igor - Fotolia
Security Bytes
This blog covers topics across the spectrum of security, privacy and compliance, as well as the people and issues driving enterprise infosec today.
Recent Posts
-
It's GDPR Day. Let the privacy regulation games begin!
- Site Editor 30 May 2018 -
Google I/O's security and privacy focus missing on day one
- Senior Reporter 09 May 2018 -
Cybersecurity pervasiveness subsumes all security concerns
- Senior Reporter 03 May 2018
GDPR Day -- May 25, 2018 -- has passed and enforcement is now accepting complaints against companies violating the terms of the EU's new privacy regulation.
It's fairly easy to find stories sparking security and privacy concerns regarding a Google product or service — Search, Chrome, Android, AdSense and more — but if you watched or attended Google ...
Given the increased digitization of society and explosion of devices generating data (including retail, social media, search, mobile, and the internet of things), it seems like it might have been ...
-
Algorithmic discrimination: A coming storm for security?
- Associate Editorial Director 30 Apr 2018 -
GDPR deadline: Keep calm and GDPR on
- Site Editor 27 Apr 2018 -
CrowdStrike unveils Meltdown exploit in unusual fashion
- Associate Editorial Director 19 Apr 2018 -
FedRAMP security requirements put a premium on automation
- Associate Editorial Director 17 Apr 2018 -
Privacy protections are needed for government overreach, too
- Associate Editorial Director 31 Mar 2018 -
Apple GDPR privacy protection will float everyone's privacy boat
- Site Editor 30 Mar 2018 -
RSA Conference keynotes miss the point of diversity
- Associate Site Editor 27 Mar 2018
Following several RSA Conference 2018 talks on machine learning and AI, it's worth asking how algorithmic discrimination might manifest in the infosec industry.
With the GDPR deadline looming, companies may still be scrambling to do "something" about it, but with less than 30 days to go the best move for many may be to wait and watch, and perhaps just ...
At RSA Conference 2018, CrowdStrike demonstrated a new Meltdown exploit that can harvest sensitive data such as passwords even on systems that are patched.
Matt Goodrich, director for the Federal Risk and Authorization Management Program, detailed FedRAMP security requirements and automation at RSA's Cloud Security Alliance Summit.
Following the Facebook-Cambridge Analytica controversy, major tech companies pledged to defend users from corporate data misuse, but they're ignoring a more serious privacy threat.
With its embrace of new tools for protecting consumer privacy, Apple GDPR privacy protection will be available to all users as the EU's new privacy protection legislation is set to start ...
RSA Conference keynotes now include a handful of distinguished women, but very few will be speaking about cybersecurity, falling short of truly equal representation.
-
Facebook's 2FA bug lands social media giant in hot water
- Associate Editorial Director 23 Feb 2018 -
Symantec's untrusted certificates: How many are still in use?
- Associate Editorial Director 08 Feb 2018 -
Blizzard security flaw should put game developers on notice
- Associate Editorial Director 26 Jan 2018 -
The strange case of the 'HP backdoor' in Lenovo switches
- Associate Editorial Director 18 Jan 2018 -
Intel keynote misses the mark on Meltdown and Spectre vulnerabilities
- Associate Editorial Director 09 Jan 2018
Facebook came under fire after a two-factor authentication bug sent non-security notifications to users' phones, sparking a debate about media coverage and 2FA adoption.
A security researcher found that a significant number of popular websites are still using untrusted certificates from Symantec, which will be invalidated this year.
A newly-discovered Blizzard security bug, which affected all of the company's popular PC games including Overwatch, should serve as a warning for the video game industry.
Lenovo's discovery of an authentication bypass, literally titled "HP backdoor," within its networking switches brings unsettling implications for the IT industry.
With CEO Brian Krzanich's keynote at the 2018 Consumer Electronics Show, Intel missed an opportunity for the Meltdown and Spectre vulnerabilities.