Laura Dobberstein reports: A man found guilty of using the Coinhive cryptojacking script to mine Monero on users’ PCs while they browsed the web has been cleared by Japan’s Supreme Court on the grounds that crypto mining software is not malware. Tokyo High Court ruled against the defendant, 34-year-old Seiya Moroi, on charges of keeping…
Category: Legislation
PA Senate passes bills aimed at ransomware, data breaches
AP reports: Pennsylvania’s state Senate passed a package of legislation on Wednesday aimed at preventing data security breaches and requiring victims and law enforcement officials to be notified when they do happen. The bills’ passage comes barely two weeks after the state’s unemployment compensation system acknowledged that hackers changed bank account information in some recipients’…
FCC Chairwoman Rosenworcel Circulates New Data Breach Reporting Requirements
CHAIRWOMAN ROSENWORCEL CIRCULATES NEW DATA BREACH REPORTING REQUIREMENTS Proposal is a Response to Recent Security Breaches in the Telecommunications Industry — WASHINGTON, January 12, 2022—Today Federal Communications Commission Chairwoman Jessica Rosenworcel shared with her colleagues a Notice of Proposed Rulemaking (NPRM) that would begin the process of strengthening the Commission’s rules for notifying customers…
FTC Finalizes Order with Mortgage Analytics Firm, Requiring it to Strengthen Security Safeguards, Increase Oversight of Vendors
In December, 2020, the FTC announced a proposed settlement with Texas-based Ascension Data & Analytics after a security breach involving one of its vendors resulted in the exposure of, and unauthorized access to, consumers’ mortgage applications. One year later, the settlement received final approval, as the FTC announced on December 22: The Federal Trade Commission…
Review of U.S. State Law Developments in 2021
Madeline Salinas and Libbie Canter of Covington and Burling write: As we look ahead at 2022, we here provide a quick wrap-up of key developments for U.S. state privacy laws in the past year: California Privacy Protection Agency is appointed and commences rulemaking. In June, the new California Privacy Protection Agency (CPPA) held its inaugural public meeting,…
Indian authorities set to tighten data breach laws in 2022
Stephen Pritchard reports: Authorities in India are set to clamp down on data breaches and tighten rules for holding sensitive data, according to local media reports. Organizations will be forced to disclose data breaches within 72 hours, bringing India in line with territories such as the EU, which mandates breach disclosures under its General Data Protection Regulation…