It would appear that it is yet again time to update my ever-expanding list of things the current administration does that would get me, someone who works in privacy, fired immediately:

New:
-Violating minimization principles by collating data from otherwise unrelated databases.
-Failing to maintain and transmit data in ways that limit linkability.
-Using data for purposes other than those disclosed to the data subject at time of collection.

#privacy
#dataprivacy
#minimzation
#surveillance
#databreach
#facepalm

AI in Banking Security: Revolution & Risks

#TycoonWorld #AIinBanking #BankingSecurity #CyberSecurityAI #FinTechSecurity #ArtificialIntelligence #MachineLearning #AnomalyDetection #BehavioralAnalytics #ThreatDetection #FraudPrevention #PredictiveAnalytics #EthicalAI #DataPrivacy #ExplainableAI #AdversarialAttacks #BankingInnovation #FinancialSecurity #AIethics #AIrisks #DigitalBanking #AIinFinance #AIandCybercrime #SmartBanking #FinTechTrends #CyberRiskMitigation

https://tycoonworld.in/ai-in-banking-security-revolution-risks/

Have you migrated to a non-US instance yet?

Attackers claim they have their hands on a whopping 70 million lines of GrubHub's data, including millions of hashed passwords, phone numbers, and email addresses.

#cybersecurity #cyberattack #dataprivacy #datasecurity #GrubHub

https://cnews.link/grubhub-password-data-breach-hackers-1/

Updating some slides about data sharing just now and was greeted by this banner at the top of the NDAR (AKA NIMH data archive, NDA, https://nda.nih.gov/) homepage. I don't know when the banner appeared; I last visited the site maybe a month ago.

Many NIH-funded human neuroscience-related projects are required to submit data (behavioral questionnaires, neuroimaging, many others) to NDAR, including some of the largest US fMRI projects (HCP, ABCD).

I consider its Data Dictionary a "least-bad" way to usefully share questionnaire data (it's no help to know that someone answered "5" to item 3 without knowing the question and answer that refers to).

Anyone know anything about the banner or NDAR's future?

Cybernews research NexOpt has leaked sensitive real-time and historic travel data from commercial and passenger vehicles from all over the world.

#dataleak #dataprivacy #datasecurity #cybersecurity

https://cnews.link/nexopt-data-leak-exposes-locations-vehicles-3/

I paid attention to the #InfoSec and #DataPrivacy news over the weekend so you wouldn't have to!

Read "What'd I Miss?" a Sherpa Intelligence weekend news roundup. Like, share, & subscribe!

Friday, April 4 - Sunday, April 6, 2025
https://sherpaintelligence.substack.com/p/whatd-i-miss-april-4-6-2025

Good Law Project has launched a simple tool so everyone can demand Mark Zuckerberg stops using their data to target them with invasive paid content.

#Meta #DataPrivacy #Zuckerberg
While politicians sit on their hands, we're taking on Meta | Good Law Project
https://goodlawproject.org/we-are-taking-on-meta/

The countdown to the weekend begins with "Five for Friday" by Sherpa Intelligence! 5-4-Friday

See five #InfoSec or #DataPrivacy news items from this past week that you may have missed!

Read, Share, Subscribe!
https://sherpaintelligence.substack.com/p/five-for-friday-4-april-2025

President Trump plans to announce 'TikTok America,' a company ~50% owned by US investors and 19.9% by ByteDance, which would license the algorithm. #TikTok #USChina #TechNews #ByteDance #DigitalPolitics #DataPrivacy #SocialMedia

Cryptography Handbook takeaways:
Transition from Euler Totient Functions to Carmichael Functions for key generation, reduced decryption time without compromising security.
Libraries like OpenSSL integrate Carmichael Function for RSA operations, ensuring compliance with standards.
RSA's vulnerabilities due to deterministic and malleable properties were pivotal in shaping cryptographic standards.

https://www.freecodecamp.org/news/the-cryptography-handbook-rsa-algorithm/

Europe’s GDPR privacy law is headed for red tape bonfire within ‘weeks’ – POLITICO https://www.byteseu.com/888822/ #AxelVoss #BigData #BusinessAndCompetition #Competitiveness #DataProtection #DataPrivacy #DigitalTechRegulation #EU'sCompetitiveness #Europe #HumanRights #MaxSchrems #MichaelMcgrath #Omnibus #Platforms #Privacy #UrsulaVonDerLeyen

Cybernews research Hardcoded credentials and unauthenticated endpoints exposed 124,000+ messages from "Gay Daddy: 40+ Date & Chat" users.

#credentials #app #dataleak #datasecurity #dataprivacy #research

https://cnews.link/gay-daddy-ios-app-exposes-users-3/

Encryption is a way to ensure that data sent from one device to another can’t be read if intercepted. But what if the data pertains to criminal activity? Ana-Maria Cretu from EPFL’s Security and Privacy Engineering Lab shares her expertise on safety versus privacy concerns.

#CyberSecurity #Encryption #DataPrivacy

Read more: https://go.epfl.ch/Jc4-en

Random PSA to enable Advanced Data Recovery if you use iCloud. This was not known to me until recently but at least it's on now?

Next is to find good hardware alternatives to password management and maybe a Yubikey.

Twitter (X) Hit by 2.8 Billion Profile Data Leak in Alleged Insider Job

https://hackread.com/twitter-x-of-2-8-billion-data-leak-an-insider-job/

Ever wondered how to compute a function across multiple parties without revealing their inputs?

This technique can be used to split secrets among parties, perform logical operations, or count votes in a way that ensures data privacy is preserved.

Read the #InfoQ article to learn more: https://bit.ly/4cx8sAV

This was really interesting and horrifying to read. It makes me want to buy a $20 burner smart phone for online shopping with a VPN.

But even scarier than the price gouging stuff, how do I know that Rite Aid didn’t sell information about me they obtained from facial recognition software when I went into their store/pharmacy to the government? They know I’m disabled because I’m on Medicare and I’m younger than 65. My disability doesn’t involve my ability to walk around a store, but if yours does will Rite Aid tell the government that they have video of you walking for 10 minutes just fine? Will that mess with your disability review? Maybe, who would even know?

Kroger’s Surveillance Pricing Harms Consumers and Raises Prices, With or Without Facial Recognition – EPIC – Electronic Privacy Information Center https://epic.org/krogers-surveillance-pricing-harms-consumers-and-raises-prices-with-or-without-facial-recognition/

Attackers say they breached the British postal service last month, scooping a whopping 144 gigabytes of data.

#UK #hackers #cyberattack #cybersecurity #datasecurity #dataprivacy

https://cnews.link/royal-mail-data-breach-hackers-claim-1/