California breach law rises

April 28, 2009

The California State Senate has passed a law, SB-20, that would require breached organizations to provide victims with additional information. The legislation would mandate that companies tell customers what type of personal information was breached and when the breach occurred. Currently, the state's pioneering SB-1386 law requires the breached entity to only say that a compromise occurred. The new bill, introduced by state Democrat Sen. Joe Simitian, who also sponsored SB-1386, is now up for approval in the state Assembly. — DK

Ransomware

AMD probes alleged RansomHouse data theft

SC StaffJune 29, 2022

AMD has disclosed launching an investigation over the RansomHouse cybercrime operation's claims that it was able to steal 450GB of data from a breach against the semiconductor firm in January.

Threat intelligence

Cyberattacks hit Iranian steel firms

SC StaffJune 29, 2022

Hacktivist group Gonjeshke Darande has claimed to have deployed cyberattacks against three Iranian steel companies, which has prompted suspended operations at Khuzestan Steel, one of the largest steel manufacturers in the country.

Breach

Carnival Cruises agrees to $1.25M data breach settlement

SC StaffJune 29, 2022

Carnival Cruises will be paying $1.25 million to settle a lawsuit filed by 46 attorneys general related to a data breach in 2019 that compromised data from 180,000 employees and clients across the U.S.

California breach law rises

Related

AMD probes alleged RansomHouse data theft

Cyberattacks hit Iranian steel firms

Carnival Cruises agrees to $1.25M data breach settlement

Related Events

Supply Chain Security Snags: How to Solve Your Sourcing, SBOM & Scope Struggles

Automation’s Role in TPRM

Exploring the Results of CyberRisk Alliance’s Third-Party Risk Management Study