Consumer Protection, Data breaches and Government

National Consumer Protection Week: Keeping your personal data safe in a digitally connected world

Webroot

MARCH 3, 2025

March is a time for leprechauns and four-leaf clovers, and as luck would have it, its also a time to learn how to protect your private data from cybercrime. Each year, the first week of March (March 2-8) is recognized as National Consumer Protection Week (NCPW).

Consumer Protection

Consumer Protection Identity Theft Scams Social Engineering

Congressional Report on the 2017 Equifax Data Breach

Schneier on Security

DECEMBER 19, 2018

The US House of Representatives Committee on Oversight and Government Reform has just released a comprehensive report on the 2017 Equifax hack. Here is my testimony before before the House Subcommittee on Digital Commerce and Consumer Protection last November. Lance Spitzner also commented on this.

Data breaches

Data breaches Consumer Protection Government Hacking

CafePress faces $500,000 fine for data breach cover up

Malwarebytes

MARCH 16, 2022

The US Federal Trade Commission (FTC) has announced that it took action against online customized merchandise platform CafePress over allegations that it failed to secure consumers’ sensitive personal data and covered up a major breach. CafePress has already settled with seven US states as a result of this data breach.

Data breaches

Data breaches Passwords Authentication Social Engineering

Me on the Equifax Breach

Schneier on Security

NOVEMBER 8, 2017

Hearing on "Securing Consumers' Credit Data in the Age of Digital Commerce". Subcommittee on Digital Commerce and Consumer Protection. Mister Chairman and Members of the Committee, thank you for the opportunity to testify today concerning the security of credit data. We need effective regulation of data brokers.

Computers and Electronics

Computers and Electronics Identity Theft Internet Internet

2024 Cybersecurity Laws & Regulations

eSecurity Planet

SEPTEMBER 21, 2024

The landscape of cybersecurity laws and regulations today is set to undergo significant changes, impacting businesses, government entities, and individuals alike. HIPAA also requires organizations to conduct regular risk assessments and report data breaches. What are Federal Cybersecurity Regulations?

Cybersecurity

Cybersecurity Computers and Electronics Cyber threats Healthcare

Security Compliance & Data Privacy Regulations

eSecurity Planet

AUGUST 9, 2022

GDPR, the EU’s flagship data privacy and “right to be forgotten” regulation, has made the stakes of a data breach higher than ever. See the Top Governance, Risk and Compliance (GRC) Tools. Health data and patient data in the U.S. Financial Data Protection Laws. In the U.S.,

Data privacy

Data privacy Encryption Data breaches Insurance

How Thales and Red Hat Protect Telcos from API Attacks

Thales Cloud Protection & Licensing

FEBRUARY 21, 2024

Over the past year, the Telecom industry has suffered some massive, high-profile data breaches — all of which happened by exploiting unprotected APIs. These include breaches on major operators such as T-Mobile. These large subscriber bases in turn generate massive data volumes.

Encryption

Encryption Mobile Government Consumer Protection

Scary Fraud Ensues When ID Theft & Usury Collide

Krebs on Security

JANUARY 25, 2022

Then in mid-January, Jim heard from MSF via snail mail that they’d discovered a data breach. MSF said the personal information involved in this incident may have included name, date of birth, government-issued identification numbers (e.g., 14, 2022 breach notification letter from tribal lender Mountain Summit Financial.

Financial Services

Financial Services Banking Accountability Identity Theft

Tennessee Adds New Encryption And Timing Requirements To Its Data Breach Notification Law

Privacy and Cybersecurity Law

APRIL 28, 2017

On April 4, 2017, Tennessee Governor Bill Haslam signed into law an amendment to the state’s data breach notification law, making two […].

Data breaches

Data breaches Encryption Consumer Protection Government

CISA, SolarWinds up interest in security scoring

SC Magazine

FEBRUARY 10, 2021

Government agencies don’t make endorsements necessarily but they’re identifying security ratings as a cyber risk metric. CISA focuses on critical infrastructure, which includes a number of sectors such as health care and energy and transportation and includes the government. A rating is more than just a number.

Cyber Insurance

Cyber Insurance Insurance Cyber Risk Government

Holiday Shopping Readiness: How is Retail Data Security Holding Up?

Thales Cloud Protection & Licensing

NOVEMBER 5, 2024

Consumers are guarding their privacy more than ever. Any operational downtime or even worse data loss due to a data breach could significantly impact customer loyalty and their highly anticipated holiday season revenues. According to a recent study, the average cost of a retail data breach in 2024 is reported to be $3.48

Retail

Retail Data breaches Digital transformation Risk

US Government Accountability Office Releases New Report On The Internet of Things (IoT)

Privacy and Cybersecurity Law

MAY 19, 2017

On May 15, 2017, the US Government Accountability Office (GAO) released a new report entitled “Internet of Things: Status and implications of an […].

Internet

Internet Internet Government Accountability

Cybersecurity Report: June 29, 2015

SiteLock

AUGUST 27, 2021

US to Raise Breach of Government Records at Talks with China. This Monday, The United States began the annual security talks with China and an official said that the US government representative would raise directly the major data breach at OPM during the discussion.

Cybersecurity

Cybersecurity Surveillance Government Software

New Federal Privacy Law Legislation Introduced

SecureWorld News

MARCH 18, 2021

According to a statement from DelBene, 70% of Americans believe their data is less secure now than it was five years ago, and 45% say they had their personal information compromised in a data breach with limited to no accountability for those responsible.

Data privacy

Data privacy Consumer Protection Data breaches Technology

Holiday Shopping Readiness: How is Retail Data Security Holding Up?

Security Boulevard

NOVEMBER 5, 2024

Consumers are guarding their privacy more than ever. Any operational downtime or even worse data loss due to a data breach could significantly impact customer loyalty and their highly anticipated holiday season revenues. According to a recent study, the average cost of a retail data breach in 2024 is reported to be $3.48

Retail

Retail Data breaches Digital transformation Risk

US Government Accountability Office Releases New Report On The Internet of Things (IoT)

Privacy and Cybersecurity Law

MAY 19, 2017

On May 15, 2017, the US Government Accountability Office (GAO) released a new report entitled “ Internet of Things: Status and implications of an increasingly connected world.” As IoT technology increases, so too will the regulatory landscape governing its use.

IoT

IoT Computers and Electronics Internet Internet

It’s a Holiday Security Breach Blowout

SiteLock

AUGUST 27, 2021

It’s a heartwarming tale of multiple mass data compromises, which affected yours truly. We’ll also discuss how major data breaches occur, and what you can do to protect yourself in the Age of the Large Data Breach. How Website Security Breaches Occur. Last week was special.

Data breaches

Data breaches Passwords Identity Theft Firewall

The Evolving Legislative and Compliance Landscape: A Roadmap for Business Leaders

Thales Cloud Protection & Licensing

APRIL 29, 2024

The Thales 2024 Trust Index report indicates that 87% of consumers expect vendors to respect their digital rights, which leads to trusted relationships. However, a relentless barrage of data breaches, ransomware attacks, and sophisticated cyber threats steadily erodes this trust.

Risk

Risk Manufacturing Digital transformation Cyber threats

How Thales and Red Hat Protect Telcos from API Attacks

Security Boulevard

FEBRUARY 21, 2024

Over the past year, the Telecom industry has suffered some massive, high-profile data breaches — all of which happened by exploiting unprotected APIs. These include breaches on major operators such as T-Mobile. These large subscriber bases in turn generate massive data volumes.

Encryption

Encryption Mobile Government Consumer Protection

The Evolving Legislative and Compliance Landscape: A Roadmap for Business Leaders

Security Boulevard

APRIL 29, 2024

The Thales 2024 Trust Index report indicates that 87% of consumers expect vendors to respect their digital rights, which leads to trusted relationships. However, a relentless barrage of data breaches, ransomware attacks, and sophisticated cyber threats steadily erodes this trust.

Risk

Risk Manufacturing Digital transformation Cybersecurity

The Good, Bad, And The Ugly: Key Takeaways From California’s New Privacy Law

Privacy and Cybersecurity Law

NOVEMBER 8, 2018

This ostensibly would include employees of businesses, individuals who enter into commercial transactions with other businesses, and non-consumers of particular business. The CCPA governs how businesses treat “consumer” “personal information.” What Is Covered?

Government

Government Consumer Protection Internet Internet

Top 6 Compliance Management Tools for Financial Services

Centraleyes

JANUARY 12, 2025

Over the last decade, financial firms have been mandated to adopt new compliance frameworks at an unprecedented rate, partly due to the sector’s digital transformation and rising concerns around cybersecurity and consumer protection. Ensure compliance with PCI DSS requirements through real-time dashboards and reports.

Financial Services

Financial Services Data privacy Risk Banking

The Good, Bad, And The Ugly: Key Takeaways From California’s New Privacy Law

Privacy and Cybersecurity Law

NOVEMBER 9, 2018

This ostensibly would include employees of businesses, individuals who enter into commercial transactions with other businesses, and non-consumers of particular business. The CCPA governs how businesses treat “consumer” “personal information.” What Is Covered?

Internet

Internet Internet Consumer Protection Education

HHS Issues Quick Response Cyber Attack Checklist

Privacy and Cybersecurity Law

JULY 13, 2017

The OCR’s checklist makes clear that preparing for, and responding quickly to any potential breach should be a priority for HIPPA covered entities and their business associates.

Cyber Attacks

Cyber Attacks Cyber threats Healthcare Ransomware

California Passes First Of Its Kind IoT Cybersecurity Law

Privacy and Cybersecurity Law

NOVEMBER 6, 2018

Since 2014, the FDA has issued guidance governing the cybersecurity requirements for regulated medical devices. Code § 1798.91.06(d)) d)) This would ostensibly include connected medical devices that are regulated by the U.S. Food and Drug Administration (FDA).

