SecureWorld News

NOVEMBER 20, 2023

Federal Communications Commission (FCC) has adopted new rules aimed at enhancing security measures for cell phone accounts. SIM swapping involves the unauthorized transfer of a user's account to a SIM card controlled by malicious actors, achieved by convincing the victim's wireless carrier to make the change.

Mobile 108

Mobile Wireless Artificial Intelligence Accountability 108

Identity IQ

FEBRUARY 2, 2022

Recent regulatory insight into buy now, pay later highlights the risks tied to this growing credit option. The Consumer Financial Protection Bureau recently asked several buy now, pay later, or BNPL, providers for information related to some concerns it has about short-term installment plans.

Identity Theft 119

Identity Theft Consumer Protection Data collection Accountability 119

Malwarebytes

OCTOBER 22, 2021

Some target kids and steal their accounts, selling them on. As we’ve shown previously, you don’t even have to be on a gaming platform to be at risk from shenanigans. Tip: some gaming platforms will actually ban/cancel a gaming account by default should you ever reverse a dubious charge. Evaluating the download risk.

Accountability 115

Accountability Banking Scams Password Management 115

Security Affairs

FEBRUARY 2, 2019

“In the wake of this egregious bug that put the privacy of New Yorkers at risk, I support this investigation by the Attorney General into this serious consumer rights issue and direct the Division of Consumer Protection to help in any way possible,” Governor Cuomo announced. “We

Consumer Protection 104

Consumer Protection Advertising Media Engineering 104

eSecurity Planet

SEPTEMBER 21, 2024

Let’s explore what to expect from the upcoming regulations, provide insights into critical federal and state laws, and offer practical compliance and risk management strategies. Cybersecurity laws and regulations encompass a range of legal requirements designed to protect information systems and data from cyber threats.

Cybersecurity 121

Cybersecurity Computers and Electronics Cyber threats Healthcare 121

SC Magazine

MARCH 10, 2021

Kottmann also reportedly even posted some of the videos on Twitter, which later deleted the hacker’s account and their offending tweets. Thought leaders advise reducing or eliminating the use of these skeleton key-like accounts. Or another video in which Massachusetts police officers were questioning a handcuffed man in custody.

Surveillance 129

Surveillance IoT Accountability Passwords 129

Centraleyes

SEPTEMBER 24, 2024

2021 Hawaii Privacy Bills HB125 (Enacted into Law) In 2021, the Governor of Hawai‘i signed into law (HB125) the Uniform Employee and Student Online Privacy Protection Act creating additional protections for student privacy, and this time imposing liability directly on educational institutions. They were not enacted into law.

Consumer Protection 52

Consumer Protection Education Data privacy Accountability 52

SiteLock

AUGUST 27, 2021

Data breaches stole numerous headlines this year, including the notable Capital One breach that exposed more than 100 million customers’ accounts. This allows the attacker unauthorized access to numerous accounts or servers, putting the end-user’s information at risk. In comparison to last year, research. Given that over 2.5

Cybersecurity 98

Cybersecurity Phishing Data breaches IoT 98

Centraleyes

AUGUST 28, 2024

SB 205, the Colorado AI Act, is a pioneering effort to establish a regulatory framework for AI systems, particularly those classified as “high-risk.” ” This legislation aims to protect consumers from the potential harms of AI by imposing strict requirements on developers and deployers of high-risk AI systems.

Artificial Intelligence 52

Artificial Intelligence Consumer Protection Risk Technology 52

Hot for Security

FEBRUARY 2, 2021

During the pandemic, practically everyone—families, schools, social groups, businesses—is using videoconferencing to communicate, making the security of these platforms more critical than ever,” Andrew Smith, Director of the FTC’s Bureau of Consumer Protection, said in November.

Encryption 86

Encryption Consumer Protection Surveillance Data breaches 86

SecureWorld News

MARCH 18, 2021

This bill will create those critical protections. If we do not have a clear domestic policy, we will not be able to shape standards abroad, and risk letting others, like the European Union, drive global policy.". This is an international issue as much as it is a domestic concern.

Data privacy 97

Data privacy Consumer Protection Data breaches Technology 97

Privacy and Cybersecurity Law

MAY 19, 2017

On May 15, 2017, the US Government Accountability Office (GAO) released a new report entitled “ Internet of Things: Status and implications of an increasingly connected world.” With these benefits comes potential risk. Potential Implications. Information security.

IoT 40

IoT Computers and Electronics Internet Internet 40

Malwarebytes

AUGUST 7, 2023

Anyone taking the bait stands a good chance of losing control of their personal data or suffering from all manner of dubious payments leaving their bank account. In the meantime, we will keep using the tools we have to hold those behind fraudulent calling schemes accountable. These calls promise much but give very little.

