Consumer Protection, Data breaches and Government

Congressional Report on the 2017 Equifax Data Breach

Schneier on Security

DECEMBER 19, 2018

The US House of Representatives Committee on Oversight and Government Reform has just released a comprehensive report on the 2017 Equifax hack. Here is my testimony before before the House Subcommittee on Digital Commerce and Consumer Protection last November. Lance Spitzner also commented on this.

Data breaches

Data breaches Consumer Protection Government Hacking

CafePress faces $500,000 fine for data breach cover up

Malwarebytes

MARCH 16, 2022

The US Federal Trade Commission (FTC) has announced that it took action against online customized merchandise platform CafePress over allegations that it failed to secure consumers’ sensitive personal data and covered up a major breach. CafePress has already settled with seven US states as a result of this data breach.

Data breaches

Data breaches Passwords Authentication Social Engineering

How Thales and Red Hat Protect Telcos from API Attacks

Thales Cloud Protection & Licensing

FEBRUARY 21, 2024

Over the past year, the Telecom industry has suffered some massive, high-profile data breaches — all of which happened by exploiting unprotected APIs. These include breaches on major operators such as T-Mobile. These large subscriber bases in turn generate massive data volumes.

Encryption

Encryption Mobile Government Consumer Protection

Tennessee Adds New Encryption And Timing Requirements To Its Data Breach Notification Law

Privacy and Cybersecurity Law

APRIL 28, 2017

On April 4, 2017, Tennessee Governor Bill Haslam signed into law an amendment to the state’s data breach notification law, making two […].

Data breaches

Data breaches Encryption Consumer Protection Government

The Evolving Legislative and Compliance Landscape: A Roadmap for Business Leaders

Thales Cloud Protection & Licensing

APRIL 29, 2024

The Thales 2024 Trust Index report indicates that 87% of consumers expect vendors to respect their digital rights, which leads to trusted relationships. However, a relentless barrage of data breaches, ransomware attacks, and sophisticated cyber threats steadily erodes this trust.

Risk

Risk Manufacturing Digital transformation Cybersecurity

Cybersecurity Report: June 29, 2015

SiteLock

AUGUST 27, 2021

US to Raise Breach of Government Records at Talks with China. This Monday, The United States began the annual security talks with China and an official said that the US government representative would raise directly the major data breach at OPM during the discussion.

Cybersecurity

Cybersecurity Surveillance Government Consumer Protection

Security Compliance & Data Privacy Regulations

eSecurity Planet

AUGUST 9, 2022

GDPR, the EU’s flagship data privacy and “right to be forgotten” regulation, has made the stakes of a data breach higher than ever. See the Top Governance, Risk and Compliance (GRC) Tools. Health data and patient data in the U.S. Financial Data Protection Laws. In the U.S.,

Data privacy

Data privacy Encryption Data breaches Insurance

The Evolving Legislative and Compliance Landscape: A Roadmap for Business Leaders

Security Boulevard

APRIL 29, 2024

The Thales 2024 Trust Index report indicates that 87% of consumers expect vendors to respect their digital rights, which leads to trusted relationships. However, a relentless barrage of data breaches, ransomware attacks, and sophisticated cyber threats steadily erodes this trust.

Risk

Risk Manufacturing Cybersecurity Digital transformation

How Thales and Red Hat Protect Telcos from API Attacks

Security Boulevard

FEBRUARY 21, 2024

Over the past year, the Telecom industry has suffered some massive, high-profile data breaches — all of which happened by exploiting unprotected APIs. These include breaches on major operators such as T-Mobile. These large subscriber bases in turn generate massive data volumes.

Encryption

Encryption Mobile Government Consumer Protection

It’s a Holiday Security Breach Blowout

SiteLock

AUGUST 27, 2021

It’s a heartwarming tale of multiple mass data compromises, which affected yours truly. We’ll also discuss how major data breaches occur, and what you can do to protect yourself in the Age of the Large Data Breach. How Website Security Breaches Occur. Last week was special.

Data breaches

Data breaches Identity Theft Passwords Firewall

US Government Accountability Office Releases New Report On The Internet of Things (IoT)

Privacy and Cybersecurity Law

MAY 19, 2017

On May 15, 2017, the US Government Accountability Office (GAO) released a new report entitled “Internet of Things: Status and implications of an […].

Internet

Internet Internet Government Accountability

CISA, SolarWinds up interest in security scoring

SC Magazine

FEBRUARY 10, 2021

Government agencies don’t make endorsements necessarily but they’re identifying security ratings as a cyber risk metric. CISA focuses on critical infrastructure, which includes a number of sectors such as health care and energy and transportation and includes the government. A rating is more than just a number.

Cyber Insurance

Cyber Insurance Insurance Cyber Risk Government

Me on the Equifax Breach

Schneier on Security

NOVEMBER 8, 2017

Hearing on "Securing Consumers' Credit Data in the Age of Digital Commerce". Subcommittee on Digital Commerce and Consumer Protection. Mister Chairman and Members of the Committee, thank you for the opportunity to testify today concerning the security of credit data. We need effective regulation of data brokers.

Computers and Electronics

Computers and Electronics Identity Theft Internet Internet

Scary Fraud Ensues When ID Theft & Usury Collide

Krebs on Security

JANUARY 25, 2022

Then in mid-January, Jim heard from MSF via snail mail that they’d discovered a data breach. MSF said the personal information involved in this incident may have included name, date of birth, government-issued identification numbers (e.g., 14, 2022 breach notification letter from tribal lender Mountain Summit Financial.

