Fashion retailer Zoetop to pay $1.9M over data breach response
By 
Adrianne Appel2022-10-17T17:37:00
Zoetop, parent company to online clothing retailers SHEIN and ROMWE, agreed to pay $1.9 million as part of a settlement with the New York Attorney General’s Office for failing to properly protect customer information compromised during a 2018 data breach.
Zoetop did not properly protect customer data before or after the breach and “downplayed the extent” of the incident, New York Attorney General Letitia James said in an Oct. 12 press release.
Zoetop didn’t know where on its system it stored customer credit card information, James alleged. It allowed some credit card transaction information to be stored in plain text, she said, and used an algorithm to protect customer passwords that was known to be weak.
Related articles
-
News BriefFHFA chief orders Fannie and Freddie to consider crypto assets in mortgage assessments
In another sign of President Donald Trump’s focus on cryptocurrency, the head of the U.S. Federal Housing Finance Agency (FHFA) ordered Fannie Mae and Freddie Mac to create proposals to consider crypto assets for a single-family home mortgage.
-
News BriefFinCEN bars three Mexican financial institutions for aiding cartels in fentanyl trade
Three Mexican financial institutions will be barred from transacting with U.S.-based banks after a U.S. Treasury agency determined that the institutions allowed their networks to aid the illegal fentanyl trade of Mexican criminal organizations.
-
News BriefFederal Reserve Board drops reputational risk from exams, aligning with OCC and FDIC shift
Bank examiners at the Federal Reserve Board will no longer assess reputational risk during examinations, a concession to the banking industry already underway with two other U.S. regulators.
More from Regulatory Enforcement
-
News BriefJudge reinstates fired CPSC commissioners in latest battle over government cuts
In May, three commissioners for the Consumer Product Safety Commission were abruptly fired by President Donald Trump and sued for their jobs shortly after. A federal judge has ruled that the commissioners should be reinstated, although it’s unclear whether that ruling may itself be reversed.
-
PremiumUK’s Failure to Prevent Fraud law may expose firms to unlimited fines and prosecution, says Moody’s compliance risk expert
Fraud now accounts for around 40% of all crime in the U.K., posing a major problem for banks and consumers. Ted Datta, head of industry practice for financial crime compliance at Moody’s, warns that the risk is growing fast.
-
ArticleCrypto firms brace for tighter UK oversight as FCA plots integration with financial markets
Trying to put rules in place to oversee an industry that has grown largely outside of regulation is not without serious challenges. But the UK’s Financial Conduct Authority’s (FCA) latest consultation aims to attract industry views about how some key aspects of crypto trading should be regulated ahead of planned ...