Not only do companies need to take data protection seriously under GDPR, schools and other educational establishments also had to make major changes to stay in line with the new regulations.
Millennials, a tech-savvy bunch often on the go, tend to kick caution to the curb when it comes to protecting personal information as growing up with technology often creates a false sense of security.
Fraud Is Affecting US and Non-Western Markets Differently: What the US Can Do to Gain Consumer Trust
In the US, the uptick in fraud has decreased consumer trust in brands and the digital services they use. 36% of US consumers have experienced a combined share of online fraud and personal online breaches, and only 33% of consumers saying they can trust the digital services they use.
The concept of self-sovereign identity (SSI) is gaining interest as it allows users to selectively prove specific aspects of their digital identity using credentials stored in digital wallet.
CCPA pioneered a strong mandate for data privacy and security in the US, and now SB-327 is focusing on securing IoT devices. However, an opportunity was missed to ditch passwords altogether and advocate for a stronger method of authentication.
Organizations must have effective defense against DDoS attacks and weaponization—not just for their own protection but also to limit the field for botnet recruitment and prevent service provider and corporate devices from being used in international cyber warfare.
Everyone understands the logic behind picking longer, more complicated passwords that are harder for bad actors to figure out and therefore better to protect sensitive and valuable information. But consumers’ bad password habits are still very much prevalent.
With the increasing adoption of cloud computing, the usage of APIs has grown exponentially, making API security a top priority for organizations that want to protect their cloud-based applications.
Since June 1, eight U.S. states have either amended or enacted tougher new data breach notification laws requiring notification anywhere between 30 to 60 days. While still a far cry from the 72 hours required under the European GDPR, tougher notification laws will no doubt be adopted around the world.
In late December last year, Mario Greco, the chief executive of insurance giant Zurich sent shockwaves through the business world when he announced that cyberattacks are set to become uninsurable. Cyber insurance providers are left with no choice but to tighten their policies, or risk going bankrupt.
