NYDFS penalizes Carnival $5M for cybersecurity failures
By 
Jeff Dale2022-06-27T16:18:00
The New York State Department of Financial Services announced a $5 million penalty against Carnival Corp. for “significant” cybersecurity failures, including not implementing basic protocols to prevent four separate data breaches from 2019-21.
Related articles
-
ArticleEyeMed fined $4.5M over cybersecurity lapses that led to breach
EyeMed Vision Care agreed to pay $4.5 million as part of a settlement with the New York State Department of Financial Services for cybersecurity control failures that helped enable a 2020 data breach.
-
Article
Carnival reaches $1.25M settlement over 2019 data breach
Carnival Cruise Line reached a $1.25 million settlement with 46 attorneys general stemming from its 2019 data breach that involved the personal information of 180,000 Carnival employees and customers nationwide.
-
ArticleBig week for breaches: McDonald’s, Carnival, and more
Multiple high-profile companies—including Carnival, Wegmans, McDonald’s, Volkswagen, and CVS—have confirmed in recent days they were either victims of a data breach or were alerted to a gap in their security controls.
More from Regulatory Enforcement
-
ArticleOFAC cracks down on Iran’s oil trade with new sanctions sweep
More than 50 people and 50 ships connected to a top Iranian official were added to the U.S. Treasury’s sanctions list on Wednesday, according to the Office of Foreign Assets Control.
-
ArticleKentucky is latest state to file suit against Temu for alleged privacy violations
Kentucky took aim at Chinese company Temu, alleging in a lawsuit that it counterfeited popular Kentucky-designed merchandise and violated customers’ privacy.
-
ArticleU.S. Department of Labor cracks down on child labor violations
The Department of Labor is using poultry processing company Mar-Jac Poultry as an example of what will happen when companies repeatedly employ underage workers in hazardous conditions. Hint: Companies can’t pin the blame on staffing agencies.