IT Security & Privacy

The European Union Agency for Cybersecurity (ENISA) has launched the European Vulnerability Database (EUVD), a new initiative aimed at enhancing cybersecurity resilience across the EU. This database, operational as of now, provides consolidated, reliable information about vulnerabilities in Information and Communication Technology (ICT) products and services, as mandated by the NIS2 Directive. The goal is to improve transparency and allow organizations to better address and manage cybersecurity risks.

The year 2024 will go down in history as a record-breaking one for data breaches in Australia, with over 1,100 incidents reported to the Office of the Australian Information Commissioner (OAIC), the highest number since the country introduced mandatory data breach notifications back in 2018. This surge signals a growing concern for Australians' privacy, with a 25% increase from the previous year’s numbers.

Our smartphones are more than just devices, they’re an extension of ourselves. We rely on them to navigate daily life, from communication and entertainment to shopping and tracking our health. In 2023, the average French citizen downloaded 30 mobile apps and spent over 3 hours a day using their phones. But while we’re all living more digitally connected lives, there’s a downside i.e., privacy risks. With apps constantly collecting our data, how can we make sure our personal information stays safe?

Cybersecurity is a constant challenge, and as digital infrastructures evolve, so do the risks. The release of ENISA’s NIS360 2024 report provides a timely and important snapshot of how well Europe’s critical sectors are handling their cybersecurity responsibilities under the NIS2 Directive. This report doesn’t just throw out data, it digs deep into where sectors stand, where they’re excelling, and, more importantly, where they need to improve.

It’s not every day a fashion brand gets caught up in the tangled web of data privacy violations, but here we are. Todd Snyder, the well-known clothing retailer, has been slapped with a $345,178 fine by the California Privacy Protection Agency (CPPA) after failing to meet the standards set by the California Consumer Privacy Act (CCPA).

The Personal Information Protection Commission (PIPC) has taken a closer look at Hangzhou DeepSeek Artificial Intelligence (DeepSeek), a company that’s been under scrutiny ever since its R1 Large Language Model (LLM) AI chatbot launched earlier this year. What started as a routine review into the privacy practices of DeepSeek’s services has resulted in a series of recommendations that are shaking up how the company handles user data and cross-border transfers.e

The French data protection authority, the CNIL (Commission Nationale de l'Informatique et des Libertés), has released its 2024 annual report, showcasing a year marked by significant strides in personal data protection. The report highlights key achievements in inspections, sanctions, public awareness, artificial intelligence (AI) development, and cybersecurity, underscoring the CNIL’s critical role in safeguarding privacy in France.