Canada’s largest energy company said it “believes” the information it lost to hackers was limited to customers’ names and the #information they “may have provided” since joining the program. Ah, the power of belief! Well, let’s just have a look, shall we? A quick search reveals that the Petro-Points program…

Big, positive news for public education and parents: “This order makes clear that ed tech providers cannot outsource compliance responsibilities to schools, or force students to choose between their #privacy and #education”. Kudos to the Federal Trade Commission for standing up for chidren’s right to privacy and offering much-needed guidance…

According to the Federal Trade Commission, “Amazon’s history of misleading parents, keeping children’s recordings indefinitely, and flouting parents’ deletion requests violated COPPA and sacrificed privacy for profits”. Click to read the referenced article: Amazon to pay over $30 million to settle claims Ring, Alexa invaded user privacy : NPR So how did “the everything store” get away with a “disregard for #privacy and security that exposed consumers to #spying and harassment”…

Nova Scotia is advising over 100,000 victims that their #personalinformation was taken as a result of a “global #cybersecurity issue”, #Ontario recently informed some 360,000 residents about the #breach of their private data, and other provinces are facing similar challenges of #incident detection, impact assessment and #fraud prevention. …

Why would anyone want to gain access to your company’s ChatGPT accounts? Because they know that in the absence of regulation and policy enforcement, users are likely to enter sensitive #information, intellectual property details, #personal data and strategically important information. #ChatGPT saves this data in chat logs by default, giving thieves…

A gentle reminder that while #voiceprint technology was dubious from the get-go, is has of late been firmly discredited by #security professionals and researchers around the world. …

Ever lost an important email? I know! It totally sucks, doesn’t it? Click to read the referenced article: JPMorgan fined $4 million by SEC for deleting 47 million emails | CNN Business JPMorgan Chase, a company that recently allocated $12 Billion to upgrading its #cybersecurity and claims to spend hundreds of millions per year on #dataprotection, has “a c c i d e n t a l l y”…

How can public education institutions prevent the loss of children’s data? Avoid collecting it in the first place and require #edtech vendors to purge it annually from their entire supply chain. It sounds sensible, but it’s easier said than done in our post-pandemic world. Click to read the referenced article: Students’ psychological reports, abuse allegations leaked by ransomware hackers (nbcnews.com)

Consent grab is easier to spot than people think. Let’s learn by example. Data grifters have learned to swindle their audiences out of mountains of data by hiding in plain sight and using verbose, often contradictory statements in their “privacy policies”. Their hope is to confuse, disarm and hopefully exhaust…