2017, Consumer Protection and Data breaches

Congressional Report on the 2017 Equifax Data Breach

Schneier on Security

DECEMBER 19, 2018

The US House of Representatives Committee on Oversight and Government Reform has just released a comprehensive report on the 2017 Equifax hack. Here is my testimony before before the House Subcommittee on Digital Commerce and Consumer Protection last November. Lance Spitzner also commented on this.

Data breaches

Data breaches Consumer Protection Government Hacking

Uber agrees to pay $148 million in massive 2016 data breach settlement

Security Affairs

SEPTEMBER 26, 2018

Uber agrees to $148 million settlement with US States and the District of Columbia over the massive 2016 data breach that exposed personal data of 57 million of its users. In 2017 the FTC charged the company for deceiving customers with its privacy and data security practices. Pierluigi Paganini.

Data breaches

Data breaches Consumer Protection Advertising Hacking

New Mexico Becomes 48th State To Enact Data Breach Notification Law

Privacy and Cybersecurity Law

MAY 2, 2017

On April 6, 2017, New Mexico became the 48th state to enact a data breach notification law, leaving Alabama and South […].

Data breaches

Data breaches Consumer Protection

Tennessee Adds New Encryption And Timing Requirements To Its Data Breach Notification Law

Privacy and Cybersecurity Law

APRIL 28, 2017

On April 4, 2017, Tennessee Governor Bill Haslam signed into law an amendment to the state’s data breach notification law, making two […].

Data breaches

Data breaches Encryption Consumer Protection Government

Me on the Equifax Breach

Schneier on Security

NOVEMBER 8, 2017

Hearing on "Securing Consumers' Credit Data in the Age of Digital Commerce". Subcommittee on Digital Commerce and Consumer Protection. 1 November 2017. Mister Chairman and Members of the Committee, thank you for the opportunity to testify today concerning the security of credit data. Before the.

Computers and Electronics

Computers and Electronics Identity Theft Internet Internet

Scary Fraud Ensues When ID Theft & Usury Collide

Krebs on Security

JANUARY 25, 2022

Then in mid-January, Jim heard from MSF via snail mail that they’d discovered a data breach. Jim said MSF ultimately agreed that the loan wasn’t legitimate, but they couldn’t or wouldn’t tell him how his information got pushed through to a loan — even though MSF was never able to pull his credit file.

Financial Services

Financial Services Banking Accountability Identity Theft

New ABA Opinion – Attorneys Must Take Reasonable Cybersecurity Measures To Protect Client Data

Privacy and Cybersecurity Law

MAY 12, 2017

On May 11, 2017, the American Bar Association (ABA) issued Formal Opinion 477, making clear that a lawyer may transmit information […].

Cybersecurity

Cybersecurity Consumer Protection Data breaches

Survey Says…Cybersecurity Remains A Critical Challenge For Business

Privacy and Cybersecurity Law

MARCH 23, 2018

In its Global Risk Report 2017 , the World Economic Forum found that “large-scale cyber-attacks or malware causing large economic damages” or “widspread loss of trust in the internet” remain the primary business risks in North America.

Cybersecurity

Cybersecurity Artificial Intelligence Data breaches IoT

US Government Accountability Office Releases New Report On The Internet of Things (IoT)

Privacy and Cybersecurity Law

MAY 19, 2017

On May 15, 2017, the US Government Accountability Office (GAO) released a new report entitled “Internet of Things: Status and implications of an […].

Internet

Internet Internet Government Accountability

NIST Releases Draft Guidance On Securing Wireless Infusion Pumps In The Healthcare Industry

Privacy and Cybersecurity Law

MAY 10, 2017

On May 8, 2017, the National Institute of Standards and Technology (NIST), through its National Cybersecurity Center of Excellence (NCCoE), […].

Wireless

Wireless Healthcare Technology Cybersecurity

FBI Warns Cyber Criminals Are Targeting Unsecured FTP Servers In The Healthcare Industry

Privacy and Cybersecurity Law

MAY 3, 2017

On March 22, 2017, the FBI issued a Private Industry Notification, warning that criminal actors are actively targeting File Transfer Protocol […].

