_Design_Pics_Inc_Alamy.jpg?disable=upscale&width=1200&height=630&fit=crop)
December 3, 2024 at 08:39AM
Researchers warn that the GDPR’s data portability regulations, while promoting privacy, pose significant risks. Users can now easily export sensitive data, making it vulnerable to hackers. The risk extends to companies, as compromised personal accounts can lead to cyberattacks. Employees must separate personal and professional online activities to enhance security.
### Meeting Takeaways:
1. **Risks from GDPR and Data Portability**: Researchers are raising concerns about the General Data Protection Regulation (GDPR) and its implications for data portability, highlighting significant risks to individuals and companies.
2. **Increased Vulnerability to Cyberattacks**: The ability for users to export their data opens doors for hackers. Previously, sensitive data was secured in data centers; now, it can be accessed through cloud mechanisms.
3. **The “White FAANG” Attack**: CyberArk’s Lior Yakim warns of attacks on sensitive information from major tech companies (Facebook, Amazon, Apple, Netflix, Google) due to the ease of exporting data.
4. **Extent of Data Collection**: Companies like Meta and Google track extensive user data beyond documented activity, including search histories and interactions, which can be exploited by attackers.
5. **Ineffectiveness of Common Protections**: While multifactor authentication (MFA) is a common security measure, it can be bypassed, leading to potential data breaches.
6. **Impact on Employers**: Attacks on individuals can directly affect companies, as individual accounts may contain sensitive corporate data, leading to various cyberattack scenarios.
7. **Survey Findings**: CyberArk’s survey revealed that 63% of employees use personal accounts on work computers, and 80% access work applications from personal devices, increasing security risks.
8. **Call to Action for Employees**: Employees must distinguish between personal and professional accounts online to mitigate security risks, as personal accounts generally have less security than corporate accounts.