Data Privacy, Compliance & Risk Monthly Round-Up
ISMS.online
Protect and grow your business with the leading ISO 27001 and compliance solution. ISO27001, ISO27701, GDPR, SOC2 + more
We’re back with our monthly round-up of all the critical news, headlines, blogs and resources covering information security risk, compliance and data privacy.
April has seen AI continuing to dominate the compliance conversation globally following the agreement of the EU AI Act text. Popular social media platform TikTok is facing an outright ban if it can’t resolve privacy concerns in the US. Australia continues to make big swings in its cybersecurity strategy with a landmark legal decision that establishes courts may order injunctive relief to restrain unknown hackers from dealing in stolen data. Read on to find out more about these stories, access handy resources and more. ?
Latest Blogs
the EU has just published its first cybersecurity certification scheme. Phil Muncaster explores how it could have a global impact.
Organisations are increasingly turning to AI-powered facial recognition to help improve security on their premises and streamline employee access. But beware, the regulator. The ICO has ruled Serco Leisure’s use of facial recognition unlawful. John Leyden has taken a closer look at what this means for organisations
After a series of mass exploitation campaigns against Ivanti products, the network perimeter is once again a focus for security teams. So much so that the NCSC has released new guidance for them.? Phil Muncaster has taken a deep dive to find out more.
While AI promises unparalleled efficiency and innovation, Luke Dash highlights the crucial role of responsible AI practices in ensuring sustainable business growth.
It’s been a bad 12 months for data breaches. According to one estimate from IDTheftSecurity.com Inc, publicly reported incidents in the US soared 72% from the previous all-time high in 2021. Danny Bradbury investigates how frameworks like ISO 27001 could help businesses stay secure.
The EU AI Act has landed. But what does it mean for your organisation? If you have operations in the region, it could necessitate a revision of your compliance programme. Nicholas Fearn has taken a closer look at the legislation and its potential consequences.
Latest News
TikTok ban bill put on faster track through US Congress
The move followed briefings from national security officials who warned that China could gain access to Americans’ personal data held on the app > Read more
UnitedHealth says hackers possibly stole large number of Americans' data
UnitedHealth Group said on Monday that hackers stole health and personal data of potentially a "substantial proportion" of Americans from its systems in February, as the largest U.S. health insurer scrambles to contain the damage > Read more
领英推荐
Acting against unknown hackers: a groundbreaking Australian data breach case
In a landmark decision that underscores the evolving landscape of cybersecurity law in Australia, the Supreme Court of New South Wales judgment of HWL Ebsworth Lawyers v Persons Unknown [2024] NSWSC 71 establishes that Australian courts may order injunctive relief to restrain unknown hackers from dealing in stolen data > Read more
Hackers are threatening to leak World-Check, a huge sanctions and financial crimes watchlist
The hackers, which call themselves GhostR, said they stole 5.3 million records from the World-Check screening database in March and are threatening to publish the data online > Read more
Reported Major Data Breach May Have Compromised Companies Across Industries
A federal cybersecurity agency is investigating the hacking of Sisense, a business intelligence company. Organizations that had a relationship with the firm are being advised to quickly take safety precautions > Read more
CPPA issues first enforcement advisory
The California Privacy Protection Agency is advising covered entities under the California Consumer Privacy Act to shore up data minimization practices to avoid potential enforcement > Read more
Free Resources
ISO 42001 Explained: Unlocking Secure AI Management in Your Business.
This webinar is tailored for business leaders, compliance professionals, technology managers, and AI developers who are involved in or responsible for overseeing AI technologies within their organisations. Whether your organisation is at the early stages of integrating AI solutions or looking to enhance existing usage, this webinar will provide valuable insights into aligning your AI practices with the ISO 42001 standard > Secure your place now
PCI-DSS v4 Has Taken Effect, Organisations Now Have One Year To Comply
Staying ahead in the cybersecurity game isn't just about meeting standards—it's about strategic innovation. Our latest guide does just that, mapping the PCI-DSS v4 standard with the updated ISO 27001:2022 framework to provide a roadmap for financial and e-commerce organisations to achieve concurrent compliance. > Download Here
ISO 42001 Compliance Made Easy with ISMS.online’s Artificial Intelligence Management System
We're thrilled to introduce our new Artificial Intelligence Management System (AIMS)that simplifies ISO 42001 compliance and helps you establish responsible AI practices, mitigate risks, and save resources. > Read more
Your Compliance Success Story Starts Here
If you're looking to start your journey to better information security and data privacy management, we can help.?
Our ISMS SaaS platform enables a simple, secure and sustainable approach to information management with ISO 27001, SOC 2, NIST and over 100 other frameworks.?Unlock your competitive advantage today.?
Follow us on social media.
Chief Marketing Officer @ ISMS.online | Podcast Host @ Phishing for Trouble | Here to help you with Information Security
7 个月Great round up!