All Data Breach articles – Page 6

  • Blog

    Senators want Equifax answers on clawbacks, disclosures


    Sen. Elizabeth Warren (D-Mass.) and fellow senators have expanded their investigation into the recent Equifax breach, the company's response, and the possibility of executive pay clawbacks.

  • Blog

    Hearings, investigations lie ahead for post-breach Equifax


    The massive data breach that hit consumer credit rating firm Equifax is the catalyst for a run of Congressional hearings, new data protection legislation, and investigations by the Department of Justice and FTC.

  • Blog

    New York AG launches formal investigation into Equifax breach


    As part of a formal investigation into the massive breach involving credit-reporting agency Equifax, which has effected about 143 million U.S. consumers, New York Attorney General Eric Schneiderman sent a letter to Equifax seeking additional information about the breach.

  • Blog

    Cyber-attack exposes consumer data at Equifax


    The consumer credit reporting agency Equifax has announced a cyber-security incident that may have exposed the data of 143 million U.S. consumers. Credit card numbers for approximately 209,000 U.S. consumers were accessed.

  • databreachtop

    Data breach trends industry-by-industry


    The 2017 Verizon Data Breach report is out, and it has some timely pointers for how healthcare, financial services, manufacturing, and retail organizations can improve their cyber-security.

  • Article

    Data privacy and cyber-security considerations in M&A deals


    The increasingly ominous specter of cyber-risk can cast a shadow over any merger or acquisition. But due-diligence practices can lower the risk.

  • Blog

    More details emerge about Yahoo ‘security incidents’


    Yahoo General Counsel Ronald Bell has resigned; CEO Marissa Mayer will not be paid her annual bonus; and, following several internal failings, the company has started to implement a number of corrective actions following a series of security breaches, in which it is now believed that more than one billion ...

  • Article

    Identifying inside threats to cyber-security


    To better manage and prevent insider-risk exposure, companies still have much to learn both from corporate data breaches of the past and from those that have developed best-in-class insider-threat programs. Jaclyn Jaeger has more.

  • Article

    Internet of Things ramp-up expands compliance risk considerations


    Companies are lacking at providing security testing for products manufactured with Internet of Things, reports David Bogoslaw.

  • Article

    Before M&A, think cyber: what every board needs to know


    Nothing can sideline a merger or acquisition quite so well as dodgy cyber-security compliance. Simone Petrella discusses what every board should know in advance.

  • Article

    This is not a game: Scenario planning can help protect your organization’s reputation


    With some 4,000 cyber-attacks occurring every day, compliance officers are looking for any solution to help protect their organization from cyber-risk. A method worth considering is wargaming: a simulation that provides a live example of what a cyber-attack might look like and illustrates what can be to better protect the ...

  • Blog

    Auditing your data breach incident response plan


    The time to discover when your data breach incident response plan actually works is not in the middle of data breach. Jose Tabuena offers some insights on how to make sure that the incident response plan in place is actually up to the task.

  • Article

    SEC Pushes New Limits on Cyber-Security, Securities Fraud


    Another byproduct of life in the cyber-security age: The SEC is redefining insider trading to focus more on improper trading, even if you are a thief mining a company for inside information without actually working there. The misconduct—called, yes, “outsider trading”—seems to be an SEC-enforceable offense so far, and it ...

  • Article

    Data Governance 101: Getting Started


    Amassing terabytes of data is easy; for most businesses, managing those valuable—and sometimes very risky—assets is the hard part. A successful data governance initiative, experts say, isn’t a project you can hand off to the IT department or solve with a software purchase. Compliance, audit, and risk executives all need ...

  • Blog

    Retailers Decry Prospect of Bank-Like Data Security Rules


    The National Retail Federation is asking Congress to reject any legislation that would impose data security rules designed for the banking industry upon non-bank businesses. An overly broad expansion of data security standards similar to Gramm-Leach-Bliley Act guidelines would “be a serious error,” it says.

  • Article

    When State Attorneys General Come Knocking


    Sometimes a sheriff arrives from the federal government to take an enforcement action against your company, and sometimes a posse of state attorneys general follow behind, determined to investigate you too. Such is the case for JP Morgan, now being pressed by 19 states for more detail on its massive ...

  • Blog

    JPMorgan Breach Leads to Multi-State Probe


    The attorneys general of 19 states have launched a joint investigation into JP Morgan, in the wake of its massive data breach last year that affected 76 million households and millions more small businesses. In a letter to JP Morgan sent last month, the states present a long list of ...

  • Blog

    TD Bank to Pay $625K for Data Breach


    TD Bank this week reached a $625,000 settlement with the Massachusetts Attorney General’s Office after losing unencrypted back-up tapes containing personal information of more than 260,000 consumers nationwide, and delaying notice of the incident. The final settlement amounted to $825,000, but the AG’s Office credited the bank $200,000 to reflect ...

  • Article

    Companies Struggle Over When to Report They’ve Been Hacked


    Image: When a company discovers that sensitive data has been compromised, two of the toughest decisions that it faces are whether and when to let regulators, customers, and the public know about the loss. While companies may be hesitant, government officials say they can help. “Getting search warrants, arrest warrants, ...