The European Union (EU) wants to send a clear message to companies that it’s serious about data privacy, suggesting it will still slap fines on data breaches that happen even before the EU General Data Protection Regulation (GDPR) takes effect in late May if companies don’t disclose them first.
There’s more on data discovered in an online breach by AggregateIQ: information tying the obscure Canadian company to pro-Brexit organizations and their activities in the United Kingdom.
The fitness gear maker Under Armour said on Thursday that a breach of its MyFitnessPal website in February resulted in the theft of data on 150 million customers.
In this industry perspective, Thomas Hofmann, the Vice President of Intelligence at the firm Flashpoint* warns that the effects of data breaches can often be felt months or years after the actual incident, as stolen data bubbles up in underground marketplaces. He has three pieces of advice for companies that want to develop an incident response plan that mitigates the damage of breaches in the short term and over the long term.
The departure of Facebook Chief Information Security Officer Alex Stamos is just the latest in which the respected security executive clashed with higher ups over the handling of a major data breach.