Financial Services

Financial Services Banking Accountability Identity Theft

New Federal Privacy Law Legislation Introduced

SecureWorld News

MARCH 18, 2021

According to a statement from DelBene, 70% of Americans believe their data is less secure now than it was five years ago, and 45% say they had their personal information compromised in a data breach with limited to no accountability for those responsible.

Data privacy

Data privacy Consumer Protection Data breaches Technology

The Good, Bad, And The Ugly: Key Takeaways From California’s New Privacy Law

Privacy and Cybersecurity Law

NOVEMBER 8, 2018

This ostensibly would include employees of businesses, individuals who enter into commercial transactions with other businesses, and non-consumers of particular business. The CCPA governs how businesses treat “consumer” “personal information.” What Is Covered?

Government

Government Internet Internet Consumer Protection

The Good, Bad, And The Ugly: Key Takeaways From California’s New Privacy Law

Privacy and Cybersecurity Law

NOVEMBER 9, 2018

This ostensibly would include employees of businesses, individuals who enter into commercial transactions with other businesses, and non-consumers of particular business. The CCPA governs how businesses treat “consumer” “personal information.” What Is Covered?

Internet

Internet Internet Education Consumer Protection

IRS Warns About New Cyber Scam Targeting Taxpayers

Privacy and Cybersecurity Law

MARCH 6, 2018

Last month, the United States (US) Internal Revenue Service (IRS) issued a warning to US taxpayers that cyber criminals are increasing their […].

Scams

Scams Consumer Protection Data breaches Government

HHS Plans To Launch Cybersecurity Center Focused On Medical App Security

Privacy and Cybersecurity Law

MAY 10, 2017

The US Department of Health and Human Services (HHS) announced on April 20 that it plans to launch a cybersecurity initiative modeled […].

Cybersecurity

Cybersecurity Consumer Protection Data breaches Government

US Government Accountability Office Releases New Report On The Internet of Things (IoT)

Privacy and Cybersecurity Law

MAY 19, 2017

On May 15, 2017, the US Government Accountability Office (GAO) released a new report entitled “ Internet of Things: Status and implications of an increasingly connected world.” As IoT technology increases, so too will the regulatory landscape governing its use.

IoT

IoT Computers and Electronics Internet Internet

California Passes First Of Its Kind IoT Cybersecurity Law

Privacy and Cybersecurity Law

NOVEMBER 6, 2018

Since 2014, the FDA has issued guidance governing the cybersecurity requirements for regulated medical devices. Code § 1798.91.06(d)) d)) This would ostensibly include connected medical devices that are regulated by the U.S. Food and Drug Administration (FDA).

IoT

IoT Cybersecurity Manufacturing Technology

California Passes First Of Its Kind IoT Cybersecurity Law

Privacy and Cybersecurity Law

NOVEMBER 5, 2018

Since 2014, the FDA has issued guidance governing the cybersecurity requirements for regulated medical devices. Code § 1798.91.06(d)) d)) This would ostensibly include connected medical devices that are regulated by the U.S. Food and Drug Administration (FDA).

IoT

IoT Cybersecurity Manufacturing Technology

HHS Issues Quick Response Cyber Attack Checklist

Privacy and Cybersecurity Law

JULY 13, 2017

The OCR’s checklist makes clear that preparing for, and responding quickly to any potential breach should be a priority for HIPPA covered entities and their business associates.

Cyber Attacks

Cyber Attacks Cyber threats Healthcare Technology

IRS Warns About New Cyber Scam Targeting Taxpayers

Privacy and Cybersecurity Law

MARCH 6, 2018

Last month, the United States (US) Internal Revenue Service (IRS) issued a warning to US taxpayers that cyber criminals are increasing their efforts to steal more detailed financial information from taxpayers in order to provide a more detailed, realistic tax return and better impersonate legitimate taxpayers.

Scams

Scams Identity Theft Banking Retail

Cyber Security Informer

Congressional Report on the 2017 Equifax Data Breach

CafePress faces $500,000 fine for data breach cover up

Trending Sources

How Thales and Red Hat Protect Telcos from API Attacks

Tennessee Adds New Encryption And Timing Requirements To Its Data Breach Notification Law

The Evolving Legislative and Compliance Landscape: A Roadmap for Business Leaders

Cybersecurity Report: June 29, 2015

Security Compliance & Data Privacy Regulations

The Evolving Legislative and Compliance Landscape: A Roadmap for Business Leaders

How Thales and Red Hat Protect Telcos from API Attacks

It’s a Holiday Security Breach Blowout

US Government Accountability Office Releases New Report On The Internet of Things (IoT)

CISA, SolarWinds up interest in security scoring

Me on the Equifax Breach

Scary Fraud Ensues When ID Theft & Usury Collide

New Federal Privacy Law Legislation Introduced

The Good, Bad, And The Ugly: Key Takeaways From California’s New Privacy Law

The Good, Bad, And The Ugly: Key Takeaways From California’s New Privacy Law

IRS Warns About New Cyber Scam Targeting Taxpayers

HHS Plans To Launch Cybersecurity Center Focused On Medical App Security

US Government Accountability Office Releases New Report On The Internet of Things (IoT)

California Passes First Of Its Kind IoT Cybersecurity Law

California Passes First Of Its Kind IoT Cybersecurity Law

HHS Issues Quick Response Cyber Attack Checklist

IRS Warns About New Cyber Scam Targeting Taxpayers

Stay Connected