Avast maintains it always acted “fully within legal bounds,” but the British cyber-security company terminated the provision of data to its analytics arm, Jumpshot, after being accused of putting users’ privacy at risk.
Cybersecurity
Posted inData Privacy
Facebook reveals $550M settlement for Illinois privacy lawsuit
Facebook has reached a $550 million settlement in principle in connection with a class-action lawsuit it faced in Illinois over violations of a state biometric law.
Posted inCybersecurity
SEC, NSA issue new cyber-security guidance
Two new guidance documents, one from the SEC’s Office of Compliance Inspections and Examinations and another from the National Security Agency, aim to help companies improve their cyber-security efforts, including managing vulnerabilities in the cloud.
Posted inData Privacy
Microsoft data leak points to expansive industry-wide security vulnerabilities
Microsoft made headlines when it was discovered that nearly 250 million customer service and support records were exposed on the Web through several unsecured cloud servers. But that’s only a glimpse into wider cloud-security weaknesses throughout the industry.
Posted inRegulatory Policy
Proposed bill seeks to help non-federal entities improve cyber-security
A new bill proposed by Congress would install a federal “cyber-security state coordinator” in each state to facilitate non-federal entities’ access to technical know-how, training, communications, and other resources for improved cyber-security.
Posted inData Privacy
Lawmakers push for FTC probe into Envestnet data sales
Democratic Sens. Ron Wyden and Sherrod Brown and Rep. Anna Eshoo sent a letter to the Federal Trade Commission urging the agency to investigate Envestnet’s selling practices regarding consumer financial data.
Posted inCybersecurity
Equifax must spend ‘a minimum of $1 billion’ for data security
A massive data breach that was “entirely preventable” will cost credit-reporting agency Equifax another $1 billion to beef up its cyber-security efforts.
Posted inRisk Management
Cyber-threats, regulatory change highlight top-10 risks study
Cyber-incidents, business interruption, and changes in legislation and regulation are the three biggest risks to companies globally, according to research by German insurer Allianz.
Posted inCybersecurity
FTC strengthens orders in data security cases
Chief compliance officers seeking more guidance from the Federal Trade Commission on how the agency has improved its orders in data security cases will find helpful a recent blog post by Andrew Smith, director of the Bureau of Consumer Protection.
Posted inRisk Management
U.S. government warns: Be prepared for Iran cyber war
The killing of Iranian general Qassem Soleimani in a U.S. airstrike may bring about cyber warfare, the U.S. government has warned in a security bulletin.
