January 17, 2024 at 01:34AM Netcraft discovered that scammers are exploiting cheap domain names to promote fake health products through deceptive news campaigns, mimicking popular news outlets and falsely claiming endorsements from TV shows like Shark Tank and Dragons’ Den. The proliferation of new global top-level domain names, such as .sbs and .cloud, at low … Read more
January 10, 2024 at 04:30AM The U.S. FTC prohibited data broker Outlogic from sharing sensitive location data with third-parties due to privacy violations, requiring data destruction and a comprehensive privacy program. The FTC accused Outlogic of inadequate safeguards and transparency, prompting a settlement and Senator Wyden’s praise. Outlogic disagreed with the implications and the need … Read more
January 9, 2024 at 03:37PM The U.S. FTC banned data broker Outlogic, formerly X-Mode Social, from selling Americans’ sensitive location data. The move responds to data brokers exposing individuals’ location data revealing sensitive information. Outlogic lacked protocols to remove sensitive locations and sometimes failed to respect individuals’ opt-out preferences. The ban follows an August 2022 … Read more
January 3, 2024 at 03:12AM The U.S. Department of Justice settled with VoIP provider XCast for illegal telemarketing campaigns. The agreement requires compliance measures and a $10 million penalty, suspended due to financial inability. XCast must sever ties with non-compliant firms. FTC also banned Response Tree for illegal robocalls and deceptive website practices, selling consumer … Read more
December 21, 2023 at 07:33AM The Federal Trade Commission is proposing changes to the Children’s Online Privacy Protection Act (COPPA) to enhance online safety for kids. These changes include implementing an opt-in requirement for targeted ads, limiting push notifications to children, and establishing rules for data retention. The proposed updates aim to protect children’s privacy … Read more
November 4, 2023 at 12:30PM SecurityWeek’s weekly cybersecurity roundup highlights several significant developments. Stanford University suffered a ransomware attack, resulting in 430 GB of data being stolen. The MOVEit hack compromised around 632,000 email addresses from the US Justice and Defense Departments. The Henry Schein cyberattack was claimed by the BlackCat ransomware group. A link … Read more
October 30, 2023 at 04:01PM The U.S. Federal Trade Commission (FTC) has amended the Safeguards Rules to require non-banking financial institutions, such as mortgage brokers and investment firms, to report data breaches within 30 days. The goal is to enhance data security and protect customer information. Companies must disclose incidents impacting 500 or more consumers, … Read more
October 12, 2023 at 09:59AM Former Uber CISO Joseph Sullivan’s lawyers have argued in an appeal that his conviction for charges related to a 2016 data breach should not stand as it threatens bug bounty programs. They describe the verdict as “profoundly flawed” and claim that it jeopardizes the valuable tool used by security teams … Read more