GDPR & Consent

GDPR and Consent (1)

The deadline for compliance with the General Data Protection Regulation (GDPR) is approaching fast: May 25th, 2018 is when enforcement will begin.

Be sure to read Centry’s GDPR Guide for a concise, easy-to-read breakdown of what GDPR is and important details of what you need to know about it.

For any questions or comments, feel free to contact us at info@centry.global or on any of our social media outlets. We’re here to help you!

 

Orbitz Data Breach

pexels-photo-91217

If you made travel plans with Orbitz or Amex Travel between 2016 to 2017, you might want to keep a close eye on your card statements.

This week, the Expedia-owned travel planning company, Orbitz, announced that it had discovered a potential data breach that may have compromised information tied to 880,000 credit cards. Hackers may have been able to access consumer data submitted between Jan. 1, 2016 to June 22, 2016 on the company’s legacy platform.

Partner platform Amextravel.com was also affected, linked to purchases made between Jan. 1, 2016, and Dec. 22, 2017.

The compromised data includes names, dates of birth, postal and email addresses, gender, and payment card information of customers who submitted such information in those specified time periods. Orbitz stated that they do not yet have any “direct evidence” that this information was stolen, but it was certainly put at risk. The company has said that it has been notifying customers who may have been impacted by the breach, and it is offering a free year of credit monitoring to affected U.S. customers.

In a statement, Orbitz described working with a forensic investigation firm, cybersecurity experts, and law enforcement once the breach was discovered, on March 1st, in order to “eliminate and prevent unauthorized access to the platform.”

In the meantime, Orbitz has set up a website for US customers to find out more about the breach and whether their information may have been compromised. Individuals that enter their name and email address into the form requesting additional protection will be directed to a confirmation page and emailed a redemption code from orbitz@allclearid.com. Orbitz asserts that the AllClearID website will be the company’s primary platform for communication on the protective services they are offering.  

If you are worried about your information being compromised, ensure that you review payment card statements carefully and call your bank if there are any suspicious transactions. Similarly, be aware of phone calls or emails that offer identity theft protection – these may be phishing scams to steal your information while you’re vulnerable.

For more content like this, follow us on Twitter @CentryLTD!

A Closer Look: Revived Corruption Charges Against Zuma

In a televised address, Mr. Shaun Abrahams, the national director of public prosecutions at the National Prosecuting Authority (NPA) in South Africa, announced that he would be reviving 16 charges against the former South African President, Mr. Jacob Zuma. These include 12 charges of fraud, one of racketeering, two of corruption, and one for money laundering.

jacob-zuma-4-620x434

The charges are related to an incident in the late 1990s, when Mr. Zuma allegedly accepted bribes during a $2.5 billion arms deal between the government and a French weapons supplier. He was indicted at the end of 2007 on a range of charges associated with the deal, but the NPA dropped them in 2009, thus clearing Mr. Zuma’s path to the presidency. Then, in Autumn 2017, while Mr. Zuma was still in office, South Africa’s Supreme Court of Appeal upheld a ruling to reinstate the charges, and condemned the 2009 decision to drop them.

In 2014, Mr. Zuma was accused of using tax payer money to pay for upgrades to his rural residence, including a swimming pool, amphitheatre, and cattle pen.

Mr. Zuma resigned from his post in February under considerable pressure from the ruling African National Congress (ANC) party. The ANC has since affirmed its confidence in the country’s criminal justice system, and cautioned that Mr. Zuma has the right to be presumed innocent until and if proven guilty.

Mr. Abrahams said that there are “reasonable prospects of successful prosecution of Mr. Zuma on the charges listed in the indictment.”

This is but the latest in a series of reckonings against corruption in South Africa. Other avenues have included an impending judicial commission of inquiry into state capture. Implications in a 2016 watchdog report alleged that the Gupta family, billionaire friends of Mr. Zuma, used connections to him to win state contracts and influence cabinet appointments. State capture refers to a type of systemic political corruption, in which private interests significantly influence a state’s decision-making processes.

Additionally, there are at least three separate parliamentary inquiries into corruption at state-owned enterprises ongoing in Parliament. A spokesperson for the NPA said there are hundreds of files related to state capture across state-owned enterprises and provincial governments– asset forfeiture will be primarily used as the first step toward addressing corruption across the public sector.

Further reading on red flags associated with state-owned enterprises may be found here on Centry Blog.  

For more content like this, follow @CentryLTD on Twitter! If you have any questions or comments, feel free to reach us on any of our social media platforms.

4 Social Media Risks to Businesses

pexels-photo-267350

Over the years, social media has evolved into a critical marketing and customer relations tool for businesses. Between audience-targeted ads and personal engagement, social media can be unparalleled in bringing organizations closer to their customers and clients. 

What about the Risks?

In this post, we’ll address some of the most common risks that businesses can encounter with their social media profiles.

1. Human Error

Whether it’s an accidental tweet, falling for a phishing link, or coming off rude to a customer, employee conduct on these social platforms can pose a significant risk to an organization’s reputation.

This also extends to situations concerning the individual, especially as it relates to personal accounts of an organization’s employees, where they may talk about work-related information that could lead to things like reputation damage or privacy violations.

