Daily Digest | 3 March 2026

CELEX:52026DC0097: Proposal for a COUNCIL RECOMMENDATION on a European Union framework for science diplomacy
EUR-Lex | AI Act | EN
https://eur-lex.europa.eu/legal-content/AUTO/?uri=CELEX:52026DC0097

The President of the European Commission and the President of the Swiss Confederation sign a broad package of EU-Swit...
European Commission Press Corner
https://ec.europa.eu/commission/presscorner/detail/en/ip_26_505

At a Glance - Copyright and generative artificial intelligence – Opportunities and challenges - 02-03-2026
Documents - Think Tank - European Parliament
https://www.europarl.europa.eu/thinktank/en/document/EPRS_ATA(2026)782674

Madison Square Garden Data Breach Confirmed Months After Hacker Attack
SecurityWeek RSS Feed
https://www.securityweek.com/madison-square-garden-data-breach-confirmed-months-after-hacker-attack/

New Chrome Vulnerability Let Malicious Extensions Escalate Privileges via Gemini Panel
The Hacker News
https://thehackernews.com/2026/03/new-chrome-vulnerability-let-malicious.html

#Privacy #AI #Cybersecurity #DailyDigest

📬 NicFab Newsletter #10 | 3 marzo 2026

Privacy, Data Protection, AI e Cybersecurity — la rassegna settimanale.

In questo numero:

🔴 Garante Privacy vieta ad Amazon Italia la schedatura illecita di 1.800 lavoratori con dati sensibili conservati fino a 10 anni

📊 EDPB aderisce alla dichiarazione globale di 61 autorità sui rischi dell'AI generativa per immagini non consensuali

🏛️ Le riforme GDPR della Commissione UE incontrano forte resistenza dai governi nazionali sulla definizione di "dato personale"

🟢 CNIL lancia progetto PANAME per testare strumenti di audit RGPD specifici per modelli di intelligenza artificiale

📈 Parlamento UE pubblica analisi Digital Omnibus sulle interconnessioni tra normative digitali europee

⚠️ CISA avvisa del malware RESURGE dormiente sui dispositivi Ivanti e zero-day Cisco sfruttato dal 2023

🔍 Data breach Canadian Tire colpisce 38 milioni di account, ManoMano coinvolge 38 milioni di utenti

📖 AI Act in Pillole: Articolo 14 sulla sorveglianza umana e il principio dell'essere umano al centro

👉 Leggi il numero completo: https://www.nicfab.eu/it/newsletter/2026-03-03-issue-10/

📩 Iscriviti alla newsletter: https://www.nicfab.eu/it/pages/newsletter/#iscriviti-ora

#Privacy #GDPR #AIAct #Cybersecurity

📬 NicFab Newsletter #10 | March 3, 2026

Privacy, Data Protection, AI & Cybersecurity — weekly review.

In this issue:

🔴 Italian DPA orders Amazon Italia to cease unlawful processing of 1,800 workers' sensitive data including medical conditions and union activities

🏛️ EDPB endorses Global Privacy Assembly statement addressing AI-generated imagery risks with 61 authorities calling for robust safeguards

📊 European Parliament publishes detailed Digital Omnibus study analyzing interconnections in EU digital legislation and regulatory overlaps

⚠️ CISA warns of RESURGE malware remaining dormant on Ivanti devices posing ongoing cybersecurity threats

🟢 CNIL launches PANAME project inviting professionals to test innovative GDPR audit tools specifically designed for AI models

🔍 Canadian Tire data breach affects 38 million accounts highlighting vulnerabilities in retail cybersecurity infrastructure

📖 AI Act Explained Part 10: Article 14 on Human Oversight requirements and the fundamental principle of human-centered AI systems

👉 Read the full issue: https://www.nicfab.eu/en/newsletter/2026-03-03-issue-10/

📩 Subscribe to the newsletter: https://www.nicfab.eu/en/pages/newsletter/#subscribe-now

#Privacy #GDPR #AIAct #Cybersecurity

Daily Digest | 4 March 2026

Tables Informatique et Libertés : la CNIL publie la mise à jour 2026
CNIL France
https://www.cnil.fr/fr/tables-informatique-et-libertes-2026

