Uncategorised

TalkTalk plays ‘no legal obligation’ card on encryption

Posted on

The 1998 Data Protection Act only implies that companies should consider encrypting sensitive customer information, but no “explicit” obligation is demanded under UK law. It says: Appropriate technical and organisational measures shall be taken against unauthorised or unlawful processing of personal data and against accidental loss or destruction of, or damage to, personal data. However, […]

Uncategorised

Expanded Microsoft Azure support for financial services customers | Microsoft Azure Blog

Posted on

Addition of two more assessments supporting Financial Services plus as a detailed set of Payment Card Industry and Data Security Standard guidance describing Azure and customer shared responsibilities. Along with PCI DSS Level 1 validation and the Center for Financial Industry Information Systems (FISC) assessment, Azure has added two additional assessment milestones supporting Financial Services […]

Uncategorised

Lawmakers move to outlaw security research entirely…

Posted on

This is bigger news than the Safe Harbour agreement being torn up on October 15, Europe will decide on how best to interpret the Wassenaar Arrangement—an agreement between 41 countries that was originally designed to limit the proliferation of physical, military weapons to non-desirables—when it applies to the proliferation of surveillance software, intrusion tools, and […]