25th Mar, 2022
25th Mar, 2022
Call for international cooperation on Personal Data Protection, what is next?
On Monday, the European Union and nine other countries, including India, called for increased international collaboration to promote high information security and privacy standards based on some core features that are becoming increasingly shared across the Indo-Pacific region, Europe, and beyond.
The European Union, Australia, Comoros, India, Japan, Mauritius, New Zealand, South Korea, Singapore, and Sri Lanka stated in a ‘Joint Declaration on Privacy and the Protection of Personal Data: Strengthening Trust in the Digital Environment’ that rapid technological trends, particularly in records and digital technologies, have brought blessings for their economies and societies, as well as new demands for privacy and the protection of personal data.
According to the declaration shared by the Ministry of External Affairs, it is critical to ensure, as guaranteed by these countries’ respective legal frameworks, respect for individuals’ right to privacy and the protection of personal data as a core value and fundamental freedom, which is also acknowledged by the G20 Rome Leaders’ Declaration, to harness the opportunities of the digital economy.
“In short, without agreement, our societies would be unable to properly incorporate and comprehend the benefits of the digital revolution, which are critical to the development and, in particular, to the achievement of the UN 2030 Agenda for Sustainable Development and its Goals,” the declaration stated.
“Together, we share a common vision of a human-centric approach to such change, in which strong protection of personal data plays a critical role and is a crucial enabler for cross-border cooperation,” the statement said.
Read our recent blog where we compare the stance of protection of non-personal data in India and the EU.
Major Privacy Updates of the Week
Multiple companies affected by Okta hack
Okta Inc, whose authentication services are used by companies including FedEx Corp and Moody’s Corp to provide access to their networks, said on Tuesday that it had been hit by hackers and that some customers may have been affected. Lapsus$ is a relatively new entrant to the crowded ransomware market but has already made waves with high-profile hacks and attention-seeking behavior. The scope of the breach is still unclear, but it could have major consequences because thousands of companies rely on San Francisco-based Okta to manage access to their networks and applications.
Multiple companies affected by Okta hack
Okta Inc, whose authentication services are used by companies including FedEx Corp and Moody’s Corp to provide access to their networks, said on Tuesday that it had been hit by hackers and that some customers may have been affected. Lapsus$ is a relatively new entrant to the crowded ransomware market but has already made waves with high-profile hacks and attention-seeking behavior. The scope of the breach is still unclear, but it could have major consequences because thousands of companies rely on San Francisco-based Okta to manage access to their networks and applications.
EU proposes new cyber security regulations
The European Commission (EC) has proposed new bloc-wide cyber security and information security regulations that will aim to protect the EU’s public administration from rising cyber threats. The Cybersecurity Regulation will extend the mandate of the Computer Emergency Response Team – which will be renamed to ‘Cybersecurity Centre’ – to EU institutions, bodies, offices, and agencies. The proposed regulation will also see the creation of a new inter-institutional cyber security board that will be responsible for steering CERT-EU as well as driving and monitoring the implementation of the newly-proposed regulation.
EU proposes new cyber security regulations
The European Commission (EC) has proposed new bloc-wide cyber security and information security regulations that will aim to protect the EU’s public administration from rising cyber threats. The Cybersecurity Regulation will extend the mandate of the Computer Emergency Response Team – which will be renamed to ‘Cybersecurity Centre’ – to EU institutions, bodies, offices, and agencies. The proposed regulation will also see the creation of a new inter-institutional cyber security board that will be responsible for steering CERT-EU as well as driving and monitoring the implementation of the newly-proposed regulation.
US and Canada Collaborate to Tackle Cybercrime
The United States and Canada held talks on Tuesday to explore how the countries could collaborate better to counter cross-border illegal activity, including cyber-crime. Attending the meeting in Washington DC were Merrick Garland, the attorney general of the United States, and his Canadian counterpart, David Lametti, Canada’s attorney general and minister of justice. In attendance also were Alejandro Mayorkas, the US Secretary of Homeland Security, and Marco Mendicino, Canada’s minister for public safety. The countries have agreed to work together to improve coordination around reporting of ransomware attacks that can affect cross-border critical infrastructure.
US and Canada Collaborate to Tackle Cybercrime
The United States and Canada held talks on Tuesday to explore how the countries could collaborate better to counter cross-border illegal activity, including cyber-crime. Attending the meeting in Washington DC were Merrick Garland, the attorney general of the United States, and his Canadian counterpart, David Lametti, Canada’s attorney general and minister of justice. In attendance also were Alejandro Mayorkas, the US Secretary of Homeland Security, and Marco Mendicino, Canada’s minister for public safety. The countries have agreed to work together to improve coordination around reporting of ransomware attacks that can affect cross-border critical infrastructure.
Russian tech giant Yandex data leak
The regulator, Roskomnadzor, told Russian news agencies that it had restricted access to an online map that appeared on March 22 where the names, Phone numbers, and addresses of Yandex.eda customers were exposed and said Yandex faced a fine up to $1.020.
Russian tech giant Yandex data leak
The regulator, Roskomnadzor, told Russian news agencies that it had restricted access to an online map that appeared on March 22 where the names, Phone numbers, and addresses of Yandex.eda customers were exposed and said Yandex faced a fine up to $1.020.
RansomEXX Disrupts Scottish Association for Mental Health
Cybercrime group RansomEXX has been trumpeting an attack against the Scottish Association for Mental Health. The crime gang says it has stolen more than 12GB of data from Glasgow, Scotland-based SAMH. Stolen data allegedly includes images of unredacted driver’s license and passport details for volunteers and other individuals associated with the organization, which is a registered charity. Security experts have condemned the attack on SAMH, calling it “heartless” and “dirty work.”
RansomEXX Disrupts Scottish Association for Mental Health
Cybercrime group RansomEXX has been trumpeting an attack against the Scottish Association for Mental Health. The crime gang says it has stolen more than 12GB of data from Glasgow, Scotland-based SAMH. Stolen data allegedly includes images of unredacted driver’s license and passport details for volunteers and other individuals associated with the organization, which is a registered charity. Security experts have condemned the attack on SAMH, calling it “heartless” and “dirty work.”
WEEKLY PRIVACY NEWSLETTER
Keep up to pace with this high-impact weekly privacy newsletter that
features significant data privacy updates, trends, and tools that can
help to make your life secure & easier every day!
*By clicking on subscribe, I agree to receive communications from Tsaaro