Microsoft: Hackers abuse OAuth error flows to spread malware
BleepingComputer
https://www.bleepingcomputer.com/news/security/microsoft-hackers-abuse-oauth-error-flows-to-spread-malware/

LexisNexis confirms data breach as hackers leak stolen files
BleepingComputer
https://www.bleepingcomputer.com/news/security/lexisnexis-confirms-data-breach-as-hackers-leak-stolen-files/

Iranian Strikes on Amazon Data Centers Highlight Industry’s Vulnerability to Physical Disasters
SecurityWeek RSS Feed
https://www.securityweek.com/iranian-strikes-on-amazon-data-centers-highlight-industrys-vulnerability-to-physical-disasters/

Vulnerability in MS-Agent AI Framework Can Allow Full System Compromise
SecurityWeek RSS Feed
https://www.securityweek.com/vulnerability-in-ms-agent-ai-framework-can-allow-full-system-compromise/

#Privacy #AI #Cybersecurity #DailyDigest

Daily Digest | 5 March 2026

L'AGENDA DEL GARANTE - Gli eventi a cui partecipano i Componenti del Collegio - Appuntamenti fino al 5 marzo
Garante Protezione dei dati personali - news
https://www.gpdp.it/garante/doc.jsp?ID=9720532

US and EU police shut down LeakBase, a site accused of sharing stolen passwords and hacking tools
TechCrunch
https://techcrunch.com/2026/03/04/u-s-and-eu-police-shut-down-leakbase-a-site-accused-of-sharing-stolen-passwords-and-hacking-tools/

Tycoon 2FA Phishing Platform Dismantled in Global Takedown
SecurityWeek RSS Feed
https://www.securityweek.com/tycoon-2fa-phishing-platform-dismantled-in-global-takedown/

New LexisNexis Data Breach Confirmed After Hackers Leak Files
SecurityWeek RSS Feed
https://www.securityweek.com/new-lexisnexis-data-breach-confirmed-after-hackers-leak-files/

Mississippi medical center reopens clinics hit by ransomware attack
BleepingComputer
https://www.bleepingcomputer.com/news/security/mississippi-medical-center-reopens-clinics-hit-by-ransomware-attack/

#Privacy #AI #Cybersecurity #DailyDigest

Daily Digest | 6 March 2026

SWD:2026:71:FIN: COMMISSION STAFF WORKING DOCUMENT IMPACT ASSESSMENT REPORT Accompanying the document Proposal for a ...
EUR-Lex | AI Act | EN
https://eur-lex.europa.eu/legal-content/AUTO/?uri=SWD:2026:71:FIN

IA et santé : la HAS et la CNIL lancent une consultation publique sur un projet de guide
CNIL France
https://www.cnil.fr/fr/ia-et-sante-la-has-et-la-cnil-lancent-une-consultation-publique-sur-un-projet-de-guide

CELEX:52026SC0014: COMMISSION STAFF WORKING DOCUMENT EXECUTIVE SUMMARY OF THE IMPACT ASSESSMENT REPORT Accompanying t...
EUR-Lex | AI Act | EN
https://eur-lex.europa.eu/legal-content/AUTO/?uri=CELEX:52026SC0014

Chinese state hackers target telcos with new malware toolkit
BleepingComputer
https://www.bleepingcomputer.com/news/security/chinese-state-hackers-target-telcos-with-new-malware-toolkit/

Tycoon 2FA Goes Boom as Europol, Vendors Bust Phishing Platform
Dark Reading
https://www.darkreading.com/threat-intelligence/tycoon-2fa-europol-vendors-bust-phishing-platform

#Privacy #AI #Cybersecurity #DailyDigest

🔵 nicfab:
👋 Welcome to NicFab News.

