All Cybersecurity articles – Page 10
-
ArticleESG oversight highlighted in annual audit committee transparency report
Public companies continue to increase the overall level of audit committee disclosures in proxy statements, though there is room to improve quality by providing more tailored disclosures and transparency, according to the latest annual report.
-
ArticleDOJ official addresses liability concerns stemming from Uber CSO case
Principal Associate Deputy Attorney General Marshall Miller called the conviction of a former Uber Technologies chief security officer on obstruction charges an “outlier” that should not discourage compliance officers from self-reporting violations.
-
ArticleLoaded SEC agenda to carry into 2023
The Securities and Exchange Commission is expected to see through its controversial policy proposals from 2022, though the newly Republican-led House could slow the agency’s momentum.
-
ArticleCFTC commissioner stresses ‘urgency’ in call for heightened crypto oversight
Christy Goldsmith Romero, a commissioner at the Commodity Futures Trading Commission, is lobbying the regulator to use its existing authority to conduct “heightened supervision” over derivative exchanges to create more oversight in crypto markets.
-
ArticleMeta fined $274M under GDPR for data scraping breach
Meta Platforms Ireland was fined €265 million (U.S. $274 million) for failing to put in place adequate measures to protect users’ data after a leak compromised the personal details of more than half a billion individuals.
-
ArticleDiscord fined $830K for GDPR lapses
Discord, a popular communication service primarily utilized by the video game community, was assessed a fine of €800,000 (U.S. $829,000) by the French data protection authority for multiple violations of the General Data Protection Regulation related to safeguarding user data.
-
Article
Cybersecurity staffing woes play part in FTC Safeguards Rule delays
The Federal Trade Commission extended the deadline for compliance with certain changes to its Safeguards Rule announced last year, in part because of labor shortages in the cybersecurity market.
-
ArticleAustralia privacy law proposal sets steep penalty mark for breaches
The Australian government is weighing stringent new privacy reforms that would establish among the steepest penalty regimes in the world—up to AUD$50 million (U.S. $33.5 million)—for serious or repeated breaches.
-
ArticleSolarWinds under SEC probe for handling of 2020 cyberattack
SolarWinds revealed the Securities and Exchange Commission is examining cybersecurity disclosures and public statements the company and its executives made after its massive 2020 data breach caused by hackers backed by the Russian government.
-
ArticleFinCEN: U.S. banks paid $1.2B to ransomware criminals last year
Banks reported paying a record $1.2 billion to ransomware criminals in 2021, the Financial Crimes Enforcement Network announced.
-
ArticleChegg avoids fine in deal with FTC over cybersecurity lapses
The Federal Trade Commission ordered education technology provider Chegg to fix problems and weaknesses with its cybersecurity program that led to the exposure of personal and financial data of 40 million customers and employees in four data breaches since 2017.
-
ArticleFTC places restrictions on CEO in Drizly enforcement proposal
The Federal Trade Commission announced a tentative settlement with online alcohol delivery platform Drizly and its chief executive officer regarding a data breach affecting 2.5 million consumers and the alleged lax security that allowed it to happen.
-
ArticleICO warns of ‘complacency’ in fining Interserve $5M under GDPR
The U.K. Information Commissioner warned companies not to ignore “crucial measures” to prevent cyber incidents following his office’s decision to fine construction firm Interserve £4.4 million (U.S. $5 million) for failing to secure employee personal information.
-
ArticleUber CSO ruling fallout: Individual liability extends to data breach response
The case of the Uber chief security officer found guilty by a jury on two felonies for covering up a data breach and misleading federal regulators opens up another potential individual liability issue executives handling cyber incidents face, according to legal experts.
-
ArticleEyeMed fined $4.5M over cybersecurity lapses that led to breach
EyeMed Vision Care agreed to pay $4.5 million as part of a settlement with the New York State Department of Financial Services for cybersecurity control failures that helped enable a 2020 data breach.
-
ArticleFashion retailer Zoetop to pay $1.9M over data breach response
Zoetop, parent company to online clothing retailers SHEIN and ROMWE, agreed to pay $1.9 million as part of a settlement with the New York Attorney General’s Office for failing to properly protect customer information compromised during a 2018 data breach.
-
ArticleCyber risk management lessons from Optus data breach
The Optus data breach should serve as a reminder for all organizations that cybersecurity incidents are serious business risks that are costly to make right.
-
ArticleSEC to reopen comment on climate-related disclosure rule, data breach reporting after glitch
The Securities and Exchange Commission will reopen comment periods on 11 rulemaking releases put forward over the past year, including proposals regarding climate-related disclosures and reporting cybersecurity breaches, because of a glitch in its online comment system.
-
ArticleOptus data breach fallout shows widespread impact of cybercrime
Optus isn’t alone in trying to calm public nerves and find out what happened to cause a breach that exposed the records of 9.8 million current and former customers. Australian government agencies are also attempting to fight fires and reassure citizens their personal info is safe.
-
ArticleEx-Uber security chief found guilty of obstructing FTC data breach probe
Joseph Sullivan, the former chief security officer of Uber Technologies, was found guilty of two felonies connected to allegations he covered up a massive data breach at the ridesharing company and misled federal regulators about Uber’s response.