Cybercriminals are posing as jobs eekers, creating fake LinkedIn profiles and resume sites, to target recruiters and HRmanagers. Once they gain trust, victims are invited to view a resume that appears harmless but secretly delivers aWindows shortcut (.LNK) file….
Posts by Category: Data Protection & Privacy
California Privacy Protection Agency Fines Retailer Over CCPA Violations
The California Privacy Protection Agency (CPPA) fined Todd Snyder, Inc. $345,178 for violating the CaliforniaConsumer Privacy Act (CCPA). The company failed to process consumer opt-out requests for 40 days due to improperconfiguration of its privacy portal, required…
A Job Applicant Can be Deepfaked into Existence in 70 Minutes, Cybersecurity Firm Finds
Cybersecurity firm Palo Alto Networks reports that a fake job applicant can be created in just 70 minutes usingdeepfake technology, posing a significant threat to employers. These AI-generated candidates can deceive hiringmanagers during video interviews, potentially…
Employers Must Be Vigilant to Protect Against Security Risks from Fraudulent Hires
Employers must be vigilant against security risks arising from fraudulent job applications, which can lead to hackersinfiltrating organizations and accessing sensitive data. The FBI has issued warnings about these increasing threats.To mitigate risks, employers should…
Cisco’s 2025 Data Privacy Benchmark Study: Privacy Landscape Grows Increasingly Complex in the Age of AI
Cisco’s 2025 Data Privacy Benchmark Study reveals the evolving landscape of data privacy, with organizations balancing local data storage for security and reliance on global providers for expertise. Conducted across 12 countries, the study highlights the growing…
California Privacy Protection Agency Begins Investigative Sweep into Location Data Collection under CCPA
The California Privacy Protection Agency (CPPA) has launched an investigation into companies’ collection of sensitive location data, including inquiries to advertising networks, mobile apps, and data brokers. The CPPA aims to ensure compliance with the…
Sensitive Data Protections Expand Under Sweeping New DOJ Rules
The U.S. Department of Justice will implement new regulations on April 8, 2025, to protect sensitive personal and government-related data from foreign adversaries. The rules limit data transactions with countries of concern, including China and Russia, aiming to…
Potential for Deepfake Audio, Video to Warp Reality is Building to Crisis Level
Persona’s Q1 2025 fraud insights highlight the growing threat of deepfakes, with financial losses from fraud projected to reach $40 billion by 2027. Generative AI tools like ByteDance’s OmniHuman are enabling realistic deepfakes, making defense strategies…
Key Findings from Oregon’s Consumer Privacy Act Report
Six months into Oregon’s Consumer Privacy Act (OCPA), the Attorney General reports strong consumer engagement and business compliance, but highlights issues with unclear privacy notices, hidden opt-out options, and denials of data deletion requests. The DOJ received…
GDPR: What Impact Has It Really Made During Its First Year?
As we come up on the one-year mark of the GDPR, it makes sense to take stock of what seems to be working well—and what may be working less well. The breach notification plank of the regulation has clearly had a significant impact, while the fining authority has been…