25th May 2018 marked the implementation of the GDPR. However, many organizations outside Europe are not aware that a Nominated European Representative is required under certain conditions in GDPR Article 27.
The passage of a national privacy law is gaining momentum as more state laws like CCPA are adding to the scheme of divergent U.S. data protection laws that companies are struggling to reconcile.
Organizations should be wary of the security risks posed by AR technology with growth in usage for lowering operational costs, increasing productivity and streamlining processes.
If the goal of the law is to provide rules that are straightforward and consistent with the expectations around the world, other states and Congress would be well advised to follow the example of Virginia.
New CMMC 2.0 pares down the scope of the original requirements, allowing greater flexibility and relaxing the rules for DoD contractors and subcontractors who do not directly handle sensitive or classified information.
Concerns about data protection and user privacy have spurred a new type of market, where spending on tools that promise such protection is expected to exceed $8 million in 2022.
Because of the significant damage a DDoS attack can cause, many IT teams will put protecting against the threat high on their agenda. However, what many IT teams may be completely unaware of is that there are a wide variety of different types of DDoS attack vectors in a cybercriminals’ arsenal.
Developers have been increasingly targeted by attackers. Compromising a single developer enables attackers to embed malicious code into a company's products. If that product is then used by other companies, the malware can spread to their systems in a supply chain attack.
Security incidents happen; that’s just reality. But how a company decides to handle an event says more about their values and priorities than their product. The recent Okta compromise reminds us of the damage inflicted when there is a lack of transparency between a security vendor and its customers.
IoT regulations without real penalties will let manufacturers and service providers continue their focus on ease of use at the expense of security and privacy best practices.
