All Data Breach articles – Page 6
-
Article
Regulators skeptical of Uber’s work to fix breach processes
A look at the trials and tribulations of taxi-app company Uber: data breaches it tried to keep hidden, how they were exposed, what Uber is doing to fix operations.
-
Blog
Exasperated Clayton briefs Senators on SEC breach
SEC Chairman Jay Clayton provided fresh insight into the Commission's recently annunced 2016 data breach during scheduled testimony before the Senate Banking Committee.
-
Blog
Senators want Equifax answers on clawbacks, disclosures
Sen. Elizabeth Warren (D-Mass.) and fellow senators have expanded their investigation into the recent Equifax breach, the company's response, and the possibility of executive pay clawbacks.
-
Blog
Hearings, investigations lie ahead for post-breach Equifax
The massive data breach that hit consumer credit rating firm Equifax is the catalyst for a run of Congressional hearings, new data protection legislation, and investigations by the Department of Justice and FTC.
-
Blog
New York AG launches formal investigation into Equifax breach
As part of a formal investigation into the massive breach involving credit-reporting agency Equifax, which has effected about 143 million U.S. consumers, New York Attorney General Eric Schneiderman sent a letter to Equifax seeking additional information about the breach.
-
Blog
Cyber-attack exposes consumer data at Equifax
The consumer credit reporting agency Equifax has announced a cyber-security incident that may have exposed the data of 143 million U.S. consumers. Credit card numbers for approximately 209,000 U.S. consumers were accessed.
-
ArticleData breach trends industry-by-industry
The 2017 Verizon Data Breach report is out, and it has some timely pointers for how healthcare, financial services, manufacturing, and retail organizations can improve their cyber-security.
-
Article
Data privacy and cyber-security considerations in M&A deals
The increasingly ominous specter of cyber-risk can cast a shadow over any merger or acquisition. But due-diligence practices can lower the risk.
-
Blog
More details emerge about Yahoo ‘security incidents’
Yahoo General Counsel Ronald Bell has resigned; CEO Marissa Mayer will not be paid her annual bonus; and, following several internal failings, the company has started to implement a number of corrective actions following a series of security breaches, in which it is now believed that more than one billion ...
-
Article
Identifying inside threats to cyber-security
To better manage and prevent insider-risk exposure, companies still have much to learn both from corporate data breaches of the past and from those that have developed best-in-class insider-threat programs. Jaclyn Jaeger has more.
-
Article
Internet of Things ramp-up expands compliance risk considerations
Companies are lacking at providing security testing for products manufactured with Internet of Things, reports David Bogoslaw.
-
Article
Before M&A, think cyber: what every board needs to know
Nothing can sideline a merger or acquisition quite so well as dodgy cyber-security compliance. Simone Petrella discusses what every board should know in advance.
-
Article
This is not a game: Scenario planning can help protect your organization’s reputation
With some 4,000 cyber-attacks occurring every day, compliance officers are looking for any solution to help protect their organization from cyber-risk. A method worth considering is wargaming: a simulation that provides a live example of what a cyber-attack might look like and illustrates what can be to better protect the ...
-
Blog
Auditing your data breach incident response plan
The time to discover when your data breach incident response plan actually works is not in the middle of data breach. Jose Tabuena offers some insights on how to make sure that the incident response plan in place is actually up to the task.
-
Article
SEC Pushes New Limits on Cyber-Security, Securities Fraud
Another byproduct of life in the cyber-security age: The SEC is redefining insider trading to focus more on improper trading, even if you are a thief mining a company for inside information without actually working there. The misconduct—called, yes, “outsider trading”—seems to be an SEC-enforceable offense so far, and it ...
-
Article
Data Governance 101: Getting Started
Amassing terabytes of data is easy; for most businesses, managing those valuable—and sometimes very risky—assets is the hard part. A successful data governance initiative, experts say, isn’t a project you can hand off to the IT department or solve with a software purchase. Compliance, audit, and risk executives all need ...
-
Blog
Retailers Decry Prospect of Bank-Like Data Security Rules
The National Retail Federation is asking Congress to reject any legislation that would impose data security rules designed for the banking industry upon non-bank businesses. An overly broad expansion of data security standards similar to Gramm-Leach-Bliley Act guidelines would “be a serious error,” it says.
-
Article
When State Attorneys General Come Knocking
Sometimes a sheriff arrives from the federal government to take an enforcement action against your company, and sometimes a posse of state attorneys general follow behind, determined to investigate you too. Such is the case for JP Morgan, now being pressed by 19 states for more detail on its massive ...
-
Blog
JPMorgan Breach Leads to Multi-State Probe
The attorneys general of 19 states have launched a joint investigation into JP Morgan, in the wake of its massive data breach last year that affected 76 million households and millions more small businesses. In a letter to JP Morgan sent last month, the states present a long list of ...
-
Blog
TD Bank to Pay $625K for Data Breach
TD Bank this week reached a $625,000 settlement with the Massachusetts Attorney General’s Office after losing unencrypted back-up tapes containing personal information of more than 260,000 consumers nationwide, and delaying notice of the incident. The final settlement amounted to $825,000, but the AG’s Office credited the bank $200,000 to reflect ...