Compliance

Compliance news, analysis, research, how-to, opinion, and video.

Privacy groups call for action to stop Facebook's off site user tracking plans

Authorities should act immediately to stop this new vast expansion of Facebook's data collection and user profiling, privacy groups said

Dutch spy agencies can receive NSA data, court rules

Because raw data is shared in bulk, less stringent privacy safeguards apply, the court said


Tor Project working to fix weakness that can unmask users

The anonymity software's developers believe they've identified the problem

US court says warrant for access to all content of email account is justified

The government was granted a warrant to obtain emails and other information from a Gmail account

Net neutrality a key battleground in growing fight over encryption, activists say

Both carriers and government now have an interest in how users keep their online lives private

binary hard drive

CryptoWall blamed for possible data breach at Benjamin F. Edwards & Co.

Warning of a potential data breach, Benjamin F. Edwards & Co. (BFE) says that CryptoWall, a variant of CryptoLocker, infected an employee's computer on May 27.

Chaos Computer Club bolsters NSA spying complaint with Tor snooping evidence

The Chaos Computer Club wants new evidence to prompt an investigation into mass surveillance of German citizens

security awareness

No money, no problem: Building a security awareness program on a shoestring budget

Implementing a security awareness program seems rather straightforward, until you actually start to implement one - factoring in things like resources and the people (users) to be trained. At that point, it can seem complicated,...

EA dismisses claim its Origin software spies on users

A screenshot posted on Reddit does not represent information collected by Origin, an EA spokeswoman said

There's still a security disconnect on BYOD

Companies are implementing BYOD security policies, but surveys find that many workers aren't following them

9 cloud analytics

The continuous cloud controls evaluation model

With the growing trend of increasing clouds and increasing complexity of cloud architecture (hybrid, multi-vendor, cloud of clouds), it is imperative to understand and solve the biggest security concerns. Once you evaluate the cloud...

NSA defends collecting data from U.S. residents not suspected of terrorist activities

Spokeswoman says spy agency has long said some of the data it intercepts belonging to non-suspects

Groups fear bill would allow free flow of data between private sector and NSA

Cybersecurity Information Sharing Act of 2014 is a big threat to individual privacy, say privacy groups

Google's move into home automation means even less privacy

Plans by subsidiary Nest to share info with the search giant is the tip of the iceberg

devops

Defending DevOps

DevOps promise increased collaboration and enterprise IT agility. But what does that mean when it comes to regulatory compliance? There’s a new effort underway with an answer.

Exposing hidden domain registrations could hurt innocent users more than criminals

Proxy services to hide details of domain registrants from the Whois database should be allowed, a researcher said

Bill to require warrant for email searches gains ground in House

So far, 218 members have co-sponsored the measure

As iPhone thefts drop, Google and Microsoft plan kill switches on smartphones

After a year of pressure, U.S. law enforcement officials announce a major success in their phone anti-theft push

British spies are allowed to intercept Google and Facebook traffic, official says

It is the first time a U.K. official has commented on the government's "vague surveillance legal framework", Privacy International said

Judge orders DOJ to turn over FISA surveillance documents

The agency failed to justify keeping the 66 pages of documents secret, the federal judge said

Load More