The DOJ announced four members of the Chinese military have been indicted on charges of hacking into the computer systems of Equifax, ultimately resulting in the largest-ever breach of consumer data. From an ERM standpoint, the indictment offers an inside look at the making of a Chinese cyber-attack.
Technology
Posted inTechnology
NIST seeks comment on ransomware, cyber-attack guidance
The National Institute of Standards and Technology is seeking input on a trio of draft guidance published in the past week. Two of the drafts address ransomware attacks, and the third addresses protecting against cyber-attacks in the supply chain.
Posted inRegulatory Enforcement
Report: DOJ zeroes in on Google’s ad brokerage business as probe intensifies
The DOJ’s scrutiny of Google’s online ad business reflects growing concerns over the tech giant’s potentially anticompetitive behavior, prompts the reclusion of an antitrust enforcement official from the probe, and points to closer coordination between federal and state authorities.
Posted inData Privacy
CCPA cited in Hanna Andersson/Salesforce breach lawsuit
A lawsuit filed against online retailer Hanna Andersson and its e-commerce platform Salesforce is among the first to cite the fledgling California Consumer Privacy Act in its judgment sought.
Posted inData Privacy
Mastercard CEO lists Libra red flags as reason for exit
Mastercard CEO Ajay Banga cites concerns with compliance, data management, and making money within regulatory constraints among the reasons his company left the Facebook-led Libra Association late last year.
Posted inData Privacy
10 things you need to know about CCPA compliance
As the CCPA enforcement deadline arrives, here are some boxes you’ll need to make sure your company has checked.
Posted inEthics & Culture
First four ‘Excellence in Compliance Awards’ finalists revealed
Compliance Week is proud to announce its first four finalists for the “Excellence in Compliance Awards,” a newly formed program that recognizes individual achievement in one of 13 categories relating to risk and compliance.
Posted inData Privacy
Facebook reveals $550M settlement for Illinois privacy lawsuit
Facebook has reached a $550 million settlement in principle in connection with a class-action lawsuit it faced in Illinois over violations of a state biometric law.
Posted inData Privacy
Microsoft data leak points to expansive industry-wide security vulnerabilities
Microsoft made headlines when it was discovered that nearly 250 million customer service and support records were exposed on the Web through several unsecured cloud servers. But that’s only a glimpse into wider cloud-security weaknesses throughout the industry.
Posted inRisk Management
Six strategies for FinTech adoption in banking
Thomas Wan of the International Compliance Training Academy outlines strategies for navigating the dynamic terrain of FinTech adoption within the banking industry.
