China’s New Data Protection Law: One Billion Reasons to Improve Data Security
The EU’s General Data Protection Regulation (GDPR) has influenced many governments around the world to create copycat laws. Now it has reached China, where a new Personal Information Protection Law (PIPL) regulates the way companies use and process the data of some 1.4bn citizens. The new law crucially follows the ... Read More
The Top Five Sources of Data Breaches and How to Reduce Their Impact
Corporate IT security teams are often accused of being too reactive in their approach to threat defense. Yet it’s unfortunately all too easy to fall into a vicious cycle of firefighting incident after incident, given the scale and sophistication of modern threats. In the US, 2021 was a record year ... Read More
As Ransomware Threats Mount, Focus Should be on Data-Centric Security
In the cybersecurity industry, ransomware has been the story of the past few years. Despite being around for over a decade or more, attacks leveraging the malware really spiked during the pandemic. It continues to run wild thanks to a perfect storm of sub-par corporate security, highly accessible ransomware-as-a-service (RaaS) ... Read More
17 Countries with GDPR-like Data Privacy Laws
GDPR wasn't the beginning and it certainly won't be the end. Strict data privacy legislation with extraterritorial applicability is appearing in more and more economies across the globe, meaning the list of “GDPR-free” havens is growing shorter by the day. ... Read More
Getting Started with Data-centric Security
With a proliferation of cyber-attacks throughout the pandemic, data-centric security has been pushed to the forefront of many organizations’ cybersecurity strategy. Even companies with mature security programs are vulnerable to breach, and since data is a valuable asset, it is crucial to properly protect it. The importance of securing data, ... Read More
Colorado Becomes Latest US State to Enact Data Privacy Regulations
As of July 2021, Colorado officially enacted the Colorado Privacy Act (CPA), making it the third US state to pass dedicated privacy legislation, following in the footsteps of California’s Consumer Privacy Act (CCPA) and Virginia’s Consumer Data Protection Act (VCDPA) ... Read More
2021 Data Security Trends in the US, UK, and Middle East
The pandemic fundamentally changed the way we work and at the same time opened a massive gap in cybersecurity. This was highlighted by a seemingly never-ending news cycle of high-profile breaches at organizations that were not equipped to adequately secure their sensitive data from unauthorized access in this new work ... Read More
Cybersecurity Spending Expected to Reach $150 Billion in 2021
With online threats continuing to mount and evolve, enterprises are seeking the necessary tools to detect, remediate and protect their data and overall infrastructure. In fact, according to Gartner, global spending on cybersecurity and risk management services is expected to exceed $150.4 billion this year – which is an increase ... Read More
Nacha’s Account Data Security Rule Comes into Effect this Month
The extension to the deadline to meet Nacha’s Rule related to protecting Account Numbers in an ACH transaction is upon us - June 30, 2021. This rule already applied to most financial institutions, but now non-financial institutions including Originators, Third-Party Service Providers, and Third-Party Senders have to meet the rule ... Read More
Data Breach at German Supermarket Chain tegut
The German supermarket chain "tegut" was recently the target of a cyberattack (source in German) and on April 24 the company activated emergency procedures that shut down their entire central IT network and disconnected it from the internet. While done to limit the exposure of sensitive data, these measures also ... Read More