This room provides automated updates on:

● Privacy and Data Protection
● GDPR and EU regulatory developments
● AI governance and the EU AI Act
● Cybersecurity and digital regulation
Content sources:
– NicFab Telegram channel (@nicfabnews)
– Weekly NicFab newsletter
– Daily regulatory digest

Curated by Nicola Fabiano — Lawyer, DPO, Independent Researcher.
🌐 https://www.nicfab.eu

Daily Digest | 9 March 2026

COMUNICATO STAMPA - Famiglia nel bosco: il Garante monitora la vicenda e richiama alla tutela dei minori
Garante Protezione dei dati personali - news
https://www.gpdp.it/garante/doc.jsp?ID=10227618

Données personnelles – consultation publique CNIL/HAS
CNIL France
https://www.cnil.fr/fr/donnees-personnelles-consultation-publique-has-cnil

Press release - Press conference: protection of copyright in the age of artificial intelligence
Press releases - Plenary sessions - European Parliament
https://www.europarl.europa.eu/news/en/press-room/20260303IPR37004/

EU court adviser says banks must immediately refund phishing victims
BleepingComputer
https://www.bleepingcomputer.com/news/legal/eu-court-adviser-says-banks-must-immediately-refund-phishing-victims/

Information-Theoretic Privacy Control for Sequential Multi-Agent LLM Systems
cs.LG updates on arXiv.org
https://arxiv.org/abs/2603.05520

#Privacy #AI #Cybersecurity #DailyDigest

Daily Digest | 9 March 2026

COMUNICATO STAMPA - Famiglia nel bosco: il Garante monitora la vicenda e richiama alla tutela dei minori
Garante Protezione dei dati personali - news
https://www.gpdp.it/garante/doc.jsp?ID=10227618

Données personnelles – consultation publique CNIL/HAS
CNIL France
https://www.cnil.fr/fr/donnees-personnelles-consultation-publique-has-cnil

Press release - Press conference: protection of copyright in the age of artificial intelligence
Press releases - Plenary sessions - European Parliament
https://www.europarl.europa.eu/news/en/press-room/20260303IPR37004/

EU court adviser says banks must immediately refund phishing victims
BleepingComputer
https://www.bleepingcomputer.com/news/legal/eu-court-adviser-says-banks-must-immediately-refund-phishing-victims/

Information-Theoretic Privacy Control for Sequential Multi-Agent LLM Systems
cs.LG updates on arXiv.org
https://arxiv.org/abs/2603.05520

#Privacy #AI #Cybersecurity #DailyDigest

📬 NicFab Newsletter #11 | 10 marzo 2026

Privacy, Data Protection, AI e Cybersecurity — la rassegna settimanale.

In questo numero:

🔴 CNIL chiude procedimento contro KASPR: società inizialmente multata per 240.000 euro per raccolta illecita dati LinkedIn

🏛️ EDPB pubblica agenda stakeholder event del 27 marzo su pubblicità politica mirata e trasparenza nel targeting

📊 Studio EDPB sui data broker: nuova metodologia per identificarli e tipologia completa modelli di business ad alto rischio

🟢 EDPS lancia podcast sui Digital Identity Wallets: dal 2026 ogni Stato UE offrirà portafoglio identità digitale ufficiale

🔴 Garante Privacy italiano monitora caso "famiglia nel bosco" richiamando media alla tutela minori

⚠️ CISA conferma sfruttamento attivo vulnerabilità Cisco Catalyst SD-WAN e falle CVSS 9.8 Hikvision-Rockwell

🔍 ICO Regno Unito indaga Ray-Ban smart glasses Meta mentre emergono preoccupazioni su contenuti intimi osservati da dipendenti

📖 AI Act in Pillole Parte 11: Articolo 15 su accuratezza, robustezza e cybersicurezza dei sistemi ad alto rischio

👉 Leggi il numero completo: https://www.nicfab.eu/it/newsletter/2026-03-10-issue-11/

📩 Iscriviti alla newsletter: https://www.nicfab.eu/it/pages/newsletter/#iscriviti-ora

#Privacy #GDPR #AIAct #Cybersecurity

📬 NicFab Newsletter #11 | March 10, 2026

Privacy, Data Protection, AI & Cybersecurity — weekly review.

