Compliance | SC Media Compliance


7.7 million LabCorp patients affected by same breach that impacted Quest Diagnostics

One day after Quest Diagnostics reported that nearly 12 million of its patients were potentially affected by a malicious breach of third-party bill collection vendor American Medical Collection Agency (AMCA), fellow clinical testing firm LabCorp acknowledged that roughly 7.7 million of its customers may be affected by the same incident. Burlington, North Carolina-based LabCorp publicly…

Mozilla, Cisco and others sponsor certificate provider Let's Encrypt

GoDaddy, Apple and Google misuse more than 1M certificates

A major operational error has resulted in the issuance of at least one million browser-trusted digital certificates from GoDaddy, Apple and Google that don’t comply with binding industry mandates. The misconfiguration is the result of open source EJBCA software package that many browser-trusted authorities use to generate certificates that secure websites, encrypt email, and digitally…

Is PSD2 the next GDPR? Not quite, but…(video)

The finance, banking and payment services industries have until September 2019 to comply with PSD2, a revised set of European Union regulations that give consumers more options and safer ways to make payments online. At RSA 2019, Geoff Sanders, director of product at anti-fraud and MFA company iovation (and former co-founder and CEO of iovation…

How to build privacy for security and achieve sustained compliance

By Paul Iagnocco, director, consulting ,TrustArc Global and domestic privacy regulations like GDPR and the California Consumer Privacy Act (CCPA) are forcing businesses to develop and implement comprehensive data management processes to comply with new privacy requirements. In this age of compliance, privacy strategies have become ongoing initiatives, rather than one-time implementations. New privacy-by-design principles…

Puush urges users to change passwords after cyber attack

Weak passwords outlawed out West, California law aims to secure IoT devices

California passed has just passed a law effectively banning weak passwords and enforcing other security measures to more effectively secure connected devices. While its unlikely individuals or businesses will be raided by local law enforcement for attempting to lock down their computer or Wi-Fi using “Password123,” the new law will require that manufactured devices be…

GDPR: It’s (just about) here

Like many college students who cram the night before a test – and some writers who test the limits of their editors’ patience with their procrastination – many companies have pushed off GDPR compliance, believing either it doesn’t apply to them, it’s too costly or overwhelming or they can afford to wait and see just how serious regulators are about admonishing and fining companies who falter on privacy.

Big mistake.

Next post in Features