This privacy digest highlights critical alerts, including a Chrome zero-day linked to an Italian spyware vendor and CISA’s order to patch a Windows Server flaw. Also covered are NYDFS guidance on third-party service provider risks, EFF’s stance against the UN Cybercrime Convention, and a deep dive into First Wap’s global surveillance operations. Stay informed on the latest threats and regulatory actions.
Top 5 Critical Privacy Alerts
- Italian spyware vendor linked to Chrome zero-day attacks: Malware linked to Memento Labs exploited a Chrome zero-day. Read more
- CISA orders feds to patch Windows Server WSUS flaw used in attacks: CISA mandates patching a critical Windows Server vulnerability exploited in attacks. Read more
- NYDFS Issues Guidance on Managing Risks Related to Third-Party Service Providers: NYDFS outlines guidance on managing risks from third-party service providers. Read more
- Joint Statement on the UN Cybercrime Convention: EFF and Global Partners Urge Governments Not to Sign: EFF urges governments not to sign the UN Cybercrime Convention due to human rights concerns. Read more
- First Wap: A Surveillance Computer You’ve Never Heard Of: Surveillance firm First Wap’s phone-tracking empire extends globally. Read more
Privacy Laws & Regulations
- EU Member States Begin Rolling Out New Product Liability Rules: EU states update product liability laws to align with the new Product Liability Directive. Read more
- European Commission Publishes Apply AI Strategy to Accelerate Sectoral AI Adoption Across the EU: The EU Commission releases its AI Strategy to boost AI adoption across sectors. Read more
Data Minimization & User Consent
- Opt Out October: Daily Tips to Protect Your Privacy and Security: EFF shares daily tips on opting out of tech giants’ surveillance. Read more
