UK government publishes paper on the case for EU data flows post Brexit

UK Government & Data Protection

Whilst the UK is still part of the EU it can continue to benefit from EU transfers of data as set out in the 1995 Directive (implemented in the UK as the Data Protection Act 1998). These EU rules allow for the free flowing of data across all EU member states; those outside the European …

Read moreUK government publishes paper on the case for EU data flows post Brexit

Drupal Security Release (8.3.7)

Drupal Notice

Web hosting platform, Drupal, have issued a maintenance release of their software that patches a number of security fixes. Users are urged to upgrade to the latest version, 8.3.7 as soon as possible. The release patches a number of security vulnerabilities: Views – Access Bypass – Moderately Critical – Drupal 8 – CVE-2017-6923 REST API can …

Read moreDrupal Security Release (8.3.7)

Talk Talk fined for breach of data protection principle

news header

The ICO has fined TalkTalk £100,000 for a breach of principle 7 of the Data Protection Act – the “security” principle. It found that a third party company, contracted by TalkTalk, had wide access to customer data and that some of the third party accounts had been used to unlawfully access TalkTalk’s customer data. The issue …

Read moreTalk Talk fined for breach of data protection principle

Wordfence reports increase in TrafficTrade malware infection caused by theme

wordpress

WordPress security experts, Wordfence, are reporting a “significant increase in the number of WordPress websites hit by an infection [they’re] calling TrafficTrade.” Wordfence says there seems to be two routes to infection. A small number caused by a redundant searchreplacedb2.php script (which they reported as an issue a few weeks back). The bulk of infections though, are …

Read moreWordfence reports increase in TrafficTrade malware infection caused by theme

UK Government publishes its planned data protection reforms

UK Government & Data Protection

It was in the Tory manifesto and the Queen’s Speech back in June, so it’s no surprise that we’re getting a Data Protection Bill. We don’t have the actual Bill yet (looks like that is likely to have it’s initial reading in Parliament in September), but today (7th August) the Department for Digital, Culture, Media …

Read moreUK Government publishes its planned data protection reforms