All Cybersecurity articles – Page 12
-
ArticleAerojet Rocketdyne to pay $9M in cybersecurity whistleblower case
Aerojet Rocketdyne has agreed to pay $9 million to resolve allegations raised by a whistleblower that the aerospace and defense manufacturer misled the federal government regarding its compliance with cybersecurity requirements in certain contracts.
-
ArticleSurvey: Inflation, climate risk top audit partner economic concerns for 2022
The economy, cybersecurity, climate change, and cryptocurrency are among top concerns for the year ahead expressed by U.S. public company audit partners as part of a new Center for Audit Quality survey.
-
ArticleNYDFS penalizes Carnival $5M for cybersecurity failures
The New York State Department of Financial Services announced a $5 million penalty against Carnival Corp. for “significant” cybersecurity failures, including not implementing basic protocols to prevent four separate data breaches from 2019-21.
-
Article
Carnival reaches $1.25M settlement over 2019 data breach
Carnival Cruise Line reached a $1.25 million settlement with 46 attorneys general stemming from its 2019 data breach that involved the personal information of 180,000 Carnival employees and customers nationwide.
-
ArticleFive prevailing themes from TPRM Summit
Editor In Chief Kyle Brasseur recaps popular points of discussion across Compliance Week’s two-day Third-Party Risk Management Summit held in Chicago.
-
ArticleSurvey: Cyber threats, remote work, financial pressures key ABC concerns for 2022
Compliance programs globally expect to shoulder more responsibilities in 2022, according to Kroll’s latest Anti-Bribery and Corruption Benchmarking Report.
-
ArticleSEC commissioners address CCO liability, crypto regulation, more at CW2022
Two SEC commissioners from opposite sides of the political aisle took slightly different positions on how to assess the liability of poor performing chief compliance officers as part of the Day 2 opening keynote at Compliance Week’s National Conference.
-
ArticleSEC to increase staffing around crypto asset-related investigations
The Securities and Exchange Commission announced plans to nearly double the number of employees assigned to its Cyber Unit, which has had its name changed to emphasize the agency’s pursuit of crypto asset-related investigations.
-
ArticleAA study: Cybersecurity breach disclosures surge in 2021
The number of cybersecurity breaches disclosed by public companies in 2021 increased 44 percent while reports of ransomware attacks also surged, according to the latest Audit Analytics study.
-
ArticleCash App breached by former employee; 8.2M affected
Approximately 8.2 million U.S. customers of Cash App Investing have been notified of a data breach carried out by a former employee of the mobile payment service provider.
-
ArticleQ1 roundup: SEC tackles climate disclosures, businesses navigate Russia restrictions, more
Regulation and guidance from U.S. agencies and the White House, plus compliance challenges stemming from a two-year global pandemic and Russia’s ongoing invasion of Ukraine, made the first quarter of 2022 a novel risk environment for regulated businesses.
-
ArticleClosing the data risk gap: How technology enables data protection
Legal and compliance teams ranked data privacy and cybersecurity threats the No. 1 biggest risk entering 2022. Further survey results reveal roadblocks to organizations’ proactive compliance.
-
ArticleUkrainian telecom victim of ‘powerful’ cyberattack
Ukrainian telecommunications company Ukrtelecom is in the process of restoring its services after a “powerful” cyberattack wreaked havoc on its operations.
-
ArticleFive insights gleaned from PCAOB audit committee chair report
The Public Company Accounting Oversight Board published its annual report highlighting feedback received from its discussions with audit committee chairs at U.S. public companies during the previous year.
-
ArticleHow EU regulators are warning of Russian data protection threats
Regulators in Norway, Germany, Lithuania, Estonia, Denmark, and Sweden address how companies can prepare for increased data protection and cybersecurity risks in the wake of Russia’s invasion of Ukraine.
-
ArticleFormer CafePress owner to pay $500K in FTC settlement over data breach
Residual Pumpkin Entity, the former owner of CafePress, must pay $500,000 in redress under a proposed settlement with the Federal Trade Commission addressing allegations CafePress failed to secure personal data and covered up a data breach.
-
ArticleMeta fined $18.6M under GDPR for 2018 data breaches
The Irish Data Protection Commission fined Meta’s Irish subsidiary 17 million euros (U.S. $18.6 million) for a series of personal data breaches that took place nearly four years ago.
-
ArticleSEC proposes companies report cybersecurity incidents within four days
Public companies would have to report material cybersecurity incidents no later than four business days after they occur if a rule proposed by the Securities and Exchange Commission takes effect.
-
ArticleTop 10 reasons to attend Compliance Week 2022
A keynote with two SEC commissioners; interactive sessions on global sanctions, ESG, and ethical leadership; and a new conference location and format highlight Dave Lefort’s list of reasons to be excited for CW’s first in-person event in nearly three years.
-
ArticleSteps for preparing for potential Russian cyberthreats
As the West seeks to isolate Russia, the country might retaliate with state-sponsored cyberattacks. Although Russia is suspected to have launched such attacks before, the scale and scope could be much bigger this time, experts warn.