Oh, this is an intriguing approach. Alice Marini reports: The Korean Communications Commission (KCC) announced, on 21 August 2015, the implementation of a new penalty scheme, which allows companies, that have voluntarily reported a data breach to the KCC, to receive a reduction on the total administrative fine prescribed of up to the 30% (‘the…
Category: Of Note
Pentagon unveils new rules requiring contractors to disclose data breaches
Aliya Sternstein reports: New sweeping defense contractor rules on hack notifications take effect today, adding to a flurry of Pentagon IT security policies issued in recent years. Just this month, the Office of Management and Budget proposed guidelines to homogenize the way vendors secure data governmentwide. The Defense Department had already released three other policies that dictate how military vendors…
Aviva ‘revenge’ phone hacker jailed for 18 months
BBC reports: A man has been jailed for 18 months for hacking into 900 phones belonging to the insurance company Aviva. Richard Neale, 40, pleaded guilty to carrying out the attack as revenge after falling out with colleagues. He was previously a director at Esselar, a company contracted by Aviva to run its security network….
FTC claims victory in Wyndham case; Appellate court upholds authority to enforce data security
Commissioner Julie Brill of the FTC has claimed victory in Wyndham’s appeal in the Third Circuit: Big news: FTC wins Third Circuit Wyndham appeal. Inadequate data security can be unfair under FTC Act & companies have adequate notice. — Julie Brill (@JulieBrillFTC) August 24, 2015 “Big news: FTC wins Third Circuit Wyndham appeal. Inadequate data…
Ashley Madison Hackers Speak Out: ‘Nobody Was Watching’
Joseph Cox of Motherboard got the exclusive interview of the week – with Impact Team, the hackers behind the AshleyMadison.com hack. Here’s a snippet of the email interview: MOTHERBOARD: How did you hack Avid Life Media? Was it hard? The Impact Team: We worked hard to make fully undetectable attack, then got in and found nothing…
Chaffetz wants answers from US-CERT, OPM on hack
Adam Mazmanian reports that the House Oversight and Government Reform Committee is asking some very specific questions of OPM and US-CERT: Chaffetz wants US-CERT, a unit of the Department of Homeland Security, to report on when it was first contacted by OPM to report the breach, and any reporting or analysis on the nature of…