Krebs on Security

JULY 23, 2020

In May 2019, KrebsOnSecurity broke the news that the website of mortgage title insurance giant First American Financial Corp. had exposed approximately 885 million records related to mortgage deals going back to 2003. First American Financial Corp.

Insurance 307

Insurance Financial Services Mining Access 307

Data Matters

JUNE 24, 2021

On June 15, 2021, the SEC announced settled charges against First American Title Insurance Company (First American) for disclosure controls and procedures violations related to a cybersecurity vulnerability that exposed sensitive customer information. This resolution highlights the SEC’s continued focus on cybersecurity.

Cybersecurity 68

Cybersecurity Financial Services Risk Compliance 68

Data Matters

JANUARY 2, 2018

This past year was marked by ever more significant data breaches, growing cybersecurity regulatory requirements at the state and federal levels and continued challenges in harmonizing international privacy and cybersecurity regulations. A Pivot Toward Asia for Privacy and Cybersecurity Laws. After years of EU-U.S.

Cybersecurity 68

Cybersecurity Privacy Data breaches GDPR 68

eSecurity Planet

AUGUST 9, 2022

Other industry standards too can have the force of “pseudo-law” – notably, the NIST Cybersecurity Framework, which federal regulators often apply to financial-services firms and government contractors. See the Best Cybersecurity Awareness Training for Employees.

Data Privacy 145

Data Privacy Compliance Privacy Security 145

Hunton Privacy

FEBRUARY 19, 2013

Although worded in terms of “consultation” and “voluntary” adoption of a yet-to-be-developed cybersecurity framework, the Executive Order also calls for federal agencies to consider incentives, including changes to the federal acquisition regulations, for encouraging adoption of the framework. Industry has good reason to pay attention.

Cybersecurity 40

Cybersecurity Agriculture Risk Government 40

HL Chronicle of Data Protection

MARCH 14, 2019

The Safeguards Rule, which originally went into effect in 2003, is process-oriented. It includes general, high level elements of a security program, but lacks detailed security steps. The proposed amendments follow the FTC’s receipt of public comments in 2016 regarding the Safeguards Rule as part of the FTC’s regular review cycle.

Privacy 40

Privacy Risk Cybersecurity Information Security 40

eSecurity Planet

AUGUST 13, 2021

Making our top products list for SIEM, threat intelligence , and UEBA this year, LogRhythm is a cybersecurity intelligence company with a range of solutions for organizations. Started in 2003 out of Boulder, Colorado, LogRhythm’s first focus and flagship product was their SIEM software. Paraben Corporation. Global Digital Forensic.

e-Discovery 139

e-Discovery Computer and Electronics Marketing Compliance 139