Joseph Lazarrotti of JacksonLewis writes: On May 20, 2022, the Federal Trade Commission’s Team CTO and the Division of Privacy and Identity Protection published a blog post entitled, “Security Beyond Prevention: The Importance of Effective Breach Disclosures.” In the post, the FTC takes the position that in some cases there may be a de facto data breach…
Category: Commentaries and Analyses
The truth about China’s Uyghur camps Beijing is trying to hide: Hacked data reveals thousands of prisoners forced to undergo ‘re-education’… with a shoot-to-kill policy for anyone who tries to flee
Chris Pleasance reports: Thousands of photographs, spreadsheets and classified documents hacked from Chinese police servers have shed a horrifying new light on the terrors Uyghur Muslims have been subjected to in ‘re-education camps’ and prisons in Xinjiang, as part of a state-sponsored campaign aimed at ‘breaking’ their cultural identity. The treasure trove of data lays…
Malaysia: Govt must be transparent, outcome of alleged data breach probe must be made public
Zarrah Morden reports: Transparency International Malaysia (TI-M) today expressed concern over the alleged data leaks and sale of personal data belonging to Malaysians and urged the government to publicly disclose the results of police investigation into the matter. […] It also suggested that legislators study what is lacking in existing legislation, leading to solutions that…
DisCONTInued: The End of Conti’s Brand Marks New Chapter For Cybercrime Landscape
Yelisey Bogusalvskiy & Vitali Kremez write: On May 19, 2022, the admin panel of the Conti ransomware gang’s official website, Conti News, was shut down. The negotiations service site was also down, while the rest of the infrastructure: from chatrooms to messengers, and from servers to proxy hosts was going through a massive reset. Conti…
Major Cyber Organizations of the Russian Intelligence Services
The Office of Information Security Securing One HHS and Health Sector Security Coordination Center (HC3) have released slides from: Major Cyber Organizations of the Russian Intelligence Services (pdf, 27 pp) TLP: WHITE, ID# 202205191300 May 19, 2022 Agenda • Russian Intelligence Services’ Structure • Russian Intelligence Services’ Mandates • Turla • APT29 • APT28 •…
Decisions by the Personal Data Protection Commissioner of Singapore
The Personal Data Protection Commissioner of Singapore announced several new decisions this week. Here are three of them: A financial penalty of $2,000 was imposed on Southaven Boutique for failing to put in place reasonable security arrangement to prevent the unauthorised access of its customers’ personal data in its Point-Of-Sale system server. Read more. A…