- About CW
- Topics
- Events
- Research
- Awards
- CW Connect
- Membership
“For tracking litigation, enforcement, and regulatory developments, Compliance Week
should be your prime source.”- Chief Compliance Officer and VP of Legal Affairs, Arrow Electronics
NYDFS penalizes Carnival $5M for cybersecurity failures
By 
Jeff Dale2022-06-27T16:18:00
The New York State Department of Financial Services announced a $5 million penalty against Carnival Corp. for “significant” cybersecurity failures, including not implementing basic protocols to prevent four separate data breaches from 2019-21.
THIS IS MEMBERS-ONLY CONTENT
You are not logged in and do not have access to members-only content.
If you are already a registered user or a member, SIGN IN now.
Related articles
-
ArticleEyeMed fined $4.5M over cybersecurity lapses that led to breach
EyeMed Vision Care agreed to pay $4.5 million as part of a settlement with the New York State Department of Financial Services for cybersecurity control failures that helped enable a 2020 data breach.
-
Article
Carnival reaches $1.25M settlement over 2019 data breach
Carnival Cruise Line reached a $1.25 million settlement with 46 attorneys general stemming from its 2019 data breach that involved the personal information of 180,000 Carnival employees and customers nationwide.
-
ArticleBig week for breaches: McDonald’s, Carnival, and more
Multiple high-profile companies—including Carnival, Wegmans, McDonald’s, Volkswagen, and CVS—have confirmed in recent days they were either victims of a data breach or were alerted to a gap in their security controls.
More from Regulatory Enforcement
-
ArticleU.K. reins in crypto firms to combat ‘scandal’ of freewheeling finfluencers
Up to 25,000 people a year in the U.K. are illegally promoting financial products or offering financial advice on social media, but none have yet appeared in court, according to the first Treasury Select Committee meeting on the subject of so-called “finfluencers.” Regulated financial services firms must comply with strict ...
-
Basic PageSEC drops Binance lawsuit as Trump admin continues reshaping crypto enforcement
The Securities and Exchange Commission dropped its case against cryptocurrency exchange Binance, just the latest in a string of dismissals that highlight the SEC’s change of course under the crypto-friendly Trump administration.
-
PremiumUK regulator’s efforts to coax self-reporting fraud could fall flat, experts warn
To both clean up corporate behaviour and rack up its own enforcement record, the UK’s anti-bribery agency has seemingly largely guaranteed companies a pass from prosecution if they spill the beans on their misconduct. There’s only one problem: experts believe businesses may still stand a better outcome if they front ...