The week in security: After major GDPR violations, everything is fine

Massive GDPR fines for data breaches were the order of the week as British Airways copped a £183m ($A328m) fine for a hack of its website last year.

Marriott wasn’t far behind, facing a £99m ($A177m) fine over a breach in which 383m customers’ details were compromised.

Growing damages from data breaches are pushing CSOs to implement new approaches for detecting them – with orchestration and automation increasingly being recognised as crucial to marrying policy and information operations.

Yet many believe that a good use of security analytics will be focused on preventing breaches, not just detecting them after they’ve happened.

Chinese authorities were in a different sort of preventative mood, with revelations that the country’s border security patrols were installing spyware on the phones of foreign travellers.

A Cloudflare outage caused major problems across the Internet, while scammers were causing major problems on Google Play by exploiting weaknesses in Samsung’s phone-update methods.

Meanwhile, Apple pushed out a security update to Mac users to make sure they aren’t exposed to a serious Zoom security flaw.

And Microsoft kicked off a public preview of its Azure Active Directory password muffler, which progresses its push towards a passwordless future.

Copyright © 2019 IDG Communications, Inc.

The 10 most powerful cybersecurity companies