Security News

Google on Wednesday announced plans to bring its Privacy Sandbox initiatives to Android in a bid to expand its privacy-focused, but also less disruptive, advertising technology beyond the desktop web. "The Privacy Sandbox on Android builds on our existing efforts on the web, providing a clear path forward to improve user privacy without putting access to free content and services at risk," Anthony Chavez, vice president of product management for Android security and privacy, said.

If the British government fails to persuade the tech titans to back away from implementing end-to-end encryption in messaging apps then its next tactic will be to try to mobilize public opinion against it by claiming the technology puts society in moral peril. The public probably doesn't like the idea of abusers hiding behind encryption, but many folks are equally suspicious of the government's motives.

Google plans to extend its rework of web ad technology - the optimistically named Privacy Sandbox - to Android devices in an effort to limit the misuse of data in its mobile ecosystem. It began to take shape a year after Google undertook Project Strobe, a rethink of Google Account and Android data access in the wake of ongoing security and privacy problems.

Data privacy, the process of collecting, storing, managing and sharing access to data with third parties, is a crucial factor in ensuring business success. A KPMG report last August revealed that "62% felt that their companies should do more to protect customer data" and "86% of [consumers] said they feel a growing concern about data privacy, while 78% expressed fears about the amount of data being collected. Some 40% of the consumers surveyed don't trust companies to use their data ethically, and 13% don't even trust their own employers."

The latter is owned by the employer and we adjust our expectations of privacy accordingly. These won't always prevent privacy compromise through data leakage, though - such as when we become the victim of a colleague sending an email to the wrong recipient.

Meta Platforms has agreed to pay $90 million to settle a lawsuit over the company's use of cookies to allegedly track Facebook users' internet activity even after they had logged off from the platform. The social media company will be required to delete all of the data it illegally collected from those users.

The format is simple: we propose a motion, the arguments for the motion will run this Monday and Wednesday, and the arguments against on Tuesday and Thursday. Security pro Dave Cartwright is our first contributor arguing AGAINST the motion.

Imperva fellow explains why data privacy is about much more the breaches and just knowing where your data is. I could be a network firewall and say, "By protecting your network, I'm protecting your data. Therefore, I do data security." The same thing would be true of encryption or, even more specific, technologies like tokenization or pseudo-anonymization or all of these things to hide your data in certain ways, all of these are data security and trying to protect data.

Officials from the EU and US are nearing a solution in long-running negotiations over transatlantic data sharing. Previous legal arrangements for sharing data between the two jurisdictions, the so-called Privacy Shield, were struck down by the EU Court of Justice in what became known as the Schrems II ruling in 2020.

A research from ISACA explores the latest trends in enterprise privacy - from privacy workforce and privacy by design to privacy challenges and the future of privacy. The report highlights the persistent understaffing that is impacting enterprise privacy teams.