2. Inattention & Neglect

Loosely covered under the umbrella of human error is neglect or inattention to a social media profile. If there is nobody in charge of managing your organization’s social  profiles, the accounts may be at risk of being infected by a virus – especially if that virus is one that sends spam. It could cost you followers, and otherwise lead into an adverse perception of your company’s brand.

3. Phishing Attempts

Whether it’s a fake Facebook friend or a bot on Twitter, there is always the ever-present risk of falling for phishing scams across different platforms. In this context, ‘phishing’ refers to any kind of fraudulent communication or links intended to trick people into giving up sensitive information.

Related Reading: For some examples of the unique ways phishing attempts shape around the platforms that they use as vehicles, check out our article Hook, Line, and Sinker: Phishing on Social Media.

4. Brand Impersonators

Following on the heels of phishing scams, another risk that businesses may run into on social media is that of impersonators. Seeking to capitalize on vulnerable clients and customers, some malicious entities may impersonate a well known brand to trick people into clicking bad links or handing over their passwords. Additionally, attackers may purchase website domain names that are either similar to your company’s or negative in context to it. 

Related Reading: For a case study on an example of this type of impersonation, feel free to check out our article on the Netflix Phishing Scam.  

For questions and comments on this article, please feel free to reach out to us @CentryLTD on Twitter!

 

Hidden Sanctions Risk: North Korean ties to Africa

5556513069_2b114ff393_o

Dozens of sculptures, monuments, and buildings in countries such as Senegal, Namibia, Democratic Republic of Congo, Zimbabwe, Mozambique, and Botswana were built by Mansudae Overseas Projects, which is a construction company based out of Pyongyang in North Korea. 

Most of these projects are war memorials or other dedications to the respective nations’ struggles for independence. To give perspective, the following is just a few examples of some of the monuments that were built by Mansudae.

  • Senegal: African Renaissance Monument
    • The African Renaissance Monument is a nearly 50-meter tall bronze statue overlooking the Atlantic. It was dedicated on April 4th, 2010, which is Senegal’s “National Day” to commemorate the 50th anniversary of the country’s independence from France.
  • Namibia: Heroes’ Acre
    • The Heroes’ Acre was opened on August 26th, 2002 in the hills south of Windhoek as a token of honor to those who “…made great and meaningful contributions to the liberation of the Land of the Brave…” (Source)
  • Democratic Republic of Congo: Laurent Kabila
    • This statue commemorating Laurent Kabila was reportedly built by Mansudae. Kabila was a Marxist revolutionary who served as the third President of the Democratic Republic of Congo, when he overthrew Mobutu Sese Seko.
  • Zimbabwe: Joshua Nkomo statue
  • Zimbabwe: National Heroes Acre
    • The Heroes’ Acre in Zimbabwe commemorates the fallen veterans of Zimbabwe’s war for independence. Its design closely mirrors that of the Revolutionary Martyrs’ Cemetery just outside Pyongyang, North Korea.
  • Mozambique: Samora Moises Machel
    • A statue of Mozambique’s first president was constructed in 2011 in Maputo, Mozambique. Samora Machel is remembered as a military commander, politician, and revolutionary in the tradition of Marxism-Leninism.
  • Botswana: Three Dikgosi Monument
    • AKA The Three Chiefs, this bronze-cast monument was built in 2005 and features the three leaders (Khama III, Sebele I, & Bathoen I) who traveled to Great Britain in 1895 to ask Joseph Chamberlain and Queen Victoria to separate the Bechuanaland Protectorate from Cecile Rhodes’ British South Africa Company and Southern Rhodesia.

Specifically, the city of Windhoek in Namibia has been referred to as an ‘unlikely testament’ to North Korean industry. Many architectural staples of the city, such as the presidential palace, the national history museum, and the defense headquarters, were built by North Korea, for profit.

Two years ago, the United Nations stated that Namibia had violated U.N. sanctions through its commerial relationship to North Korea. The Treasury Department had sanctioned Mansudae Overseas Projects, as well as the Korea Mining Development Trading Corporation (KOMID), which has come to be known as North Korea’s primary arms dealer. Namibia has since pledged to cut commercial ties to the DPRK, although they did state that they would retain warm diplomatic relations with the regime.

U.N. officials have conducted an investigation into at least seven African countries for sanctions violations concerning North Korea. These countries were also supposed to end their economic and military relationships with North Korea following the sanctions, however the U.N. panel of experts noted that what reporting had occurred was largely poor in quality or otherwise unclear, with a high number of States not reporting altogether.

The connection between Namibia and North Korea stands as but one example among many similar stories. It began in the 1960s, when several African countries started the struggle for independence from colonialism. During this vulnerable time period, North Korea invested time and money in these revolutions, where the political ties eventually grew into commercial relationships.

Now, this has become particularly important as sanctions have mounted against the regime. North Korea has been able to use their commercial ties to African nations like Namibia as financial lifelines– evidence by building infrastructure, and selling weapons and other equipment.

With these concerns in mind, it should be noted that it is important for businesses conducting operations in Africa to ensure that potential commercial partners will not put them at risk for violating sanctions. This risk may be mitigated through due diligence and watch-list screening.

If you or your organization have any questions or thoughts on this, please feel free to reach out to us at Centry. We can help!