dcsimg
April 2, 2019

The global data privacy roadmap: a question of risk

For most American businesses, complying with US data privacy laws follows a somewhat linear, albeit lengthy, path. Set up a privacy policy, don’t lie to the consumer, and check the specific rules if you’re a health care provider, video streaming company, or kids’ app maker. For American businesses that want to expand to a new market, though, complying with global data privacy laws is more akin to … [Read more...]

Filed Under: Africa, amazon, Argentina, asia, Bahrain, Brazil, china, CNIL, Data privacy, data privacy laws, data protection authority, europe, European Union, GDPR, general data protection regulation, global data privacy, Google, Microsoft, Middle East, National Data Protection Commission, Personal Information Protection Act, privacy, Qatar, singapore, South Korea, whitelist
March 13, 2019

Google’s Nest fiasco harms user trust and invades their privacy

Technology companies, lawmakers, privacy advocates, and everyday consumers likely disagree about exactly how a company should go about collecting user data. But, following a trust-shattering move by Google last month regarding its Nest Secure product, consensus on one issue has emerged: Companies shouldn’t ship products that can surreptitiously spy on users. Failing to disclose that a product can … [Read more...]

Filed Under: alarm, Amazon Alexa, assistant, data collection, Data privacy, EFF, Electronic Frontier Foundation, Electronic Privacy Information Center, Epic, Federal Trade Commission, Google, Google Assistant, keypad, microphone, motion sensor, Nest, Nest Guard, Nest Secure, privacy, Security world, Senate Select Committee on Commerce, smart assistant, Sonos, Sonos One, transparency, transparent, trust, user trust, voice assistant
March 13, 2019

Explained: Payment Service Directive 2 (PSD2)

Payment Service Directive 2 (PSD2) is the implementation of a European guideline designed to further harmonize money transfers inside the EU. The ultimate goal of this directive is to simplify payments across borders so that it’s as easy as transferring money within the same country. Since the EU was set up to diminish the borders between its member states, this make sense. The … [Read more...]

Filed Under: aisp, banking, cryptocurrency, European Union, facebook, GDPR, Google, information, privacy, PSD, psd2, Security world
March 8, 2019

Google Chrome zero-day: Now is the time to update and restart your browser

It’s not often that we hear about a critical vulnerability in Google Chrome, and perhaps it’s even more rare when Google’s own engineers are urging users to patch. There are several good reasons why you need to take this new Chrome zero-day (CVE-2019-5786) seriously. For starters, we are talking about a full exploitation that escapes the sandbox and leads to remote code … [Read more...]

Filed Under: 0day, chrome, exploit, Exploits, Google, vulnerability, zero day
March 7, 2019

The not-so-definitive guide to cybersecurity and data privacy laws

US cybersecurity and data privacy laws are, to put it lightly, a mess. Years of piecemeal legislation, Supreme Court decisions, and government surveillance crises, along with repeated corporate failures to protect user data, have created a legal landscape that is, for the American public and American businesses, confusing, complicated, and downright annoying. Businesses are expected to comply with … [Read more...]

Filed Under: California Online Privacy Protection, California Online Privacy Protection Act, Childrens Online Privacy Protect Act, COPPA, cybersecurity, cybersecurity compliance, cybersecurity laws, data breach, data breach notification, data breach notification law, Data privacy, data privacy compliance, data privacy laws, Do Not Track, EU, European Union, GDPR, general data protection regulation, Google, Health Insurance Portability and Accessibility, HIPAA, legal, privacy, privacy policy, Security world, startup
March 1, 2019

Spectre, Google, and the Universal Read Gadget

Spectre, a seemingly never ending menace to processors, is back in the limelight once again thanks to the Universal Read Gadget. First seen at the start of 2018, Spectre emerged alongside Meltdown as a major potential threat to people’s system security. Meltdown and Spectre Meltdown targeted Intel processors and required a malicious process running on the system to interact with it. Spectre could … [Read more...]

Filed Under: CPU, cybercrime, exploit, Google, Hacking, Meltdown, meltdown and spectre, Spectre, universal read gadget, vulnerability
February 27, 2019

Will pay-for-privacy be the new normal?

Privacy is a human right, and online privacy should be no exception. Yet, as the US considers new laws to protect individuals’ online data, at least two proposals—one statewide law that can still be amended and one federal draft bill that has yet to be introduced—include an unwelcome bargain: exchanging money for privacy. This framework, sometimes called “pay-for-privacy,” is plain wrong. It casts … [Read more...]

Filed Under: Amy Klobuchar, Brian Schatz, California, California Consumer Privacy Act, Consumer Data Protection Act, Consumer Privacy Act, Credo, Credo Mobile, DuckDuckGo, duty to care, facebook, Federal Trade Commission, Florida, GDPR, Google, Hawaii, human right, Marco Rubio, Minnesota, oregon, pay-for-privacy, privacy, protonmail, Ron Wyden, targeted ads, targeted advertising, twitter
February 25, 2019

Max Schrems: lawyer, regulator, international man of privacy

Almost one decade ago, disparate efforts began in the European Union to change the way the world thinks about online privacy. One effort focused on legislation, pulling together lawmakers from 28 member-states to discuss, draft, and deploy a sweeping set of provisions that, today, has altered how almost every single international company handles users’ personal information. The finalized law of … [Read more...]

Filed Under: Austria, Brave, California Consumer Privacy Act, CNIL, Compliance, Court of Justice for the European Union, Data Protection Directive, dpc, Edward Snowden, Europe v. Facebook, European Charter of Fundamental Human Rights, European Commission, facebook, GDPR, GDPR fine, GDPR penalty, GDPR violation, general data protection regulation, Google, Information Commissioner's Office, Ireland, Irish Data Protection Commissioner, Mark Zuckerberg, mass surveillance, Maximilian Schrems, None of Your Business, noyb, NSA, PRISM, privacy, Privacy International, Safe Harbor, Safe Harbor Privacy Principles, Santa Clara University School of Law, Schrems, Security world, Vienna
February 14, 2019

Should you delete yourself from social media?

You’re feeling like you’ve had enough. All the recent news—from Facebook’s Cambridge Analytica snafu to various abuses of Twitter vulnerabilities—has you wondering: Should I delete myself from social media? Social networking does have its positive aspects. You can stay in touch with distant (or not) relatives, be included in the planning of social events within your circle of … [Read more...]

Filed Under: 101, cambridge analytica, facebook, Google, How-tos, Instagram, snapchat, social media, social media addiction, social networks, twitter
February 11, 2019

A week in security (February 4 – 8)

Last week on Malwarebytes Labs, we took a closer look at the technical and reputational challenges for Facebook as it tries to integrate secure messaging across Messenger, WhatsApp, and Instagram. We explored Google’s latest attempts to change how the public sees—literally—web browser URLs, gave some of our best tips on how to safely browse the Internet at work, and detailed a unique spam campaign … [Read more...]

Filed Under: amazon, Apple, AT&T, Australia, bitcoin, bounty hunters, cryptocurrency, cryptography, cybersecurity, Do Not Track, eBooks, facebook, Google, Instagram, internet, Jeff Bezos, John wick, kindle, messenger, safari, secure messaging, Security world, Sprint, T-Mobile, URLs, Week in security, whatsapp, Zcash, zero day
Next Page »