information....
-
Blog: Austrian DPA Says Google Analytics Use Violates GDPR
Date: February 08, 2022
Title: Austrian DPA Says Google Analytics Use Violates GDPR
Summary: In recent months, a total of 101 complaints have been filed against data exporters in Europe for allegedly transferring data to the United States in violation of the European Union’s General Data Protection Regulation (GDPR) by way of the use of Google Analytics. The first decision by the Austrian Data Protection Authority (DPA) on January 13, 2022 held that an Austrian company was in violation of GDPR for impermissibly transferring personal data to the US via Google Analytics....