Just as corporations are finally getting serious about the EU’s imminent General Data Protection Regulation (GDPR), comes news of a data breach of staggering proportions involving credit-rating giant Equifax. To get an idea of just how seriously the new regime will impact you, let’s put the massive Equifax breach under a microscope ‒ as it actually happened, and as it would be treated under the GDPR.
Identity theft and the financial damage it can cause is incredibly stressful for those affected. I’ve been a victim myself: a past employer handed over all of the company’s W2’s for current and past employees, so Social Security numbers, addresses, salaries…all handed over to a phishing scam. That was bad—and has happened to millions of individuals—but ransomware that holds data hostage can be so much worse – especially in the case of WannaCry, where the broad range of organizations targeted included universities, telecommunications companies, utilities and, notably, 20% of the UK’s National Health Service. Unhealthy Ransomware Hospitals and healthcare providers.
When people think of securing data, their thought process usually begins and ends with encryption. Encryption is a great start but it is certainly not the end of an organization’s journey to properly secure their data. Along the long road to achieving security greatness should come a stop for talks about compliance. In this blog, I will take you on a quick journey about what is commonly needed for compliance with a cloud storage solution. There are many different regulatory rules out there that organizations are using. For example, HIPAA is a set of security rules and safeguards that must.