Software Integrity

Archive for the 'Privacy' Category

 

Don’t expect jailed CEOs, but Wyden at least puts consumer privacy on the table

The Consumer Data Protection Act (as outlined in the CDPA draft circulated in early November by Sen. Ron Wyden) might not send CEOs to jail, but it will certainly help protect Americans’ data.

Continue Reading...

Posted in Legal, Privacy, Security Standards and Compliance

 

Cooking up digital privacy, indecent (data) exposure, and just another zero-day

Taylor Armerding, Synopsys Software Integrity Group senior strategist, gives you the scoop on application security and insecurity in this week’s Security Mashup. What’s in this week’s Security Mashup, you ask? Cook calls for digital privacy laws, user data exposed in the Wife Lovers hack, and just another Windows zero-day. Watch this week’s episode here:   Tim […]

Continue Reading...

Posted in Data Breach, Privacy, Weekly Security Mashup

 

Shield your home from spies | NCSAM at Synopsys

October is National Cybersecurity Awareness Month. By now you’ve heard a story—or you have a story—about someone mentioning a product casually in a conversation and later seeing an online ad for the product. Once is coincidence. Twice is surprising. But every other day? How do web and mobile ads somehow seem to know what your […]

Continue Reading...

Posted in Privacy

 

Turn on multifactor authentication | NCSAM at Synopsys

October is National Cybersecurity Awareness Month. One of the fastest, easiest ways you can make yourself safer is to turn on multifactor authentication. Do it the next time you open an app on your phone or log into any of your accounts. Multifactor authentication is much safer than single-factor authentication. And it’s becoming more widely […]

Continue Reading...

Posted in Privacy

 

Gmail Confidential? Not so much

According to privacy advocates, Google has a problem with truth in labeling. No, not about its surreptitious tracking of users who have turned their Location History off, which has sucked up most of the headline space over the past few weeks. This is about the rollout of their allegedly “confidential” Gmail feature. Confidential mode doesn’t […]

Continue Reading...

Posted in Privacy

 

Survey: Data management is an afterthought in cloud migration

Moving virtualized workloads to the cloud is either a reality or a near-term goal for an overwhelming majority—90%—of 170 organizations surveyed during July and August by Druva, a cloud data management and security company. But the forecast for the security and management of company data in that setting is, well, cloudy at best. The survey […]

Continue Reading...

Posted in Cloud Security, Privacy

 

Cardiac patient data at risk, Philips reports

It’s never good news to find out that both your personal and clinical information could be compromised by the software platform your healthcare provider is using. But it’s at least somewhat better news to know that the company responsible for the vulnerable software has been transparent about it, notifying the appropriate government agencies so all […]

Continue Reading...

Posted in Healthcare Security, Medical Device Security, Privacy

 

Codenomi-con speakers agree: Bringing back privacy requires citizen action

We keep hearing that privacy is dead. But there is a good chance that a lot of us still aren’t aware of just how dead. So this week Synopsys presented codenomi-con, in connection with the Black Hat conference in Las Vegas, offering reminders about that reality in both government and the private sector. At the […]

Continue Reading...

Posted in Events, Healthcare Security, Privacy, Webinars

 

LifeLock lesson—Third party security is your security

On July 25, on his blog Krebs on Security, Brian Krebs covered a flaw in how LifeLock processed “unsubscribe” information related to its marketing activities. For those unfamiliar with LifeLock, it is a subsidiary of Symantec offering identity monitoring and protection services in the U.S. market. Brian outlined an issue impacting recipients of LifeLock marketing material […]

Continue Reading...

Posted in Privacy, Security Standards and Compliance

 

Golden Cup was a world cup of trouble

Nobody with any connection to, or interest in, the FIFA World Cup can say they weren’t warned. In the days leading up to the quadrennial world championship of European football (or soccer), security experts put the word out constantly that everybody involved—players, organizers, staff, and spectators (including those watching on TV or online)—would be a […]

Continue Reading...

Posted in Mobile Application Security, Privacy