The U.K. Information Commissioner’s Office did an interesting two-year trial and the results suggest that publicly reprimanding public sector entities over breaches and data leaks is an effective strategy — even without any monetary penalties. Infosecurity Magazine reports: The publication of reprimands following data leaks has been cited as an “effective” deterrent for public authorities. […]
A recent article by Allen Matkins Leck Gamble Mallory & Natsis LLP begins: On May 29, 1453 the walls of Constantinople had stood unbreached for more than a thousand years. Yet on that day, the army of Sultan Mehmed II was able to force entry into the city through the Gate of St. Romanus. The Byzantine Emperor Constantine […]
Lawyers at JacksonLewis write: Last year, as reported on the Maine Attorney General’s Office website, Resort Data Processing (RDP) experienced a data breach affecting over 60,000 individuals caused by a “SQL injection vulnerability which allowed an unauthorized third party to redirect payment card information from in-process transactions on our RDP’s clients’ on-premises Internet Reservation Module (“IRM”) […]
CBS reports that the owner of Stoli brand vodka and Kentucky Owl bourbon has filed for Chapter 11 bankruptcy protection. Stoli Group (USA) “is experiencing financial difficulties,” according to the court filing. The firm claims it has assets estimated between $100 million and $500 million, and liabilities between $50 million and $100 million. The company’s […]
How many times do we read about something new and think, “What can possibly go wrong, right?” Some new research by the Capgemini Research Institute found that 97% of organizations using generative AI were affected by data breaches or security concerns linked to generative AI, and most do not have an adequate budget to deal with […]
Claims Journal reports: Ransomware claims severity spiked by 68% to an average loss of $353,000, according to a new report by a cyber insurance provider. Coalition published its 2024 Cyber Claims Report: Mid-year Update, which details emerging cyber trends and their impact on policyholders through the first half of 2024. The frequency of using ransomware as […]
Commentary by Clyde Williamson, Security Architect at Protegrity. There has been a notable increase in third-party breaches, with headlines featuring Snowflake, Santander and Ticketmaster as recent victims. These incidents highlight that vulnerabilities are inherent in our systems, making no organisation immune to such attacks. Unsurprisingly, 98% of organisations have experienced a third-party breach within the past two years. These breaches […]
2024 was an active year for state privacy law. Keir Lamont and David Stauss recap the year for IAPP: By the numbers, 2024 experienced a comparable level of activity to 2023 with seven new states passing comprehensive privacy laws, bringing the total number of state laws to 19 — or 20 depending on whether you […]
Even when customers do not leave following a data breach, they may still lose confidence. A new survey confirms the reputation hit corporations fear suffering. FinTech Global reports: A recent study highlighted by ISACA points to a staggering 78% of industry professionals ranking the reputational impact as the paramount concern following cyberattacks. Given the digital […]
Should India adopt a threshold-based data breach reporting?
MediaNama reports: India needs a threshold-based system for data breach reporting, speakers argued at MediaNama’s discussion on the draft Digital Personal Data Protection Rules (DPDP Rules, 2025) on February 7. This came as a comment during the session on the draft rules around data breaches. MediaNama conducted this discussion under the Chatham House Rule. (Chatham […]