Scams 90

Scams Mobile Consumer Protection Technology 90

Centraleyes

DECEMBER 2, 2024

Modeled after similar data protection laws across the United States, the IDPA establishes clear guidelines for businesses on the collection, processing, and sharing of personal information. These rights empower individuals to make informed decisions about their digital footprint while holding businesses accountable for privacy practices.

Advertising 52

Advertising Consumer Protection Accountability Data collection 52

Pen Test Partners

FEBRUARY 22, 2024

Such policies are crucial for a collaborative security posture, encouraging responsible vulnerability disclosure and ensuring that manufacturers can promptly address and mitigate risks. These penalties highlight the financial risks of failing to comply with the UK’s product security regulations.

Manufacturing 59

Manufacturing Passwords Telecommunications Cyber threats 59

Privacy and Cybersecurity Law

SEPTEMBER 15, 2021

These obligations of security assessment, security by design, and ethics by design, will mean that those involved will be held to ever-increasing levels of accountability and will require ever-stronger forms of collaboration. This is a fundamental goal of both the proposal and the GDPR. …and more. . …and more.

Artificial Intelligence 52

Artificial Intelligence Consumer Protection Technology Insurance 52

Centraleyes

JUNE 10, 2024

For example, an e-commerce company that collects customer information (like names, addresses, and payment details) to process orders and manage customer accounts, is considered a controller because in this case the company decides what data to collect, how it will be used (e.g., Essentially, it decides why and how personal data is processed.

Data collection 52

Data collection Data privacy Consumer Protection Data breaches 52

Identity IQ

DECEMBER 6, 2023

These emails may appear to be from legitimate retailers, offering enticing deals or requesting account verification. Many retailers offer secure delivery options, such as in-store pickup or lockers, which help reduce the risk of porch piracy. Never open attachments or click on links in emails from a sender you don’t recognize.

Scams 52

Scams Retail Identity Theft Antivirus 52

Centraleyes

APRIL 15, 2024

Response to Consumer Requests and Data Protection Assessments Controllers must respond to consumer requests within 45 days and conduct data protection assessments for processing activities presenting a heightened risk of harm. It is also mentioned in some well-known privacy laws, including GDPR and HIPAA.

Data privacy 52

Data privacy Identity Theft Data breaches Data collection 52

Privacy and Cybersecurity Law

FEBRUARY 18, 2022

How can the consumer opt-in to the program before entering their data in exchange for the incentive program? And does the program risk creating a claim of discrimination if the individual opts-out or deletes their data? collecting first-party data for ad measurement purposes, etc.).

B2B 52

B2B Retail Marketing Consumer Protection 52

Privacy and Cybersecurity Law

NOVEMBER 9, 2018

The CCPA requires the AG to provide opinions to “[a]ny business or third party” as well as warnings and an opportunity to cure before the business can be held accountable for a violation of the CCPA. race, religion, sexual orientation, gender identity, gender expression, age, etc.); o)(2)(i)-(ii). [5]

Internet 58

Internet Internet Consumer Protection Education 58

Privacy and Cybersecurity Law

NOVEMBER 8, 2018

The CCPA requires the AG to provide opinions to “[a]ny business or third party” as well as warnings and an opportunity to cure before the business can be held accountable for a violation of the CCPA. race, religion, sexual orientation, gender identity, gender expression, age, etc.);

Government 58

Government Internet Internet Consumer Protection 58

SecureWorld News

DECEMBER 27, 2024

Critical infrastructure is at risk, moreso thanks to AI. Kip Boyle, vCISO, Cyber Risk Opportunities LLC: The Challenge of Cultivating Buy-in from Leadership and Employees "Cybersecurity professionals will continue to face a critical challenge: cultivating genuine buy-in from both senior leaders and employees.

Cybersecurity 122

Cybersecurity Education Risk CISO 122

Schneier on Security

NOVEMBER 13, 2018

But like nearly all innovation, there are risks involved. And for products borne out of the Internet of Things, this means the risk of having personal information stolen or devices being overtaken and controlled remotely. Consumers will buy products without proper security features, unaware that their information is vulnerable.

IoT 263

IoT Manufacturing Internet Internet 263

Schneier on Security

NOVEMBER 8, 2017

Hearing on "Securing Consumers' Credit Data in the Age of Digital Commerce". Subcommittee on Digital Commerce and Consumer Protection. The Equifax breach was a serious security breach that puts millions of Americans at risk. And in 2014, the company reported yet another security breach of consumer information.

