Security news aggregator

Latest coverage for Privacy

Privacy concerns how laws and norms govern personal data, shaping cybersecurity duties for collection, storage, access, and disclosure.

11 headlines in this view

Refine the feed

Search across headline titles and summaries.

Tag briefing

Background for this topic.

Privacy is the ability of people to control how information about them is collected, used, retained, and disclosed. In technical and legal contexts, it covers identifiable data and data that can support inferences about a person, not only information made public. Privacy rules and organizational policies commonly address purpose, transparency, access, correction, retention, and sharing.

For security practitioners, privacy depends on reducing unnecessary data and restricting legitimate access: data minimization, encryption, least-privilege controls, segregation of identifiers, retention limits, and audit logs all reduce exposure. Compromised credentials, misconfigured storage, excessive telemetry, or third-party access can reveal sensitive information; pseudonymized datasets may also be re-identified when combined with other data. During an incident, teams must establish what personal data was accessed or disclosed, contain further exposure, preserve evidence, and meet applicable notification and handling requirements.

Showing 11 most recent headlines Filtered view
Bank Info Security 1 year, 5 months ago

Catholic Hospital Chain: 2023 Hack Affected Nearly 900,000

Midwest Chain Also Faces Multiple Federal Data Privacy LawsuitsA Midwest chain of doctor practices and 13 Catholic hospitals has reported that a 2023 hacking incident that disrupted its IT system for several days and may have compromised the sensitive data of nearly 900,000 people. The group is also facing an assortment of data privacy lawsuits.

Governments Are Skeptical of Chinese A1 Platform's Data Security ControlsCountries across Asia are racing to ban government officials, national agencies and critical infrastructure organizations from using Chinese artificial intelligence company DeepSeek's open-source chatbot application, citing data security and privacy risks.

Bank Info Security 1 year, 5 months ago

Will DOGE Access to CMS Data Lead to HIPAA Breaches?

Experts Cast Nervous Eye on Musk and Team's Handling of Health-Related InfoPrivacy experts are keeping a nervous eye on the potential for compromises involving Americans' health and personal information resulting from the White House's Department of Government Efficiency - led by Elon Musk - accessing government IT systems containing Medicare and health related data.

Krebs on Security 1 year, 5 months ago

Experts Flag Security, Privacy Risks in DeepSeek AI App

New mobile apps from the Chinese artificial intelligence (AI) company DeepSeek have remained among the top three "free" downloads for Apple and Google devices since their debut on Jan. 25, 2025. But experts caution that many of DeepSeek's design choices -- such as using hard-coded encryption keys, and sending unencrypted user and device data to Chinese companies -- introduce a number of glaring security and privacy risks.

Analyst Allie Mellen on Open-Source AI Adoption, Vendor Considerations, Data RisksAI adoption is accelerating across security operations, but DeepSeek has introduced security, privacy, and geopolitical risks that organizations should carefully assess. Forrester's Allie Mellen shares advice on AI adoption by cybersecurity, third-party risks and data protection.

Bank Info Security 1 year, 5 months ago

DeepSeek Blocked In US Federal Agencies

Security Concerns, Chinese Ownership Drive ConcernsU.S. federal agencies and corporations with ties to the government are blocking employees from using Chinese chatbot DeepSeek over security and privacy concerns. China could potentially use DeepSeek AI models to spy on American citizens, acquire proprietary secrets and conduct influence campaigns.

At the Same Time, the Total Number of Breach Notifications to Consumers IncreasedThe total amount of annual fines imposed by European privacy regulators fell in 2024 for the first time since the EU's pioneering data protection law came into effect, even as the number of data breach notifications continued to increase, report legal privacy researchers.

Australian government staff mixed medical info for folk who share names and birthdays Australia’s privacy commissioner has found that government agencies down under didn’t make enough of an effort to protect data describing “digital doppelgangers” – people who share a name and date of birth and whose government records sometimes contain data describing other people.…