IoT

IoT Cybersecurity Manufacturing Technology

California Passes First Of Its Kind IoT Cybersecurity Law

Privacy and Cybersecurity Law

NOVEMBER 5, 2018

Since 2014, the FDA has issued guidance governing the cybersecurity requirements for regulated medical devices. Code § 1798.91.06(d)) d)) This would ostensibly include connected medical devices that are regulated by the U.S. Food and Drug Administration (FDA).

IoT

IoT Cybersecurity Manufacturing Technology

IRS Warns About New Cyber Scam Targeting Taxpayers

Privacy and Cybersecurity Law

MARCH 6, 2018

Last month, the United States (US) Internal Revenue Service (IRS) issued a warning to US taxpayers that cyber criminals are increasing their […].

Scams

Scams Consumer Protection Data breaches Government

HHS Plans To Launch Cybersecurity Center Focused On Medical App Security

Privacy and Cybersecurity Law

MAY 10, 2017

The US Department of Health and Human Services (HHS) announced on April 20 that it plans to launch a cybersecurity initiative modeled […].

Cybersecurity

Cybersecurity Consumer Protection Data breaches Government

IRS Warns About New Cyber Scam Targeting Taxpayers

Privacy and Cybersecurity Law

MARCH 6, 2018

Last month, the United States (US) Internal Revenue Service (IRS) issued a warning to US taxpayers that cyber criminals are increasing their efforts to steal more detailed financial information from taxpayers in order to provide a more detailed, realistic tax return and better impersonate legitimate taxpayers.

Scams

Scams Identity Theft Banking Retail

2025 Cybersecurity Predictions: Not Getting Easier; But There is Hope

SecureWorld News

DECEMBER 27, 2024

Zero Trust Architecture Becomes the Norm: Organizations will fully embrace Zero Trust principles, leading to better segmentation and control over data, even in hybrid and remote work environments. AI Governance Across Supply Chains: U.S.-based based organizations may identify AI Governance and security as an operational risk.

Cybersecurity

Cybersecurity Education Risk CISO

Key Cybersecurity Trends for 2025. My Predictions

Jane Frankland

JANUARY 12, 2025

With 24% of all data breaches using ransomware, this commoditisation of cybercrime significantly broadens the field, resulting in a sharp increase in the frequency and variety of attacks. Insider Threats as a Growing Concern Insider threats represent one of the most underestimated vectors in this evolving landscape.

Cybersecurity

Cybersecurity CISO Insurance IoT

Security Affairs newsletter Round 513 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

MARCH 2, 2025

Spreads via Impersonation of Official Email to Target Users in Taiwan Belgian prosecutor probes alleged Chinese hacking of intelligence service Exclusive: Hegseth orders Cyber Command to stand down on Russia planning Cybersecurity Trump 2.0

Cybercrime

Cybercrime Hacking Ransomware Cryptocurrency

Cyber Security Informer

National Consumer Protection Week: Keeping your personal data safe in a digitally connected world

Congressional Report on the 2017 Equifax Data Breach

Trending Sources

CafePress faces $500,000 fine for data breach cover up

Me on the Equifax Breach

2024 Cybersecurity Laws & Regulations

Security Compliance & Data Privacy Regulations

How Thales and Red Hat Protect Telcos from API Attacks

Scary Fraud Ensues When ID Theft & Usury Collide

Tennessee Adds New Encryption And Timing Requirements To Its Data Breach Notification Law

CISA, SolarWinds up interest in security scoring

Holiday Shopping Readiness: How is Retail Data Security Holding Up?

US Government Accountability Office Releases New Report On The Internet of Things (IoT)

Cybersecurity Report: June 29, 2015

New Federal Privacy Law Legislation Introduced

Holiday Shopping Readiness: How is Retail Data Security Holding Up?

US Government Accountability Office Releases New Report On The Internet of Things (IoT)

It’s a Holiday Security Breach Blowout

The Evolving Legislative and Compliance Landscape: A Roadmap for Business Leaders

How Thales and Red Hat Protect Telcos from API Attacks

The Evolving Legislative and Compliance Landscape: A Roadmap for Business Leaders

The Good, Bad, And The Ugly: Key Takeaways From California’s New Privacy Law

Top 6 Compliance Management Tools for Financial Services

The Good, Bad, And The Ugly: Key Takeaways From California’s New Privacy Law

HHS Issues Quick Response Cyber Attack Checklist

California Passes First Of Its Kind IoT Cybersecurity Law

California Passes First Of Its Kind IoT Cybersecurity Law

IRS Warns About New Cyber Scam Targeting Taxpayers

HHS Plans To Launch Cybersecurity Center Focused On Medical App Security

IRS Warns About New Cyber Scam Targeting Taxpayers

2025 Cybersecurity Predictions: Not Getting Easier; But There is Hope

Key Cybersecurity Trends for 2025. My Predictions

Security Affairs newsletter Round 513 by Pierluigi Paganini – INTERNATIONAL EDITION

Stay Connected