Study Finds Companies May Do Too Much For Data Breach Victims

Joseph J. Lazzarotti writes:

A recent study at the University of Arkansas suggests that organizations should avoid doing too much for individuals affected by a data breach. That is, when organizations provide compensation to breach victims that exceeds the victims’ expectations it could backfire. Those victims may become suspicious, thinking the organization has something to hide, which could have an adverse impact on the victims’ willingness to continue doing business with the organization.

Read more on Jackson Lewis Workplace Privacy, DataManagement & SecurityReport

The 4TB time bomb: when EY's cloud went public (and what it taught us)
Some lower-tier ransomware gangs have formed a new RaaS alliance -- or have they? (1)
Uncovering Qilin attack methods exposed through multiple cases
Predatory Sparrow Strikes: Coordinated Cyberattacks Seek to Cripple Iran's Critical Infrastructure
Ex-CISA head thinks AI might fix code so fast we won't need security teams
ModMed revealed they were victims of a cyberattack in July. Then some data showed up for sale.

Related: