Hello Friends,
The IT ministry via the Indian Computer Emergency Response Team (CERT-In), has issued a “high severity” advisory for those using Apple products like iPhone, MacBook, Watch, and Apple TV as well as browsers like Google Chrome and Microsoft Edge.
In multiple vulnerability reports published on Dec 14th, 2021, CERT-In said that several vulnerabilities have been found in the aforementioned products and solutions, which can be exploited by a cyber attacker.
The Cert-in vulnerability report has also provided solutions to fix these vulnerabilities.
Cert-in Vulnerability Note – Google Chrome
Cert-in Vulnerability Note – Apple Products
Cert-in Vulnerability Note – MS Edge
This news and more, in this fortnights' Data Privacy Insights- curated privacy news from across the globe.
Enjoy reading!
Indian Parliament Likely to Consider PDPB Dec. 21
Indian Parliament is expected to table a Joint Parliamentary Committee's final report on the Personal Data Protection Bill and consider the proposed law on Dec. 21 ahead of the end of its current legislative session on Dec. 23. After the report is tabled in the Parliament the Bill will be taken up for discussion and subsequently be enacted as legislation after being cleared from both the houses.
Report: 67% Of Small US Businesses Don't Have Incident Response Plan
According to a report by Shred-it, the information security service provided by Stericycle, 63% of C-level executives and 67% of small businesses in the U.S. do not have an incident response plan. With 75% of large U.S. businesses surveyed stating they have experienced a data breach, incident response plans can no longer be considered optional.
CNIL Issues New Cookie Compliance Notices
France's data protection authority, CNIL has issued approximately 60 cookie compliance notices and 30 new orders to organizations for not offering users the ability to refuse cookies as easily as accepting them. Recent investigations found cookies subject to consent automatically put in place without user consent and non-compliant information banners with cookies despite user refusal.
China Bans Apps Over PIPL, DSL Violations
China's Ministry of Industry and Information Technology ordered 106 mobile applications to be removed from app stores over violations of the Personal Information Protection Law and Data Security Law. Following an investigation and prior scrutiny, the MIIT found the companies hadn't come into compliance with data collection requirements under the law
Govt Warning: Update Your Apple iPhone, MacBook, Watch Immediately. Here's How to Fix Issues
The IT ministry via the Indian Computer Emergency Response Team (CERT-In), has issued a “high severity” advisory for those using Apple products like iPhone, MacBook, Watch, and Apple TV. CERT-In is advising users to update to the latest software version as several security issues have been found in Apple products. Not updating to the latest version may lead to your iPhone or other Apple devices getting tracked or some malware may get pushed remotely.”
Using Google Chrome Browser? Govt Has a Warning. Here's How to Fix Issues
The government's Computer Emergency Response Team (CERT-In) flagged the vulnerabilities in Google Chrome, asking users to update the browser to the latest version as soon as possible. Cyber attackers can exploit these security issues and install malware, it said.
UAE issues first Federal sector-wide Data Protection Law
On 27 November 2021, the UAE published the long-awaited UAE Personal Data Protection Law, Federal Law 45 of 2021 on Personal Data Protection (the ”Law”). The development signifies a landmark in the evolution of the UAE’s regulatory framework and lays the foundation for the modernization of the economy and digitization of the country’s growth sectors
Saudi Arabia Issues New Personal Data Protection Law
The Kingdom of Saudi Arabia has recently issued its first comprehensive national data protection law. The Personal Data Protection Law will enter into force on March 23, 2022 and regulates the collection, processing, and use of personal data in the Kingdom.