In this issue:

🏛️ Italian DPA monitors "Forest Family" case, emphasizing heightened protection standards for minors exposed to media attention

📊 EDPB publishes comprehensive data brokers market study with methodology for identifying entities and analyzing business models

🟢 CNIL closes injunction against KASPR following compliance efforts after €240,000 fine for LinkedIn data scraping violations

⚠️ Cisco Catalyst SD-WAN vulnerabilities now widely exploited with CVSS 9.8 flaws added to CISA KEV catalog

🔍 UK ICO investigates Meta's Smart Glasses after privacy breach reports and data harvesting concerns

📈 EU Member States prepare to roll out European Digital Identity Wallets this year with new privacy implications

🔴 Cognizant TriZetto breach exposes health data of 3.4 million patients in latest healthcare cybersecurity incident

📖 AI Act Explained Part 11: Article 15 requirements for accuracy, robustness and cybersecurity integration from design phase

👉 Read the full issue: https://www.nicfab.eu/en/newsletter/2026-03-10-issue-11/

📩 Subscribe to the newsletter: https://www.nicfab.eu/en/pages/newsletter/#subscribe-now

#Privacy #GDPR #AIAct #Cybersecurity

Daily Digest | 10 March 2026

OJ:L_202600510: Commission Recommendation (EU) 2026/510 of 6 March 2026 on revising the European assessment framework...
EUR-Lex | AI Act | EN
https://eur-lex.europa.eu/legal-content/AUTO/?uri=OJ:L_202600510

Le 8 mars à la CNIL : paroles et regards autour des droits des femmes et de l’égalité professionnelle
CNIL France
https://www.cnil.fr/fr/journee-internationale-droits-des-femmes-2026

Microsoft Teams phishing targets employees with A0Backdoor malware
BleepingComputer
https://www.bleepingcomputer.com/news/security/microsoft-teams-phishing-targets-employees-with-backdoors/

Ericsson US discloses data breach after service provider hack
BleepingComputer
https://www.bleepingcomputer.com/news/security/ericsson-us-discloses-data-breach-after-service-provider-hack/

Invisible Safety Threat: Malicious Finetuning for LLM via Steganography
cs.LG updates on arXiv.org
https://arxiv.org/abs/2603.08104

#Privacy #AI #Cybersecurity #DailyDigest

Daily Digest | 10 March 2026

OJ:L_202600510: Commission Recommendation (EU) 2026/510 of 6 March 2026 on revising the European assessment framework...
EUR-Lex | AI Act | EN
https://eur-lex.europa.eu/legal-content/AUTO/?uri=OJ:L_202600510

Le 8 mars à la CNIL : paroles et regards autour des droits des femmes et de l’égalité professionnelle
CNIL France
https://www.cnil.fr/fr/journee-internationale-droits-des-femmes-2026

Microsoft Teams phishing targets employees with A0Backdoor malware
BleepingComputer
https://www.bleepingcomputer.com/news/security/microsoft-teams-phishing-targets-employees-with-backdoors/

Ericsson US discloses data breach after service provider hack
BleepingComputer
https://www.bleepingcomputer.com/news/security/ericsson-us-discloses-data-breach-after-service-provider-hack/

Invisible Safety Threat: Malicious Finetuning for LLM via Steganography
cs.LG updates on arXiv.org
https://arxiv.org/abs/2603.08104

#Privacy #AI #Cybersecurity #DailyDigest

Daily Digest | 11 March 2026

COMUNICATO STAMPA - Il Garante privacy sanziona Acea Energia per 2 milioni di euro. Contratti attivati all’insaputa d...
Garante Protezione dei dati personali - news
https://www.gpdp.it/garante/doc.jsp?ID=10229452

Commission unveils new AI tool to fight agri-food alerts and food fraud
European Commission Press Corner
https://ec.europa.eu/commission/presscorner/detail/en/ip_26_584

New BeatBanker Android malware poses as Starlink app to hijack devices
BleepingComputer
https://www.bleepingcomputer.com/news/security/new-beatbanker-android-malware-poses-as-starlink-app-to-hijack-devices/

Thousands Affected by Ericsson Data Breach
SecurityWeek RSS Feed
https://www.securityweek.com/thousands-affected-by-ericsson-data-breach/

