All Cybersecurity articles – Page 10
-
Article
Uber CSO ruling fallout: Individual liability extends to data breach response
The case of the Uber chief security officer found guilty by a jury on two felonies for covering up a data breach and misleading federal regulators opens up another potential individual liability issue executives handling cyber incidents face, according to legal experts.
-
Article
EyeMed fined $4.5M over cybersecurity lapses that led to breach
EyeMed Vision Care agreed to pay $4.5 million as part of a settlement with the New York State Department of Financial Services for cybersecurity control failures that helped enable a 2020 data breach.
-
Article
Fashion retailer Zoetop to pay $1.9M over data breach response
Zoetop, parent company to online clothing retailers SHEIN and ROMWE, agreed to pay $1.9 million as part of a settlement with the New York Attorney General’s Office for failing to properly protect customer information compromised during a 2018 data breach.
-
Article
Cyber risk management lessons from Optus data breach
The Optus data breach should serve as a reminder for all organizations that cybersecurity incidents are serious business risks that are costly to make right.
-
Article
SEC to reopen comment on climate-related disclosure rule, data breach reporting after glitch
The Securities and Exchange Commission will reopen comment periods on 11 rulemaking releases put forward over the past year, including proposals regarding climate-related disclosures and reporting cybersecurity breaches, because of a glitch in its online comment system.
-
Article
Optus data breach fallout shows widespread impact of cybercrime
Optus isn’t alone in trying to calm public nerves and find out what happened to cause a breach that exposed the records of 9.8 million current and former customers. Australian government agencies are also attempting to fight fires and reassure citizens their personal info is safe.
-
Article
Ex-Uber security chief found guilty of obstructing FTC data breach probe
Joseph Sullivan, the former chief security officer of Uber Technologies, was found guilty of two felonies connected to allegations he covered up a massive data breach at the ridesharing company and misled federal regulators about Uber’s response.
-
Article
NetWalker hacker imprisoned 20 years for ransomware attacks
Sebastien Vachon-Desjardins, a former Canadian government employee who played part in widespread NetWalker ransomware attacks, was sentenced to 20 years in prison and ordered to forfeit the $21.5 million U.S. investigators said he received from his victims.
-
Article
Samsung facing class action alleging CCPA violations over data breaches
Samsung collected too much personal data from customers and failed to adequately secure it, leading to two data breaches this year and potentially millions of harmed individuals, a class-action lawsuit alleges.
-
Article
Experts: EU Cyber Resilience Act puts pressure on tech developers, users
The EU’s proposed Cyber Resilience Act primarily puts pressure on tech manufacturers to ensure the cybersecurity of their products, but companies also have a duty of care to use the most secure products available.
-
Article
Morgan Stanley unit fined $35M for mishandling customer data
Morgan Stanley Smith Barney agreed to pay $35 million to settle Securities and Exchange Commission charges it repeatedly disregarded the safeguarding of clients’ personal data in decommissioning local storage devices.
-
Article
U.S. sanctions Iran intelligence ministry over Albania cyberattack
Iran’s minister of intelligence, together with its Ministry of Intelligence and Security, were sanctioned by the Treasury Department’s Office of Foreign Assets Control for malicious cyber activities that threaten the national security of the United States and its allies.
-
Article
Details murky in Samsung’s second data breach this year
Samsung revealed a hacker accessed the personal data of an unspecified number of its U.S.-based customers, even after improving its cybersecurity systems following a previous breach earlier this year.
-
Article
U.S., Israel finalize deal on cybersecurity cooperation
The United States and Israel have finalized an agreement to work together to protect the financial sector from cybersecurity attacks, the U.S. Treasury Department announced.
-
Article
Judge OKs Robinhood $20M data breach settlement
Online stock trading platform and broker-dealer Robinhood Financial moved closer to paying $20 million as part of a class-action settlement with thousands of customers whose accounts were allegedly accessed by unauthorized users.
-
Article
Lawsuit: Lax Coinbase cybersecurity led to theft of customers’ crypto
Coinbase is the subject of a class-action lawsuit alleging cybersecurity failures at the cryptocurrency exchange are to blame for customer accounts losing thousands of dollars in crypto, with the company not doing enough to prevent further thefts.
-
Article
Twitter whistleblower says poor cybersecurity invites breaches, manipulation
Peiter Zatko, a former cybersecurity executive at Twitter, has blown the whistle on his observations of systemic data security lapses at the company, undercounting of fake accounts, and how the social media platform could be manipulated by foreign intelligence services.
-
Article
Cybersecurity, beneficial ownership lessons found in SEC fraud case
Charges levied by the Securities and Exchange Commission regarding an international scheme in which hackers accessed online brokerage accounts to manipulate stock prices impart cybersecurity and beneficial ownership lessons for compliance professionals.
-
Article
FTC seeks to expand authority on data breaches, commercial surveillance
The Federal Trade Commission is seeking comment on potential rules that would penalize companies that suffer data breaches due to lax cybersecurity protocols and punish firms that engage in abusive commercial surveillance practices.
-
Article
Proposed NIST cybersecurity guide incorporates HIPAA Security Rule
The National Institute of Standards and Technology is seeking comment on proposed guidance intended to help healthcare organizations that fall under the regulatory umbrella of the Health Insurance Portability and Accountability Act’s Security Rule.