Hopes for better privacy protection in CISA depend on conference committee reconciliation

Privacy advocates and industry groups oppose the new legislation for many of the same reasons that led to the demise of the Cyber Intelligence Sharing and Protection Act (CISPA), but in the wake of a seemingly unending string of major data breaches and cyber intrusions, it appears likely that Congress will get a bill to the the president for signature.

European Court ruling invalidates Safe Harbor

The ruling is implicitly a declaration that, by permitting access to European citizens’ personal data by the NSA or other government agencies that most certainly do not adhere to core EC privacy principles, the U.S. violates the onward transfer principle and essentially negotiated the safe harbor framework in bad faith.

T-Mobile customers suffer breach because company relied on Experian

The breach highlights the general insufficiency of any corporate security program that fails to carefully consider the risk exposure represented by trusted third parties given access to or custody of sensitive information.