KadNap Malware Infects 14,000+ Edge Devices to Power Stealth Proxy Botnet
The Hacker News
https://thehackernews.com/2026/03/kadnap-malware-infects-14000-edge.html

#Privacy #AI #Cybersecurity #DailyDigest

Daily Digest | 12 March 2026

NEWSLETTER 9 marzo 2026 - Cimiteri digitali, il Garante privacy sanziona Aldilapp - Stop alle telecamere non a norma ...
Garante Protezione dei dati personali - news
https://www.gpdp.it/garante/doc.jsp?ID=10228173

Numérique en santé : la CNIL et la HAS s’engagent pour renforcer les bonnes pratiques
CNIL France
https://www.cnil.fr/fr/numerique-en-sante-la-cnil-et-la-has-sengagent

Briefing - Regulation on digital networks (digital networks act) - 10-03-2026
Documents - Think Tank - European Parliament
https://www.europarl.europa.eu/thinktank/en/document/EPRS_BRI(2026)774729

14,000 routers are infected by malware that's highly resistant to takedowns
Ars Technica
https://arstechnica.com/security/2026/03/14000-routers-are-infected-by-malware-thats-highly-resistant-to-takedowns/

Medtech giant Stryker offline after Iran-linked wiper malware attack
BleepingComputer
https://www.bleepingcomputer.com/news/security/medtech-giant-stryker-offline-after-iran-linked-wiper-malware-attack/

#Privacy #AI #Cybersecurity #DailyDigest

Daily Digest | 13 March 2026

CELEX:02021R1173-20260120: Council Regulation (EU) 2021/1173 of 13 July 2021 on establishing the European High Perfor...
EUR-Lex | AI Act | EN
https://eur-lex.europa.eu/legal-content/AUTO/?uri=CELEX:02021R1173-20260120

Fisheries and aquaculture: Council agrees negotiating position on new framework for statistics
Council of the EU Press Releases
https://www.consilium.europa.eu/en/press/press-releases/2026/03/11/fisheries-and-aquaculture-council-agrees-negotiating-position-on-new-framework-for-statistics/

CELEX:02017R0373-20260222: Commission Implementing Regulation (EU) 2017/373 of 1 March 2017 laying down common requir...
EUR-Lex | AI Act | EN
https://eur-lex.europa.eu/legal-content/AUTO/?uri=CELEX:02017R0373-20260222

CELEX:02017R0117-20260129: Commission Delegated Regulation (EU) 2017/117 of 5 September 2016 establishing fisheries c...
EUR-Lex | AI Act | EN
https://eur-lex.europa.eu/legal-content/AUTO/?uri=CELEX:02017R0117-20260129

CELEX:02021R0694-20251223: Regulation (EU) 2021/694 of the European Parliament and of the Council of 29 April 2021 es...
EUR-Lex | AI Act | EN
https://eur-lex.europa.eu/legal-content/AUTO/?uri=CELEX:02021R0694-20251223

#Privacy #AI #Cybersecurity #DailyDigest

Daily Digest | 16 March 2026

CONSIL:ST_7322_2026_INIT: Proposal for a REGULATION OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL amending Regulation...
EUR-Lex | AI Act | EN
https://eur-lex.europa.eu/legal-content/AUTO/?uri=CONSIL:ST_7322_2026_INIT

Council agrees position to streamline rules on Artificial Intelligence
Council of the EU Press Releases
https://www.consilium.europa.eu/en/press/press-releases/2026/03/13/council-agrees-position-to-streamline-rules-on-artificial-intelligence/

Serveur mandataire web filtrant : les recommandations de la CNIL
CNIL France
https://www.cnil.fr/fr/recommandation-serveur-mandataire-web-filtrant

PI_COM:Ares(2026)2709234: COMMISSION IMPLEMENTING REGULATION (EU) …/... on detailed arrangements for the conduct of c...
EUR-Lex | AI Act | EN
https://eur-lex.europa.eu/legal-content/AUTO/?uri=PI_COM:Ares(2026)2709234

