🗂️🚀 FILED Headlines: Pokémon data captured, the FTC targets Marriott, and more concern over what will happen to 23andMe's genetic data
RecordPoint
Giving highly-regulated organizations a competitive edge with safer, more secure, better managed data.
Hi there,
Welcome to FILED Headlines, the weekly edition of the FILED Newsletter focused on the latest, most essential news from the intersection of data privacy, data security, and governance. This week:
🕵️ Privacy & governance
Following on from our newsletter last week, 23andMe is considering a sale, which should concern the 15 million customers who provided it with their genetic data. While the company was focused on customer privacy, a potential buyer may not be, and there are no legal restrictions on the company from using the data in ways customers did not consent to.
US supermarket chain Kroger’s plans to roll out facial recognition tools at its grocery stores have lawmakers concerned it could be exploited to increase the prices certain individuals pay for food and put customers’ personal data at risk.
Nearly 32 million records (110 TB) from customers of golf technology company Trackman were left in a non-password protected database for an undetermined length of time. When a researcher found them, he alerted the company, which sealed off the database but apparently did not inform customers or post any kind of public privacy announcement.
A new AI tool, welcomed by the European Union, has shown major AI tools are falling short of the AI Act’s requirements in areas such as cybersecurity resilience.
🔐 Security
Threat actors have claimed a cyber-attack on Cisco, claiming to have exfiltrated data belonging to major organizations that include major Australian bank NAB, Vodafone, and Microsoft.
The Federal Trade Commission has taken action against Marriott and Starwood, saying lax data security led to three large data breaches.
Pokémon developer Game Freak was hacked, with employee information leaked, along with source code from previous games as well as unused Pokémon designs.
Casio suffered a data breach affecting employees, partners, a limited number of people who interviewed with the company, and "some customers who use services provided by the Company and some of affiliated companies."
Recommended by LinkedIn
National Public Data, the company at the center of possibly the largest data breach in history last month, has filed for bankruptcy.
Microsoft says its customers face 600 million cyberattacks every day. In addition, ransomware attacks and tech scams are on the rise, as are attacks by nation-state hackers.
The Russian military is reportedly pushing for prison sentences of up to 6.5 years for four people linked to the Russian hacking group REvil, in a rare display of law enforcement against domestic hackers.
Research reveals Australian consumers are concerned about AI usage, with 83% of Australians seeing AI as a security risk when it comes to their data.
So, how exactly is AI a security risk? A summary of AI misuse and abuse methods.
📣 The latest from RecordPoint
🎧 Listen
Given the news about the Cisco data breach, we thought this episode with UpGuard's Aaron Spiteri, focused on supply chain risk, might be timely.
📖 Read:
🍁We’re thrilled to announce that Niagara Regional Police Service (NRPS) has selected RecordPoint as its data management solution. NRPS patrols a massive area of more than 1,800 square kilometers, one of Ontario’s largest geographic regions. We’re looking forward to helping them with key data management projects that support this work, including a migration from OpenText Content Server.
🧑⚖️Western Australia's privacy regulation, PRIS, is due to go into effect in June. If you’re responsible for data management of a WA government agency, our guide to preparing for PRIS is essential reading. (If you’re not based in WA but concerned about privacy compliance, read our guide to data privacy compliance.)
That's all from us for this edition of FILED Headlines. We'll be back with more headlines next week. If you'd like more FILED in your inbox or your headphones, subscribe to the monthly newsletter and podcast on the RecordPoint website and check out the full archive for both while you're at it.
Until next week!