The Washington Post has confirmed that it was among the organizations affected in a broader hacking campaign exploiting vulnerabilities in Oracle’s E-Business Suite, a set of corporate software tools widely used to manage HR systems, business operations, and sensitive internal data.
Australia’s privacy and information rights regulator says it made meaningful strides in enforcement, transparency, and public trust over the past year, according to the Office of the Australian Information Commissioner’s (OAIC) newly released Annual Report for 2024–25.
The Federal Energy Regulatory Commission (FERC) has released an updated set of “Lessons Learned” from Commission-led audits of the Critical Infrastructure Protection (CIP) Reliability Standards, offering a clearer picture of where compliance programs are improving and where common gaps are still appearing across the electric sector.
The Danish Data Protection Agency (Datatilsynet) and the Confederation of Danish Industry (DI) have opened a constructive dialogue on how to make GDPR compliance less of a bureaucratic burden and more of a workable reality for businesses.
More than thirty privacy and data protection authorities around the world have launched a coordinated investigation into how websites and mobile apps used by children handle their personal data. The initiative is part of the 2025 Global Privacy Enforcement Network (GPEN) Sweep, running from November 3 to 7, 2025.
Claims that nearly a tenth of Gmail users had their passwords stolen spread quickly across social media this week, prompting Google to step in with an unambiguous response, stating there was no Gmail data breach.
An international forum hosted in Paris this spring brought together more than 450 participants to scrutinize how the EU’s landmark data protection law, the General Data Protection Regulation (GDPR), is shaping innovation, competition, and economic outcomes across Europe and beyond.