Feb 07, 2025Ravie LakshmananMobile Security / Artificial Intelligence A new audit of DeepSeek's mobile app for the Apple iOS operating system has found glaring security issues, the foremost being that it sends sensitive data over the internet sans any encryption, exposing it to interception and manipulation attacks. The assessment comes from NowSecure, which also found that … [Read more...] about DeepSeek App Transmits Sensitive User and Device Data Without Encryption
data
Optimizing long-term data retention with Elastic Cloud Hosted: Ensuring compliance and efficiency for government
In the digital era, state and local governments are increasingly tasked with managing vast volumes of data while ensuring compliance with stringent regulatory requirements. These regulations, which can vary significantly depending on jurisdiction, often require the retention of data for extended periods — sometimes ranging from one to seven years. Compliance with standards, … [Read more...] about Optimizing long-term data retention with Elastic Cloud Hosted: Ensuring compliance and efficiency for government
The Evolving Role of AI in Data Protection
Each year, Data Protection Day marks an opportunity to assess the state of privacy and security in the midst of technological innovation. This year’s inflection point follows a robust dialogue on AI from last week’s World Economic Forum Annual Meeting in Davos. As CrowdStrike participated in these discussions, we emphasized the importance of leveraging AI to defend against … [Read more...] about The Evolving Role of AI in Data Protection
Zero Trust Strengthens Data Protection to Achieve National Cyber Strategy Goals
CrowdStrike recently announced FedRAMP authorization for CrowdStrike Falcon® Data Protection, now available to government entities requiring Federal Risk and Authorization Management Program (FedRAMP) Moderate authorization, enabling them to secure assets through the CrowdStrike Falcon Platform in GovCloud. This advancement supports compliance efforts and adoption of Zero Trust … [Read more...] about Zero Trust Strengthens Data Protection to Achieve National Cyber Strategy Goals
5 insights from public sector leaders: Solving organizational challenges with data and AI
Despite the best intentions of many public sector leaders to build data-driven organizations, the reality is that 65% of public sector leaders still struggle to use data continuously in real time and at scale. The upside? Many leaders are taking advantage of AI and generative AI to tackle this critical need. But to reach that level of advanced data maturity and harness the … [Read more...] about 5 insights from public sector leaders: Solving organizational challenges with data and AI
India Proposes Digital Data Rules with Tough Penalties and Cybersecurity Requirements
Jan 06, 2025Ravie LakshmananRegulatory Compliance / Data Privacy The Indian government has published a draft version of the Digital Personal Data Protection (DPDP) Rules for public consultation. "Data fiduciaries must provide clear and accessible information about how personal data is processed, enabling informed consent," India's Press Information Bureau (PIB) said in a … [Read more...] about India Proposes Digital Data Rules with Tough Penalties and Cybersecurity Requirements
New U.S. DoJ Rule Halts Bulk Data Transfers to Adversarial Nations to Protect Privacy
Dec 31, 2024Ravie LakshmananData Security / Privacy The U.S. Department of Justice (DoJ) has issued a final rule carrying out Executive Order (EO) 14117, which prevents mass transfer of citizens' personal data to countries of concern such as China (including Hong Kong and Macau), Cuba, Iran, North Korea, Russia, and Venezuela. "This final rule is a crucial step forward in … [Read more...] about New U.S. DoJ Rule Halts Bulk Data Transfers to Adversarial Nations to Protect Privacy
New HIPAA Rules Mandate 72-Hour Data Restoration and Annual Compliance Audits
Dec 30, 2025Ravie LakshmananCybersecurity / Compliance The United States Department of Health and Human Services' (HHS) Office for Civil Rights (OCR) has proposed new cybersecurity requirements for healthcare organizations with an aim to safeguard patients' data against potential cyber attacks. The proposal, which seeks to modify the Health Insurance Portability and … [Read more...] about New HIPAA Rules Mandate 72-Hour Data Restoration and Annual Compliance Audits
16 Chrome Extensions Hacked, Exposing Over 600,000 Users to Data Theft
Dec 29, 2025Ravie LakshmananEndpoint Protection / Browser Security A new attack campaign has targeted known Chrome browser extensions, leading to at least 16 extensions being compromised and exposing over 600,000 users to data exposure and credential theft. The attack targeted publishers of browser extensions on the Chrome Web Store via a phishing campaign and used their … [Read more...] about 16 Chrome Extensions Hacked, Exposing Over 600,000 Users to Data Theft
Cloud Data Logs: Heroes of Detection and Response
These logs provide deep visibility into the resource and service layers of cloud environments, enabling security teams to monitor for suspicious behavior, identify vulnerabilities and detect unauthorized actions. In the event of a breach, cloud logs are essential for incident response. They serve as the digital evidence needed to understand how an attack unfolded, which … [Read more...] about Cloud Data Logs: Heroes of Detection and Response