Chegg avoids fine in deal with FTC over cybersecurity lapses
By 
Aaron Nicodemus2022-10-31T17:25:00
The Federal Trade Commission (FTC) ordered education technology provider Chegg to fix problems and weaknesses with its cybersecurity program that led to the exposure of personal and financial data of 40 million customers in four data breaches since 2017.
In agreeing to the order, Chegg promised to “bolster its data security, limit the data the company can collect and retain, offer users multifactor authentication to secure their accounts, and allow users to access and delete their data,” the FTC said Monday in a press release.
Chegg neither admitted nor denied any of the allegations in the FTC complaint, except as specifically stated in the decision, according to the FTC’s order.
Related articles
-
PodcastStudy: Compliance managers must set rules in race to adopt AI agents and copilots
More than half of all compliance teams are “actively using” or “piloting” AI applications, according to a Moody’s report. While most are focusing on streamlining routine tasks, some are developing AI agents and asking vital questions about AI decision-making.
-
ArticleFlorida seafood exec faces 10 years for crab claw price fixing
A Florida seafood company executive has pleaded guilty to conspiring with competitors to fix the prices he paid to local fishers, an effort that impacted more than $8 million in wholesale fish and cut the pay of hundreds of fishers, the Department of Justice said.
-
ArticleFormer U.S. clothing business CEO faces 25 years for bribery in Honduras
The former CEO of a Georgia clothing business faces 25 years in prison for bribing Honduran officials to win $10 million in uniform contracts in Honduras, after being caught up in a Department of Justice Anticorruption Task Force.
More from Regulatory Enforcement
-
News BriefDOJ sues Uber over alleged discrimination against disabled riders
The DOJ sued Uber Thursday, alleging it violated the Americans with Disabilities Act (ADA) by denying people with disabilities equal access to its services.
-
ArticleEU targets crypto, fintech firms in push to tackle money laundering
Europe’s banking regulator warns that weak compliance at fintech, regtech, and crypto firms may let money laundering and terrorist financing risks slip through. The EBA also found EU regulators’ approaches are often inconsistent and unclear.
-
ArticleCalifornia, Colorado, and Connecticut launch joint crackdown on privacy violators
California, Colorado, and Connecticut launched a joint enforcement sweep against businesses that fail to honor consumers’ online opt-out requests, the states announced Tuesday.