Region: United States of America

Morgan Stanley fined after hard drives with customer data sold on

The US Securities and Exchange Commission has ordered Morgan Stanley to pay $35 million after thousands of hard drives containing data on millions of customers were resold on online auction sites.

20 September 2022

Judge substitutes government as defendant in data breach class action

A health care provider has persuaded a US federal judge to swap the Department of Justice in its place as a defendant – the latest in a series of rulings that have shifted liability for health care data breaches to the US government.

16 September 2022

Court dismisses claim that SolarWinds insufficiently prepared for 2020 hack

A Delaware state judge has rejected SolarWinds investors’ claims that the IT software provider’s board ignored cybersecurity red flags and should be held liable for a massive cyberattack discovered in 2020.

13 September 2022

Secrecy surrounding Uber data breach wasn’t unusual, witnesses say

Former Uber engineers and security leaders have testified that dealing with a 2016 breach of data relating to 51 million users and drivers was highly confidential – but that such a secretive response is commonplace in any company.

12 September 2022

Attorneys for ex-Uber CSO distance him from decision-making role

A former regulator said Uber’s last-minute announcement regarding a massive data breach after a two-year regulatory investigation was the “single-most frustrating” moment in his FTC career.

09 September 2022

DOJ paints ex-Uber CSO as schemer

Opening its criminal prosecution of John Sullivan, a US Department of Justice lawyer said its case against the former Uber chief security officer is about “a cover-up, payoff and lies.”

08 September 2022

Illinois shopper hits Walmart with $5 million BIPA class action

An Illinois resident has filed a class action lawsuit against Walmart, alleging the retailer violated the Biometric Information Privacy Act.

02 September 2022

Pelosi says national data privacy bill hinders California’s consumer protections

The American Data Privacy and Protection Act’s likelihood of becoming a law hit a significant hurdle yesterday after House of Representatives Speaker Nancy Pelosi said she had pre-emption concerns about the proposed law.

02 September 2022

Regulators have “long memories”: Why companies don’t sue federal agencies

Most companies are reluctant to sue a federal regulatory agency, fearing the cost and regulatory backlash, but businesses can find behind-the-scenes solutions for regulatory issues.

01 September 2022

CPRA’s proposed global privacy control requirements take centre stage during hearing

The California Privacy Protection Agency heard an earful of suggestions and concerns regarding the California Privacy Rights Act’s proposed global opt-out regulations during day two of its public hearing.

30 August 2022

Unlock unlimited access to all Global Data Review content