Computers and Electronics 223

Computers and Electronics Identity Theft Internet Internet 223

Centraleyes

JANUARY 12, 2025

Over the last decade, financial firms have been mandated to adopt new compliance frameworks at an unprecedented rate, partly due to the sector’s digital transformation and rising concerns around cybersecurity and consumer protection. FINRA oversees brokerage firms and exchange markets, enforcing regulations to protect investors.

Financial Services 52

Financial Services Data privacy Risk Banking 52

Thales Cloud Protection & Licensing

APRIL 29, 2024

Entities designated as "essential" or "important" by member states in all sectors of the economy and public services must implement robust security measures, including proactive risk management, incident reporting, and supply chain security. The DSA introduces tiered obligations based on platform size and reach. PCI DSS 4.0

Risk 71

Risk Manufacturing Digital transformation Cyber threats 71

The Last Watchdog

NOVEMBER 14, 2023

This directive significantly increases the penalties associated with misleading promotions, fake reviews and aggressive door-to-door selling, in order to strengthen consumer protection, especially for those who shop online. The text provides for heavy fines and even imprisonment for companies that do not ensure strict compliance.

Consumer Protection 100

Consumer Protection Marketing Technology Scams 100

Thales Cloud Protection & Licensing

SEPTEMBER 4, 2024

PSD2 Regulation and Compliance josh.pearson@t… Wed, 09/04/2024 - 23:44 The PSD2 directive is a cornerstone of payment legislation in Europe, designed to enhance consumer protection, foster innovation, and create a more integrated and secure European payment landscape. Initially, PSD2 was set to take full effect on September 14, 2019.

Banking 62

Banking Authentication Consumer Protection Marketing 62

eSecurity Planet

AUGUST 9, 2022

See the Top Governance, Risk and Compliance (GRC) Tools. are subject to laws such as the Health Insurance Portability and Accountability Act (HIPAA) and the Health Information Technology for Economic and Clinical Health Act (the HITECH Act), as well as regulations such as the Clinical Laboratory Improvements Amendments (CLIA).

Data privacy 145

Data privacy Encryption Data breaches Insurance 145

Security Boulevard

APRIL 29, 2024

Entities designated as "essential" or "important" by member states in all sectors of the economy and public services must implement robust security measures, including proactive risk management, incident reporting, and supply chain security. The DSA introduces tiered obligations based on platform size and reach. PCI DSS 4.0

Risk 72

Risk Manufacturing Digital transformation Cybersecurity 72

Centraleyes

FEBRUARY 1, 2024

In 2023, California remained at the forefront of the movement of states with consumer privacy laws by approving the final text of the California Privacy Rights Act regulations and inviting public comments on proposed rulemaking for cybersecurity audits, risk assessments, and automated decision-making.

Data privacy 52

Data privacy Consumer Protection Media Data collection 52

SC Magazine

JUNE 1, 2021

Consumers are increasingly holding companies more accountable and demand protections for their personal information. Increasing consumer concerns have inspired the growth of new privacy laws. Privacy has become a top-of-mind issue that revolves around consumer awareness, business practices, and legislative progress.

Data privacy 113

Data privacy Marketing Consumer Protection Media 113

Privacy and Cybersecurity Law

JUNE 18, 2020

Take account of cultural approaches: there are differences within EU and across US States and other jurisdictions Consider whether you apply GDPR globally as starting point. talking about DPIAs) or more global (e.g. talking about privacy assessments). How does local culture affect this? Many deploy more region-specific frameworks.

Data privacy 52

Data privacy Accountability Software Risk 52

Centraleyes

MAY 8, 2024

The AI revolution in finance presents numerous opportunities and, simultaneously, the potential for many risks , specifically regarding consumer protection. Financial institutions must emphasize trust-building measures by preserving data privacy and consumer protection to mitigate risk in AI systems.

Consumer Protection 52

Consumer Protection Banking Financial Services Government 52

Jane Frankland

JANUARY 12, 2025

In this blog, I’m exploring these changes, grouped under key categories that I’ve used in previous years, to help business leaders and cyber risk owners better prepare for the evolving landscape. Critical infrastructure face heightened risk from targeted disruptions, as do small businesses who are the backbone of the economy.

Cybersecurity 130

Cybersecurity CISO Insurance IoT 130

Centraleyes

MARCH 4, 2024

Take the European Union’s ambitious AI Act , for instance, with its far-reaching rules designed to rein in AI applications that pose unacceptable risks. The government has prioritized AI risk assessment and management, recognizing the importance of understanding algorithms’ decision-making processes.

Artificial Intelligence 52

Artificial Intelligence Government Consumer Protection Risk 52