Healthcare

Healthcare Consumer Protection Data breaches

SEC Issues Cybersecurity Alert For Brokers And Financial Advisers

Privacy and Cybersecurity Law

MAY 18, 2017

On May 17, 2017, the US Securities and Exchange Commission (SEC), through its National Exam Program, issued a “Risk Alert” […].

Cybersecurity

Cybersecurity Risk Consumer Protection Data breaches

NIST Plans To Examine Internet of Things (IoT) For Its Cybersecurity Framework

Privacy and Cybersecurity Law

MAY 17, 2017

NIST is accepting public comment on the new draft guidance through July 7, 2017. NIST’s focus on the IoT sector also comes as the IoT sector is coming under greater regulatory scrutiny in the US. In 2015, the US Federal Trade Commission (FTC) issued guidance encouraging certain best practices in the IoT sector.

IoT

IoT Internet Internet Cybersecurity

SEC Issues Cybersecurity Alert For Brokers And Financial Advisers

Privacy and Cybersecurity Law

MAY 18, 2017

On May 17, 2017, the US Securities and Exchange Commission (SEC), through its National Exam Program, issued a “ Risk Alert ” to broker-dealers, investment advisers and investment firms to advise them about the recent “WannaCry” ransomware attack and to encourage increased cybersecurity preparedness.

Cybersecurity

Cybersecurity Penetration Testing Risk Cyber Risk

US Government Accountability Office Releases New Report On The Internet of Things (IoT)

Privacy and Cybersecurity Law

MAY 19, 2017

On May 15, 2017, the US Government Accountability Office (GAO) released a new report entitled “ Internet of Things: Status and implications of an increasingly connected world.”

IoT

IoT Computers and Electronics Internet Internet

The Good, Bad, And The Ugly: Key Takeaways From California’s New Privacy Law

Privacy and Cybersecurity Law

NOVEMBER 8, 2018

In the aftermath of the Cambridge Analytica scandal, and in the footsteps of Europe’s General Data Protection Regulation (“GDPR”), California privacy advocates introduced a ballot initiative on October 12, 2017 called “The Consumer Right to Privacy Act of 2018” (No.

Government

Government Internet Internet Consumer Protection

The Good, Bad, And The Ugly: Key Takeaways From California’s New Privacy Law

Privacy and Cybersecurity Law

NOVEMBER 9, 2018

In the aftermath of the Cambridge Analytica scandal, and in the footsteps of Europe’s General Data Protection Regulation (“GDPR”), California privacy advocates introduced a ballot initiative on October 12, 2017 called “The Consumer Right to Privacy Act of 2018” (No.

Internet

Internet Internet Education Consumer Protection

Cyber Security Informer

Congressional Report on the 2017 Equifax Data Breach

Uber agrees to pay $148 million in massive 2016 data breach settlement

Trending Sources

New Mexico Becomes 48th State To Enact Data Breach Notification Law

Tennessee Adds New Encryption And Timing Requirements To Its Data Breach Notification Law

Me on the Equifax Breach

Scary Fraud Ensues When ID Theft & Usury Collide

New ABA Opinion – Attorneys Must Take Reasonable Cybersecurity Measures To Protect Client Data

Survey Says…Cybersecurity Remains A Critical Challenge For Business

US Government Accountability Office Releases New Report On The Internet of Things (IoT)

NIST Releases Draft Guidance On Securing Wireless Infusion Pumps In The Healthcare Industry

FBI Warns Cyber Criminals Are Targeting Unsecured FTP Servers In The Healthcare Industry

SEC Issues Cybersecurity Alert For Brokers And Financial Advisers

NIST Plans To Examine Internet of Things (IoT) For Its Cybersecurity Framework

SEC Issues Cybersecurity Alert For Brokers And Financial Advisers

US Government Accountability Office Releases New Report On The Internet of Things (IoT)

The Good, Bad, And The Ugly: Key Takeaways From California’s New Privacy Law

The Good, Bad, And The Ugly: Key Takeaways From California’s New Privacy Law

Stay Connected