The FTC is a shadow regulator on cyber, and it is impacting what businesses must do about cybersecurity. Most troublingly, it is doing so without clear standards and in apparent self-denial. This may have wide-ranging ramifications for the future of self-driving cars.
U.S. face cyber challenges amidst the pandemic with a DDoS attack on Federal health agency and an ongoing disinformation campaign that sows fear and confusion in the public.
News has recently emerged that the US Census Bureau was compromised by a cyber attack in January 2020 which was traced back to a Citrix vulnerability that had just been publicly disclosed about a month prior.
Second annual review of the EU-U.S. Privacy Shield went better than the first, but the European Commission is still waiting on the U.S. government to nominate a permanent Ombudsperson to handle potential complaints and requests from EU citizens.
Many have raised privacy concerns over FBI’s plan to develop a social media surveillance tool which will proactively identify and reactively monitor persons of interest or suspects in ongoing cases.
79% of mid- to large-sized U.S. enterprises support a federal privacy law to provide guidelines on data sharing and data inventory practices, but will it further highlight deficiencies at the world’s largest enterprises?
Two new cyber attack attempts, one in the San Francisco Bay Area and another in Pennsylvania, will keep water supply security in the news. But sensational media headlines may also be stoking an unnecessary level of fear among the general public.
A new data sharing law that recently went into effect in New York City is being challenged by food delivery giant DoorDash on the grounds that it requires revealing too much confidential and sensitive information to restaurants.
The National Cybersecurity Strategy Implementation Plan (NCSIP) establishes 65 high-impact initiatives that agencies will be required to meet within set timelines for each. A greater degree of public-private partnership is also being promoted.
A nearly unanimous vote in the Connecticut House made the CTDPA official, with its terms set to go into effect on July 1, 2023. As with the other state privacy laws, only businesses that meet certain thresholds of personal information handling will be regulated.