NYDFS penalizes Carnival $5M for cybersecurity failures
By 
Jeff Dale2022-06-27T16:18:00
The New York State Department of Financial Services announced a $5 million penalty against Carnival Corp. for “significant” cybersecurity failures, including not implementing basic protocols to prevent four separate data breaches from 2019-21.
THIS IS MEMBERS-ONLY CONTENT
You are not logged in and do not have access to members-only content.
If you are already a registered user or a member, SIGN IN now.
Related articles
-
ArticleEyeMed fined $4.5M over cybersecurity lapses that led to breach
EyeMed Vision Care agreed to pay $4.5 million as part of a settlement with the New York State Department of Financial Services for cybersecurity control failures that helped enable a 2020 data breach.
-
Article
Carnival reaches $1.25M settlement over 2019 data breach
Carnival Cruise Line reached a $1.25 million settlement with 46 attorneys general stemming from its 2019 data breach that involved the personal information of 180,000 Carnival employees and customers nationwide.
-
ArticleBig week for breaches: McDonald’s, Carnival, and more
Multiple high-profile companies—including Carnival, Wegmans, McDonald’s, Volkswagen, and CVS—have confirmed in recent days they were either victims of a data breach or were alerted to a gap in their security controls.
More from Regulatory Enforcement
-
ArticleU.K. regulators move to curb AI nudification tools as scrutiny of Grok grows
The U.K. government’s spat with Big Tech owner Elon Musk over the more risque capabilities of X’s AI assistant Grok has exposed more cracks than the chatbot was ever meant to.
-
ArticleFTC files contempt against credit card processor Cliq for alleged ongoing compliance failures
The Federal Trade Commission asked a court to hold the payment processor Cliq in contempt for allegedly “flagrantly” violating a 2015 order that the company monitor transactions for illegal charges and activity.
-
ArticleSEC drops all charges against former Rio Tinto CFO related to coal valuation
The U.S. Securities and Exchange Commission dropped its case against Rio Tinto’s former chief financial officer, who has battled charges for eight years.