Compliance | SC Media

Compliance

Lawyers: Facebook is prepared to pay $550M to settle facial recognition lawsuit

Facebook has agreed to set aside $550 million to settle a class-action lawsuit brought by users who allege the social media company violated the Illinois Biometric Information Privacy Act (BIPA), attorneys for the plaintiffs announced on Wednesday. San Francisco Federal District Court Judge James Donato must still approve the settlement, which the lawyers claim is…

7.7 million LabCorp patients affected by same breach that impacted Quest Diagnostics

One day after Quest Diagnostics reported that nearly 12 million of its patients were potentially affected by a malicious breach of third-party bill collection vendor American Medical Collection Agency (AMCA), fellow clinical testing firm LabCorp acknowledged that roughly 7.7 million of its customers may be affected by the same incident. Burlington, North Carolina-based LabCorp publicly…

Mozilla, Cisco and others sponsor certificate provider Let's Encrypt

GoDaddy, Apple and Google misuse more than 1M certificates

A major operational error has resulted in the issuance of at least one million browser-trusted digital certificates from GoDaddy, Apple and Google that don’t comply with binding industry mandates. The misconfiguration is the result of open source EJBCA software package that many browser-trusted authorities use to generate certificates that secure websites, encrypt email, and digitally…

Is PSD2 the next GDPR? Not quite, but…(video)

The finance, banking and payment services industries have until September 2019 to comply with PSD2, a revised set of European Union regulations that give consumers more options and safer ways to make payments online. At RSA 2019, Geoff Sanders, director of product at anti-fraud and MFA company iovation (and former co-founder and CEO of iovation…

How to build privacy for security and achieve sustained compliance

By Paul Iagnocco, director, consulting ,TrustArc Global and domestic privacy regulations like GDPR and the California Consumer Privacy Act (CCPA) are forcing businesses to develop and implement comprehensive data management processes to comply with new privacy requirements. In this age of compliance, privacy strategies have become ongoing initiatives, rather than one-time implementations. New privacy-by-design principles…

Puush urges users to change passwords after cyber attack

Weak passwords outlawed out West, California law aims to secure IoT devices

California passed has just passed a law effectively banning weak passwords and enforcing other security measures to more effectively secure connected devices. While its unlikely individuals or businesses will be raided by local law enforcement for attempting to lock down their computer or Wi-Fi using “Password123,” the new law will require that manufactured devices be…

Next post in Security News