Learnability and Privacy Vulnerability are Entangled in a Few Critical Weights
cs.LG updates on arXiv.org
https://arxiv.org/abs/2603.13186

#Privacy #AI #Cybersecurity #DailyDigest

🇮🇹 Il 10 marzo 2026 il Parlamento europeo ha approvato la Risoluzione P10_TA(2026)0066 sul diritto d'autore e l'IA generativa. Nessuna norma vincolante, ma tre nodi critici ben identificati: il fallimento strutturale dell'opt-out DSM, la trasparenza estesa fino all'inferenza e alla RAG, e un sistema fondato sull'autodisciplina volontaria dei provider.

📖 https://www.nicfab.eu/it/posts/copyright-genai-ep-resol/

———

🇬🇧 On 10 March 2026, the European Parliament adopted Resolution P10_TA(2026)0066 on copyright and generative AI. No binding rules — but three critical legal gaps clearly identified: the structural failure of the DSM opt-out, transparency extended to inference and RAG, and a regulatory architecture built on voluntary self-discipline.

📖 https://www.nicfab.eu/en/posts/copyright-genai-ep-resol/

#Copyright #GenerativeAI #AIAct #DSMDirective #GPAI #TDM #DirittoAutore

📬 NicFab Newsletter #12 | 17 marzo 2026

Privacy, Data Protection, AI e Cybersecurity — la rassegna settimanale.

In questo numero:

🔴 Intesa Sanpaolo sanzionata per 17,6 milioni: trasferimento illegittimo di 2,4 milioni di clienti tramite profilazione non autorizzata

🟢 EDPB ed EDPS sostengono l'armonizzazione delle sperimentazioni cliniche nell'European Biotech Act con nuove salvaguardie

🔴 Acea Energia multata per 2 milioni per contratti fraudolenti attivati all'insaputa dei clienti tramite agenti porta a porta

📈 TraceMap: Commissione UE lancia piattaforma AI per accelerare il rilevamento di frodi e contaminazioni alimentari

⚠️ Operation Synergia III smantella reti cybercriminali internazionali, compromessi 369.000 IP in 163 paesi

🏛️ Parlamento UE proroga deroga privacy per contrastare abusi sessuali online sui minori

📖 AI Act in Pillole: analisi degli obblighi per fornitori di sistemi ad alto rischio secondo l'Articolo 16

🔍 ICO multa Police Scotland per condivisione impropria di dati personali, crescono le sanzioni UK

👉 Leggi il numero completo: https://www.nicfab.eu/it/newsletter/2026-03-17-issue-12/

📩 Iscriviti alla newsletter: https://www.nicfab.eu/it/pages/newsletter/#iscriviti-ora

#Privacy #GDPR #AIAct #Cybersecurity

📬 NicFab Newsletter #12 | March 17, 2026

Privacy, Data Protection, AI & Cybersecurity — weekly review.

In this issue:

🔴 Intesa Sanpaolo fined €17.6 million for unlawful profiling of 2.4 million customers transferred to digital subsidiary Isybank

🔴 Acea Energia sanctioned €2 million for over 1,200 fraudulent door-to-door contracts activated without customer knowledge

🏛️ EDPB and EDPS publish joint opinion supporting European Biotech Act while requesting specific safeguards for health data

📊 European Commission launches TraceMap, new AI platform for food safety using artificial intelligence to detect fraud and contamination

🔍 CNIL issues new recommendations for web filtering proxy servers balancing corporate cybersecurity with GDPR compliance

⚠️ Operation Synergia III targets international cybercrime while SocksEscort botnet dismantled with 369,000 compromised IPs

📈 EU moves toward banning AI nudification apps following high-profile cases and growing regulatory concerns

📖 AI Act Explained Part 12 covers Article 16 obligations for high-risk AI system providers including technical documentation requirements

👉 Read the full issue: https://www.nicfab.eu/en/newsletter/2026-03-17-issue-12/

📩 Subscribe to the newsletter: https://www.nicfab.eu/en/pages/newsletter/#subscribe-now

#Privacy #GDPR #AIAct #Cybersecurity