Here’s a round-up of interesting reading we found online today*;
The UK Supreme Court has recently overturned decisions of lower Courts and found that a supermarket chain is not vicariously liable for a rogue employee's cyber hack in a data breach class action. On 1 April 2020, in WM Morrisons Supermarkets plc v Various Claimants  UKSC 12, the Supreme Court overturned the Court of Appeal's 2018 judgment to uphold a first instance finding of vicarious liability against Morrisons in respect of its 2014 data leak. Morrisons was the first class action in the United Kingdom dealing with cyber risks and breach of data. Australia: Data breach by a rogue employee: UK supermarket chain not liable in a class action
Outsourcing giant Interserve targeted by a cybersecurity attack. The firm recently supported the NHS in building Birmingham’s Nightingale Hospital. It holds crucial Government contracts for a range of services in prisons, schools and hospitals.
Apple facing data protection probe in Germany over retail store temperature checks. The Hessian data protection agency’s investigation comes after Apple reopened stores across Germany May 11 with extra safety procedures, including temperature checks and social distancing. The office wants to know if the temperature checks violate the applicable data protection rules, Ulrike Muller, a spokesperson for the Hessian Data Protection Commissioner, said. There are no results yet from the probe and the office is coordinating with other German data protection authorities, Muller said.
Australian organisations can address data protection challenges by creating roles such as a data governance lead, classifying data and improving employee awareness of cyber hygiene. The number of data breaches continues to grow in Australia, underscoring the need for local companies to shore up their data protection practices amid mounting cyber attacks.
Data breaches and security incidents are becoming increasingly costly. Canadian lender Desjardins Group recent revealed it had spent C$70 million (US$53 million) in the wake of a breach earlier in the year that exposed the personal information of 2.9 million members. The average cost of a data breach has risen to $3.92 million, according to a new report from IBM and the Ponemon Institute.
Netwrix, a cybersecurity vendor that makes data security easy, today announced additional findings from its 2020 Data Risk & Security Report. The report reveals that many educational organisations are at risk of data security incidents during the current period of working from home and virtual learning. Netwrix survey reveals that employees at 54% of educational organisations use cloud applications to share sensitive data outside of IT control and knowledge
Heidi Parthena White Director of Marketing, Security Engineered Machinery blogs on InfoSecruity-Magazine “Not If’ but ‘When’. Cyber-Related Data Breaches are Becoming More Destructive…and More Expensive Waiting for the Inevitable: Physical IT Assets and the Failure to Destroy End-of-Life Data
Good post on contract tracing in Dark Reading. Privacy vs. Public Health Governments could use or access mobile phone location information without user consent. The drawback of this is clear: If governments can justify accessing this data in this circumstance, in what other contexts might they also unilaterally decide to use it after COVID-19 has passed?
Project highlights ‘urgent need’ for UK transport cyber-security centre. ResiCAV – delivered by a consortium comprising HORIBA MIRA, Thales, BT, WMG at the University of Warwick, the Centre for Modelling & Simulation (CFMS), Oxfordshire County Council, AESIN Techworks, University of South Wales, University of Bristol, Coventry University and the National Digital Exploitation Centre (NDEC) – has explored the feasibility of creating a UK Cybersecurity ‘Centre of Excellence’ to detect, understand and respond to emerging cyber-security threats in real-time across the mobility ecosystem.
MINSK, 12 May (BelTA) – Work is in progress on a joint statement by the CIS heads of state on cooperation in international information security. Belarus has supported the draft statement initiated by Russia, Belarus' Minister of Foreign Affairs Vladimir Makei said as he addressed the CIS Ministerial Council video conference, BelTA learned from the press service of the Ministry of Foreign Affairs.
*These sites aren’t affiliated with GDPR Community and these aren’t an advertisement, they’re simply site’s we’ve thought the community might have an interest in reading.