Home

Some companies that have chosen us

Privacy Officer and Privacy Consultant
CDP Scheme according to ISO/IEC 17024:2012
European Privacy Auditor
ISDP©10003 Certification Scheme according to ISO/IEC 17065:2012
Auditor
According to standard UNI 11697:2017
Lead Auditor ISO/IEC 27001:2022
According to standard ISO/IEC 17024:2012
Data Protection Officer
According to standard ISO/IEC 17024:2012
Anti-Bribery Lead Auditor Expert
According to standard ISO/IEC 17024:2012
ICT Security Manager
According to standard UNI 11506:2017
IT Service Management (ITSM)
According to the ITIL Foundation
Ethical Hacker (CEH)
According to the EC-Council
Network Defender (CND)
According to the EC-Council
Computer Hacking Forensics Investigator (CHFI)
According to the EC-Council
Penetration Testing Professional (CPENT)
According to the EC-Council

Professional qualifications

Stay up-to-date with world news!

Select your topics of interest:

News

Home / News
/
NORWEGIAN SUPERVISORY AUTHORITY: Digital attacks and privacy

NORWEGIAN SUPERVISORY AUTHORITY: Digital attacks and privacy

All companies can be exposed to digital attacks, but did you know that companies are particularly vulnerable during holidays like Easter? We have created a new guide in which we describe some common types of incidents and examine how to safeguard privacy when a company has been exposed to such attacks.

“Public holidays, holiday closures and periods when temporary and potentially inexperienced staff are more common are typical periods when companies are particularly vulnerable to digital attacks. It is therefore extremely important to be aware of the type of staff and routines you have during such periods“, says Veronica Jarnskjold Buer, director of the department for technology, analysis and security at the Norwegian Data Protection Authority.

The motivation and methods behind the attacks vary. So does the severity of the consequences. In the guide, we look at the different types of digital attacks a company may be exposed to and refer to various resources where more information on the different types of incidents can be obtained. We also look at what privacy assessments companies should make if they have been exposed to a digital attack and there is a suspicion of a data security breach.

For example, denial of service attacks and director fraud will generally have a lower risk of serious privacy security breaches, while successful phishing, e-mail and extortion attacks have a high risk of serious breaches.

Read the guidance on privacy management in the case of digital attacks.

https://www.datatilsynet.no/aktuelt/aktuelle-nyheter-2023/digitale-angrep-og-personvern/

Recommended to you

Advanced Research