Despite the unlikelihood of the passage of the bipartisan American Data Privacy and Protection Act this year amid the nearing mid-term polls, experts noted the bill's significance in advancing discussions on privacy, reports The Record, a news site by cybersecurity firm Recorded Future.
"We are long overdue for a strong federal privacy standard and we have never been this close to making that a reality, said Electronic Privacy Information Center Executive Director Alan Butler, who noted that the legislation's inclusion of a prohibition on advertising to minors, as well as reductions in collected data, establishes a "very robust standard."
However, the bill has been criticized by the Electronic Frontier Foundation for barring states to innovate in privacy legislation, as well as allowing the Federal Trade Commission to handle telecom providers' privacy and data practices.
"Congress must not remove telecommunications companies from the scrutiny of expert federal regulators with a deep understanding of the industry," wrote the EFF.
Forty-five malicious NPM and PyPI packages have been deployed by threat actors to facilitate extensive data theft operations as part of a campaign that commenced on Sept. 12, according to BleepingComputer.
Sixty thousand emails from U.S. State Department accounts were noted by a staffer working for Sen. Eric Schmitt, R-Mo., to have been exfiltrated by Chinese threat actors during the widespread compromise of Microsoft email accounts that commenced in May, according to Reuters.