All articles by Adrianne Appel – Page 15
-
PremiumToeing the ‘fine line’ of cloud security compliance
When organizations move their data or operations to the cloud, the compliance team has their work cut out and then some, experts discussed at CW’s Cyber Risk & Data Privacy Summit.
-
News BriefMontefiore Medical Center to pay $4.8M over employee’s data theft
Montefiore Medical Center agreed to pay $4.75 million to settle allegations by the Department of Health and Human Services’ Office for Civil Rights that failures by the New York City nonprofit facility allowed an employee to steal and sell patient information for six months.
-
PremiumCompliance with growing number of U.S. privacy laws ‘a matter of culture change’
Different deadlines associated with the 13 U.S. state privacy laws currently on the books, including grace periods and enforcement dates, have proven challenging for compliance, experts discussed at CW’s Cyber Risk & Data Privacy Summit.
-
News BriefClorox discloses $49M hit from cyberattack
Cleaning products company Clorox disclosed the major cybersecurity incident that led to a shutdown of its automated order processing late last year has cost it about $49 million.
-
PremiumDeloitte survey: Companies unprepared for AI governance, risk challenges
Just 25 percent of corporate leaders felt their organizations were highly prepared to handle the governance and risk issues posed by generative artificial intelligence, a Deloitte survey found.
-
PremiumNew DOJ cyber section wants more private sector partnership
Cooperation between businesses and the new cybersecurity section at the Department of Justice has led to the successful defanging of numerous, major ransomware operations worldwide in just the few months since its creation, according to its chief.
-
PremiumOFAC official urges company transparency on ransomware events
Despite its reputation as a fierce enforcer of sanctions, the Office of Foreign Assets Control has a softer side and wants to help companies that are hit with ransomware attacks, according to the agency’s senior compliance officer.
-
PremiumFTC ‘click to cancel’ proposal harmful to businesses, companies argue
A proposed “click to cancel” rule by the Federal Trade Commission is not necessary, too broad, and would harm mom-and-pop companies, according to business allies and trade groups.
-
News BriefRDx Bioscience, CEO settle kickback case for $13M
New Jersey-based clinical laboratory RDx Bioscience and its chief executive officer agreed to pay more than $13 million to the Department of Justice to settle illegal kickback allegations.
-
PremiumNIST report: Mitigating the risks of cyberattacks on AI systems
Cyberattacks on artificial intelligence systems are increasing, so it’s important users know their vulnerabilities and try to soften the damage if they get hit, according to a new report by the National Institute of Standards and Technology.
-
PremiumCPPA preview: Cybersecurity audit regs nearing formal proposal
Companies with business in California could face tough new cybersecurity mandates under draft regulations that could be headed for formal rulemaking as soon as Friday.
-
PremiumCompliance lessons from Rite Aid facial recognition case
The Federal Trade Commission was clear in its recent enforcement action against Rite Aid regarding its expectations for companies using facial recognition technology or any biometric security or surveillance systems.
-
PremiumQ&A: Wolters Kluwer EVP on using AI to ease data analysis
Sandeep Sacheti, executive vice president for customer information management and operational excellence at Wolters Kluwer, shares with Compliance Week how the company’s financial and corporate compliance division uses artificial intelligence to manage and analyze data.
-
News BriefFreepoint Commodities to pay $99M in Brazil bribery FCPA case
Freepoint Commodities agreed to pay nearly $99 million to settle allegations by the Department of Justice that it paid bribes to Brazilian government officials in return for business from state-owned oil company Petrobras.
-
PremiumExperts: More privacy rules, enforcement expected in 2024
Businesses can prepare for a bumpy ride as the 2024 global landscape of data privacy and other related laws and regulations begins to take shape.
-
PremiumAI in 2024: More business use, more fraud risks
Use of generative artificial intelligence by businesses will ramp up in 2024, as will risk of AI-driven cyberattacks and fraud, according to experts.
-
News BriefHHS: New cybersecurity regs on the way for hospitals
Hospitals can soon expect to see new draft cybersecurity regulations and benchmarking goals, according to the Department of Health and Human Services.
-
PremiumSurveys: Finance, legal execs share concerns around AI use
Finance executives and general counsel alike say their firms and leadership teams are unprepared for the risks and benefits of artificial intelligence, according to two recent surveys.
-
PremiumAutomated decision-making tech rules added to crowded CPPA agenda
The California Privacy Protection Agency drafted its rules to apply the rights allowed to residents under the California Consumer Privacy Act to automated decision-making technology used by businesses.
-
News BriefFirst American fined $1M by NYDFS over 2019 cybersecurity breach
First American Title Insurance Company agreed to pay a $1 million fine and implement stronger compliance measures for not securing customers’ personal data, the New York State Department of Financial Services announced.