Chinese Cyber Espionage: Salt Typhoon in US Telecom Networks
US government agencies recently confirmed an ongoing case of cyber espionage against US commercial telecommunications providers and their infrastructure.
Council of Europe Framework Convention on Artificial Intelligence
The CoE Framework Convention on AI is the world’s first international treaty on AI. The Convention sets forth various requirements for what future AI legislation will look like around the world.
California Protects Neural Data
California takes a significant step in safeguarding mental privacy by becoming the second U.S. state to recognize the importance of neural data protection in law.
AI: A New Frontier with Amplified Risks
This article provides an overview of several benefits and risks of AI, discusses how nations are beginning to regulate it, and recommends practical steps businesses can take now to successfully ride this next wave of technological progress which will likely dominate the next decade and beyond.
The EU AI Act is Official
It is finally official. The European Union (EU) Artificial Intelligence (AI) Act is officially EU law. The Act is effective as of 1 August 2024.
Hacked Phone & SIM: How To Recover and How to Minimize Risk
A friend’s phone was recently hacked. Everyone in his contacts received a message for help. What immediate steps should you take? How can you protect yourself?
My Interview with Renowned AI and Privacy Expert ScholarGPT
ScholarGPT answers my questions as an expert on AI and data protection. Our chat covers top AI and privacy challenges, what you should be reading, and other topics.
The Proposed American Privacy Rights Act: 5 Things to Know
The American Privacy Rights Act is unlikely to become law in 2024 - this is an election year. But the text reveals Congress’s evolving thinking around privacy.
Google’s Incognito Settlement: Browsing Data is Not Private
Google settles a case about the lack of privacy in Chrome’s Incognito mode. It will delete troves of user data and clarify that Incognito tracks your behavior.
Data Privacy: 1 Russia: 0
End-to-end encryption is fundamental to the human right of privacy. That is the holding in Podchasov v. Russia, a recent European Court of Human Rights decision.
The EU AI Act
The EU AI Act is the core pillar of the EU’s AI and digital strategy. Like the GDPR, the AI Act will set the standard for AI regulatory frameworks globally.
The EU Data Act
The EU Data Act marks a transformative moment in the data economy, introducing profound changes in data access, sharing, and usage. Its implementation will require substantial preparation and adaptation from businesses and will significantly impact how data is harnessed and valued. In this new era, complying with the Data Act will be crucial for those operating in the digital landscape, heralding a more equitable, innovative, and competitive future.
SEC Final Rules on Public Company Cybersecurity Disclosures - What Should You Know
In July the Securities and Exchange Commission (SEC) adopted new rules requiring public companies to disclose material cybersecurity incidents. The rules also address corporate strategy, governance, and incident disclosures by public companies. This article briefly highlights some key issues that may impact your organization.
Executive Order (EO) on Artificial Intelligence (AI)
On 30 October 2023, President Biden issued an Executive Order (EO) on the “Safe, Secure, and Trustworthy Development and Use of Artificial Intelligence” (AI). The EO highlights the US government’s sense of urgency to establish common guardrails and rules for developing AI technology safely, given the general lack of competence, collaboration, and effectiveness in the US Congress.
The Scourge of Ransomware in Mergers and Acquisitions
At an accelerating pace, large mergers and acquisitions (M&A) are falling victim to significant cyber attacks. Specifically, ransomware constitutes perhaps the most disruptive, costly, and damaging threats to current M&A transactions. Ransomware attacks can compromise sensitive data, disrupt business operations, and lead to significant financial losses.
Seven Important Data Protection Threats All Organizations Should Track
The data protection industry remains on high alert given an array of known, emerging, and evolving cybersecurity challenges. Increasingly advanced cyberattacks including malware, phishing, new uses of machine learning (ML) and artificial intelligence (AI) continue to jeopardize the vital data and assets of small and medium-sized enterprises (SMEs), large companies, governments, and individuals.
The New EU-US Data Privacy Framework (DPF): Third Time's a Charm, or a Habit?
On 10 July 2023, the European Commission issued its latest adequacy decision; namely, the European Union - United States Data Privacy Framework (EU-US DPF). Once again, the US is adequate … for now. After a couple years of drafting and negotiating, welcome to the third round of the epic EU-US trans-Atlantik data flow saga!