IT Security & Privacy

The cybersecurity landscape is a battleground, and state and local governments find themselves on the frontlines. Cyber threats loom larger than ever, escalating in frequency and sophistication as we progress through 2024. While high-profile breaches often dominate headlines, state and local agencies are not exempt from the relentless barrage of attacks aimed at compromising sensitive citizen data and disrupting critical operations. This pivotal moment demands decisive action to fortify data privacy and security measures.

The Czech data protection authority imposed a whopping 351 million CZK fine on Avast Software, a cybersecurity firm, for unlawfully sharing personal data of millions of its antivirus users with a subsidiary company.

The recent malicious cyberattack on Change Healthcare, a major provider of revenue cycle management and data solutions for the healthcare industry, has brought significant compliance risks and challenges to UnitedHealth Group, the parent company of Change Healthcare.

The European Data Protection Board (EDPB) unveiled its ambitious strategy for the forthcoming years, setting the stage for a nuanced approach to data protection in an ever-evolving digital landscape. Far beyond a mere blueprint, this strategy embodies a visionary response to contemporary data protection needs, propelled by collaboration and foresight.

U.S. Representative Cathy McMorris Rodgers (R-WA) and Senator Maria Cantwell (D-WA) have jointly introduced the American Privacy Rights Act, a historic bipartisan initiative aimed at reshaping data privacy regulations nationwide. This draft legislation represents a significant effort to establish comprehensive data privacy rights and protections for Americans while streamlining existing state laws and introducing stringent enforcement mechanisms.

In a recent article, the French data protection authority, CNIL, shared insights from their analysis of the economic impact of the General Data Protection Regulation (GDPR) in Europe. Additionally, this past fall they had published another article in the Revue européenne des Médias et du Numérique, studying the multifaceted consequences of GDPR implementation since its inception in 2018.

In a rapidly digitizing world where cyber threats loom large, corporate boards are grappling with the imperative to fortify their cybersecurity measures. A collaborative effort between Diligent Institute and Bitsight sheds light on the intricate relationship between board governance structures and cybersecurity performance.