- About CW
- Topics
- Events
- Research
- Awards
- CW Connect
- Membership
“For tracking litigation, enforcement, and regulatory developments, Compliance Week
should be your prime source.”- Chief Compliance Officer and VP of Legal Affairs, Arrow Electronics
NYDFS penalizes Carnival $5M for cybersecurity failures
By 
Jeff Dale2022-06-27T16:18:00
The New York State Department of Financial Services announced a $5 million penalty against Carnival Corp. for “significant” cybersecurity failures, including not implementing basic protocols to prevent four separate data breaches from 2019-21.
Related articles
-
ArticleEyeMed fined $4.5M over cybersecurity lapses that led to breach
EyeMed Vision Care agreed to pay $4.5 million as part of a settlement with the New York State Department of Financial Services for cybersecurity control failures that helped enable a 2020 data breach.
-
Article
Carnival reaches $1.25M settlement over 2019 data breach
Carnival Cruise Line reached a $1.25 million settlement with 46 attorneys general stemming from its 2019 data breach that involved the personal information of 180,000 Carnival employees and customers nationwide.
-
ArticleBig week for breaches: McDonald’s, Carnival, and more
Multiple high-profile companies—including Carnival, Wegmans, McDonald’s, Volkswagen, and CVS—have confirmed in recent days they were either victims of a data breach or were alerted to a gap in their security controls.
More from Regulatory Enforcement
-
News BriefSEC Chair Atkins signals end to ‘regulation by enforcement’ in line with Trump’s pro-crypto agenda
The Securities and Exchange Commission Chair Paul Atkins explained his agency’s shift on cryptocurrency regulation to a Senate committee as legislators bargain over President Donald Trump’s “One Big Beautiful Bill” and the GENIUS Act, which would have the federal government invest heavily in cryptocurrency.
-
ArticleU.K. reins in crypto firms to combat ‘scandal’ of freewheeling finfluencers
Up to 25,000 people a year in the U.K. are illegally promoting financial products or offering financial advice on social media, but none have yet appeared in court, according to the first Treasury Select Committee meeting on the subject of so-called “finfluencers.” Regulated financial services firms must comply with strict ...
-
Basic PageSEC drops Binance lawsuit as Trump admin continues reshaping crypto enforcement
The Securities and Exchange Commission dropped its case against cryptocurrency exchange Binance, just the latest in a string of dismissals that highlight the SEC’s change of course under the crypto-friendly Trump administration.