Compliance

Compliance news, analysis, research, how-to, opinion, and video.

Second HTTPS snooping flaw breaks security for thousands of iOS apps

Hackers can exploit the vulnerability to launch man-in-the-middle attacks and decrypt traffic from the affected apps

FTC complains retail tracking firm didn't notify customers

Nomi falsely told customers they could opt out of tracking, the agency says


Think your management job is safe? Beware: the 'iCEO' is coming

Upper-level positions may be much more amenable to automation than you think

Senate leader introduces bill to extend Patriot Act surveillance

The new legislation would extend the telephone records collection section of the law for five years

4 approach

3 experts teach you how to properly scope your PCI assessment

When it comes to PCI, getting your scope right is more important than just getting a cheaper, faster assessment. Learn how to do it right with insights from 3 experts.

Crypto gurus: The government's key escrow plan won't work

World renowned cryptographers highlighted various reasons why creating a master decryption key for the government to use is not practical

Microsoft moves to address customers' concerns about cloud control and transparency

The company will launch new features for Office 365 designed to give organizations more control and visibility into their data

Congress moves forward on cyberthreat sharing bill despite privacy concerns

The House may vote this week on a bill that would allow shared cybertheat information to be passed to the NSA and law enforcement agencies

smartphone security

Developments in call monitoring technology surge

Huawei and Ericsson appear to be the main players for securing handsets, judging by recent patent filings.

The Procession of the Trojan Horse in Troy

Monetizing your corporate data...or not

Under pressure to manage data as an asset, CIOs and other IT executives are discovering data monetization, the practice of assigning a financial value to data. But such an exercise can be talent and funding-intensive. What questions...

Google's push to encrypt ads will improve security, but won't kill malvertising

The move might encourage more websites to deploy HTTPS

Twitter accounts outside of the US now fall under EU data protection rules

Twitter's International headquarters will be in Dublin

RadioShack presses ahead plan for sale of customer data

The sale of the personal data was withdrawn from a previous auction

New cyberthreat information sharing bill may be more friendly to privacy

The new bill still allows companies to share some unnecessary personal information with government agencies, a critic says

UK government's spying practices challenged at European human rights court

Disclosing secret policies that govern mass surveillance practices is not enough to make them legal, human rights groups said

Google ordered by German authority to change privacy practices

Google loses yet another round in its regulatory fight over privacy policy changes in Europe

US drug enforcement amassed bulk phone records for decades

The bulk collection of phone records by the DEA preceded the NSA's own program

Russian hackers accessed White House email, report says

Non-public details of President Obama's schedule were accessed, CNN reported

Researchers show that IoT devices are not designed with security in mind

Lack of encryption and other security issues found in home automation hubs could facilitate burglary, stalking and spying

Complaint alleges YouTube Kids pushes advertising content

Privacy groups complain that the new service intermingles ads with other content in a way prohibited on TV

Load More