NYDFS penalizes Carnival $5M for cybersecurity failures
By 
Jeff Dale2022-06-27T16:18:00
The New York State Department of Financial Services announced a $5 million penalty against Carnival Corp. for “significant” cybersecurity failures, including not implementing basic protocols to prevent four separate data breaches from 2019-21.
Related articles
-
ArticleEyeMed fined $4.5M over cybersecurity lapses that led to breach
EyeMed Vision Care agreed to pay $4.5 million as part of a settlement with the New York State Department of Financial Services for cybersecurity control failures that helped enable a 2020 data breach.
-
Article
Carnival reaches $1.25M settlement over 2019 data breach
Carnival Cruise Line reached a $1.25 million settlement with 46 attorneys general stemming from its 2019 data breach that involved the personal information of 180,000 Carnival employees and customers nationwide.
-
ArticleBig week for breaches: McDonald’s, Carnival, and more
Multiple high-profile companies—including Carnival, Wegmans, McDonald’s, Volkswagen, and CVS—have confirmed in recent days they were either victims of a data breach or were alerted to a gap in their security controls.
More from Regulatory Enforcement
-
News BriefDOJ clears $4.4 Billion T‑Mobile acquisition of UScellular
The U.S. Department of Justice arppoved T-Mobile’s acquisition of competitor UScellular. The move came a day after T-Mobile announced it had dropped its diversity, equity, and inclusion programs, a frequent target for Trump’s administration.
-
News BriefFlorida alleges that Robinhood Crypto’s fee disclosures are inaccurate
The state of Florida is investigating Robinhood Crypto for falsely claiming it charges the lowest fees for processing crypto transactions.
-
News BriefCVS hit with nearly $1 billion fine in Omnicare false claims verdict
CVS has vowed to appeal $948.8 million in fines and damages imposed by a judge Tuesday on its Omnicare unit, for billing Medicare for tens of thousands of false claims.