dataprotection – Page 2 – SSL and internet security news

The Concept of “Return on Data”

May 20, 2019 infossl

academicpapers, datacollection, dataprotection, economicsofsecurity, privacy, Security technology

This law review article by Noam Kolt, titled “Return on Data,” proposes an interesting new way of thinking of privacy law. Abstract: Consumers routinely supply personal data to technology companies in exchange for services. Yet, the relationship between the utility (U) consumers gain and the data (D) they supply — “return on data” (ROD) — … Read More “The Concept of “Return on Data”” »

Personal Data Left on Used Laptops

March 26, 2019 infossl

computersecurity, dataloss, dataprotection, Security technology

A recent experiment found all sorts of personal data left on used laptops and smartphones. This should come as no surprise. Simson Garfinkel performed the same experiment in 2003, with similar results. Powered by WPeMatico

Your Personal Data is Already Stolen

December 6, 2018 infossl

breaches, databreaches, datacollection, dataloss, dataprotection, Security technology

In an excellent blog post, Brian Krebs makes clear something I have been saying for a while: Likewise for individuals, it pays to accept two unfortunate and harsh realities: Reality #1: Bad guys already have access to personal data points that you may believe should be secret but which nevertheless aren’t, including your credit card … Read More “Your Personal Data is Already Stolen” »

Helen Nissenbaum on Data Privacy and Consent

October 4, 2018 infossl

datacollection, dataprotection, interviews, privacy, Security technology

This is a fantastic Q&A with NYU Law Professor Helen Nissenbaum on data privacy and why it’s wrong to focus on consent. I’m not going to pull a quote, because you should read the whole thing. Powered by WPeMatico

California Passes New Privacy Law

July 3, 2018 infossl

datacollection, dataprotection, laws, privacy, Security technology

The California legislature unanimously passed the strongest data privacy law in the nation. This is great news, but I have a lot of reservations. The Internet tech companies pressed to get this law passed out of self-defense. A ballot initiative was already going to be voted on in November, one with even stronger data privacy … Read More “California Passes New Privacy Law” »

TSB Bank Disaster

April 27, 2018 infossl

banking, dataprotection, Security technology

This seems like an absolute disaster: The very short version is that a UK bank, TSB, which had been merged into and then many years later was spun out of Lloyds Bank, was bought by the Spanish bank Banco Sabadell in 2015. Lloyds had continued to run the TSB systems and was to transfer them … Read More “TSB Bank Disaster” »

Yacht Security

May 15, 2017 infossl

crime, dataprotection, hacking, Security technology, socialmedia

Turns out, multi-million dollar yachts are no more secure than anything else out there: The ease with which ocean-going oligarchs or other billionaires can be hijacked on the high seas was revealed at a superyacht conference held in a private members club in central London this week. […] Murray, a cybercrime expert at BlackBerry, was … Read More “Yacht Security” »

My TEDMED Talk on Medical Data Privacy

February 24, 2017 infossl

dataprotection, dataretention, medicine, privacy, schneiernews, Security technology, videos

Last November, I gave a talk at the TEDMED Conference on health and medical data privacy. The talk is online. Powered by WPeMatico

New Rules on Data Privacy for Non-US Citizens

January 30, 2017 infossl

datacollection, dataprotection, nationalsecuritypolicy, privacy, Security technology, surveillance

Last week, President Trump signed an executive order affecting the privacy rights of non-US citizens with respect to data residing in the US. Here’s the relevant text: Privacy Act. Agencies shall, to the extent consistent with applicable law, ensure that their privacy policies exclude persons who are not United States citizens or lawful permanent residents … Read More “New Rules on Data Privacy for Non-US Citizens” »

Indiana's Voter Registration Data Is Frighteningly Insecure

October 11, 2016 infossl

databases, databreaches, dataprotection, fraud, Security technology, voting

You can edit anyone’s information you want: The question, boiled down, was haunting: Want to see how easy it would be to get into someone’s voter registration and make changes to it? The offer from Steve Klink — a Lafayette-based public consultant who works mainly with Indiana public school districts — was to use my … Read More “Indiana's Voter Registration Data Is Frighteningly Insecure” »