RT @TheRegister: 1 von 8 Arbeitnehmern hält den Verkauf von Arbeitszugangsdaten für völlig akzeptabel.

mehr auf Arint.info

#Cybersecurity #DataProtection #EmployeeAwareness #ITSecurity #WorkplaceSafety #arint_info

https://x.com/TheRegister/status/2052086553850331357#m

Apparently, data brokers can't just do what they want.

Two years ago, I filed a complaint against a data broker who was selling my data without telling me. Now, the Austrian data protection authority followed my complaint and ruled that - despite the data broker's numerous claims to the contrary during the proceedings - they have to be transparent and should have given me proper information.

Although I expect them to appeal the decision, this is a win for now!
--
#privacy #DataProtection #GDPR

"As AI increasingly takes over the work of modern programmers, the cybersecurity world has warned that automated coding tools are sure to introduce a new bounty of hackable bugs into software. When those same vibe-coding tools invite anyone to create applications hosted on the web with a click, however, it turns out the security implications go beyond bugs to a total absence of any security—even, sometimes, for highly sensitive corporate and personal data.

Security researcher Dor Zvi and his team at the cybersecurity firm he cofounded, RedAccess, analyzed thousands of vibe-coded web applications created using the AI software development tools Lovable, Replit, Base44, and Netlify and found more than 5,000 of them that had virtually no security or authentication of any kind. Many of these web apps allowed anyone who merely finds their web URL to access the apps and their data. Others had only trivial barriers to that access, such as requiring that a visitor sign in with any email address. Around 40 percent of the apps exposed sensitive data, Zvi says, including medical information, financial data, corporate presentations, and strategy documents, as well as detailed logs of customer conversations with chatbots."

https://www.wired.com/story/thousands-of-vibe-coded-apps-expose-corporate-and-personal-data-on-the-open-web/

#CyberSecurity #VibeCoding #DataProtection #Privacy

"The EU’s leadership is now on a precipice. Our push for digital sovereignty was driven by concern that the US Cloud Act might give the US administration access to US-owned data centres in Europe. Yet, today the European Commission is considering a deal with the US authorities to share the personal data of European citizens in exchange for the continuation of visa-waiver scheme.

This is not diplomatic negotiation; it is a fundamental test of Europe’s backbone. If digital sovereignty is to mean anything, declarations and investment aren’t enough. It must be a reality in practice.

The illusion of reciprocity
The European Data Protection Supervisor (EDPS) has been clear in arguing that the European Commission should refuse this deal because the agreement is not truly reciprocal.

In the world of international diplomacy, a deal implies a fair exchange. But under the framework being discussed, European citizens data would flow toward US law enforcement and intelligence agencies without equivalent protections or access for Europeans in return.

When we talk about sharing data with US authorities, we are talking about the intimate details of European lives being subjected to a legal system that does not recognise the values and protections of the European Charter of Fundamental Rights."

https://euobserver.com/214498/why-europe-must-refuse-the-data-sharing-deal-with-the-us/

#EU #USA #DataSharing #Privacy #DataProtection

#privacy #VibeCoding #cybersecurity #DataProtection

https://www.axios.com/2026/05/07/loveable-replit-vibe-coding-privacy

REVEALED: Serious and widespread cyber security issues with Europol’s Computer Forensic Network with many users having admin rights.

"These findings might indicate that there are insufficient safeguards to prevent unauthorised personnel from accessing and modifying data” as well as malicious actors.

🗣️ @jim, ORG Exec Director.

Find out more ⬇️

https://www.computerweekly.com/news/366642525/They-protect-the-law-while-breaking-it-Inside-Europols-shadow-IT-system

#europol #dataprotection #data #cybersecurity

Legacy Security Tools Hinder Data Protection Efforts

With data constantly moving across cloud and AI environments, traditional security tools are holding you back from truly protecting your data - it's time for a modern approach. A staggering 72% of security professionals agree that data security is more critical than ever, making an evolution in strategy urgent.

https://osintsights.com/legacy-security-tools-hinder-data-protection-efforts?utm_source=mastodon&utm_medium=social

#DataSecurity #CloudSecurity #AiSecurity #EmergingThreats #DataProtection