Data Privacy News
A selection of top headlines from today’s best sources for Data Privacy News:
-
Connolly balks at FEVS delays
The head of the subcommittee with oversight of the federal workforce is accusing the Office of Personnel Management of "mishandling" the government's annual employee survey.
Read more... -
FCW Insider: Aug. 13
The latest news and analysis from FCW's reporters and editors.
Read more... -
Quick Hits
Read more... -
JAIC to expand ethics team
Jane Pinelis, the JAIC's chief of testing, evaluation, and assessment, said the center is working to expand its ethics team, which is charged with ensuring the Defense Department's AI projects meet ethical standards.
Read more... -
Achieving gains in government IT performance with DevSecOps
Defense agencies in particular are embracing the idea of blending development, security and operations from day one.
Read more... -
AFGE touts Harris veep pick
Sen. Kamala Harris (D-Calif.) has a long record supporting federal union issues and looking to check the power of government and private sector tech surveillance.
Read more... -
Huawei ban looms for contractors
Federal contractors are still facing uncertainty about new rules to get rid of Chinese-made gear.
Read more... -
FCW Insider: Aug. 12
The latest news and analysis from FCW's reporters and editors.
Read more... -
Quick Hits
Read more... -
CISA's 'next frontier' around cyber data analytics
An official said the agency wants to spend the next five years quantifying the unquantifiable around collective cyber risk.
Read more... -
Security Operations In This New Paradigm
Read more... -
Location Behavioral Biometrics for Frictionless Mobile Fraud Prevention
Read more... -
ENISA: Software vulnerability prevention initiatives
The European Network and Information Security Agency, ENISA, has compiled a list of existing initiatives focused on finding and preventing software vulnerabilities.
Read more... -
Accounting of Disclosures Under the HITECH Act
A notice of proposed rulemaking from the HHS Office for Civil Rights that would modify the HIPAA Privacy Rule standard for accounting of disclosures of protected health information and add new requirements for access reports.
Read more... -
FFIEC Final Authentication Guidance
The Final FFIEC Guidance has been issued and its main intent is to reinforce the 2005 Guidance's risk management framework and update the Agencies' expectations regarding customer authentication, layered security, or other controls in the increasingly hostile online environment.
Read more... -
Annual Report to Congress on Breaches of Unsecured Protected Health Information
The Department of Health and Human Services' Office for Civil Rights provided a report to Congress on health information breaches from September 2009 through 2010, as required under the HITECH Act. Nearly 7.9 million Americans were affected by almost 30,800[…]
Read more... -
VP Pick Kamala Harris Has Supported Election Security Bills
So Far, Various Senate Proposals Have Failed to AdvanceSen. Kamala Harris of California, presumptive Democratic presidential nominee Joe Biden's pick for his vice presidential running mate, has a track record of interest in election security issues. But so far, none[…]
Read more... -
More Microsoft Zero-Day Flaws Being Exploited
Microsoft and CISA Recommend Immediate Patching of Critical BugsTwo critical, zero-day vulnerabilities affecting Internet Explorer and multiple versions of the Windows operating system are being exploited in the wild, Microsoft and the U.S. Cybersecurity and Infrastructure Security Agency warn, urging[…]
Read more... -
Thwarting BEC Scams That Target Privileged Users
CISO Espen Otterstad on Enterprise Risk ManagementTo help mitigate the risks posed by business email compromise scams that target privileged users, enterprises need to create a detailed enterprise risk management plan that spells out procedures to secure accounts, says Espen[…]
Read more... -
SANS Institute Sees Its Breach as Teachable Moment
Cyberecurity Training Center Wants Others to Learn From Phishing AttackThe SANS Institute, which is known for its cybersecurity training courses, is now planning to turn its own data breach into a teachable moment for its membership.
Read more...
