The government says an overhaul will boost growth and increase trade – but it must be careful not to go too far The government has announced plans to reshape the UK’s data laws such as GDPR requirements in an effort, it claims, to boost growth and increase trade post-Brexit …

Culture secretary says move could lead to an end to irritating cookie popups and consent requests online Britain will attempt to move away from European data protection regulations as it overhauls its privacy rules after Brexit, the government has announced. The freedom to chart its own course could lead …

Will Cathcart claims government officials around the world among 1,400 WhatsApp users targeted in 2019 Senior government officials around the world – including individuals in high national security positions who are “allies of the US” – were targeted by governments with NSO Group spyware in a 2019 attack against 1 …

The Pegasus project has raised new concerns about the Israeli firm, which is a world leader in the niche surveillance market In 2019, when NSO Group was facing intense scrutiny, new investors in the Israeli surveillance company were on a PR offensive to reassure human rights groups. In an …

Guardian editor-in-chief Katharine Viner reflects on our recent investigation into NSO Group, which sells hacking spyware used by governments around the world, and explains why journalism like this is so vital When the Guardian’s head of investigations, Paul Lewis, first told me about a huge data leak suggesting …

Computer equipment and electronic devices seized in connection with images of minister kissing aide Two residential properties in the south of England have been raided by data protection officers, as part of their investigation into who leaked CCTV footage of Matt Hancock kissing an aide in his office. The …

First California. Then Virginia. Now Colorado. Here’s a good comparison of the three states’ laws. [...]

Senior doctors call on colleagues not to share personal data, in effort to buy time to raise awareness of plans Senior GPs have called on colleagues to refuse to hand over patients’ personal data to NHS Digital, in a move they hope will buy time to raise awareness of …

Barn theatre, Cirencester Rachel Redford shines as a student recruited to mess with British heads, in a joint production with the Arcola theatre ‘Who owns your data?” asks Masha, the tortured voice at the centre of this monologue. Issues of data privacy and misuse are being increasingly raised but …

The tech giant says it has security safeguards in place. But these tracking devices can be hacked and put to other nefarious purposes Apple has launched the latest version of its operating system, iOS 14.5, which features the much-anticipated app tracking transparency function, bolstering the tech giant’s …

Excellent Brookings paper: “ Why data ownership is the wrong approach to protecting privacy.” From the introduction: Treating data like it is property fails to recognize either the value that varieties of personal information serve or the abiding interest that individuals have in their personal information even if they choose …

Virginia is about to get a data privacy law, modeled on California’s law. [...]

Genetic testing company with 10 million customers’ data has ‘huge cybersecurity implications’ The genetic testing company 23andMe will go public through a partnership with a firm backed by the billionaire Richard Branson, in a deal that has raised fresh privacy questions about the information of millions of customers. Launched …

It seems to be the season of sophisticated supply-chain attacks. This one is in the NoxPlayer Android emulator : ESET says that based on evidence its researchers gathered, a threat actor compromised one of the company’s official API (api.bignox.com) and file-hosting servers (res06.bignox.com). Using this …

Researchers have been able to find all sorts of personal information within GPT-2. This information was part of the training data, and can be extracted with the right sorts of queries. Paper: “ Extracting Training Data from Large Language Models.” Abstract: It has become common to publish large (billion parameter …

Where did the last month go? Were you able to catch all of the sessions in the Security, Identity, and Compliance track you hoped to see at AWS re:Invent? If you missed any, don’t worry—you can stream all the sessions released in 2020 via the AWS …

This is bad : More than 100,000 Zyxel firewalls, VPN gateways, and access point controllers contain a hardcoded admin-level backdoor account that can grant attackers root access to devices via either the SSH interface or the web administration panel. [...] Installing patches removes the backdoor account, which, according to Eye …