Data Breaches

It’s Time for a Cybersecurity Quid Pro Quo

Require companies to disclose breaches to the government in exchange for legal liability limitations. 

FTC Approves Settlement with Travel Company that Exposed Database of Customers’ Information

The agency ordered SkyMed International to shore up its information security practices. 

Critical Update: The Government’s Cloud Anxiety 

As more federal agencies shift to cloud computing, officials are reexamining the responsibilities customers and service providers must bear to secure data.

Hackers Take Data for Further Reconnaissance in Breach of Federal Agency

Initial access to the agency’s system was possibly due to failure to fix a known VPN vulnerability, a patch for which was released in April 2019.

IG: CBP Responsible for 2019 Biometrics Breach, Though No Federal Networks Were Compromised

A ransomware attack on a Customs and Border Protection vendor leaked facial images on more than 184,000 travelers—something agency security and policy should have prevented.

Audit: HUD Doesn’t Ensure Sensitive Data It Shares Is Secure

A Government Accountability Office pointed to high turnover rates for top privacy and IT security officials as a reason for the agency's poor performance.

46,000 Veterans' Data Exposed In Financial Services Center Breach

Hackers were able to divert payments headed to private sector health care providers.

CISA, International Counterparts Highlight Mistakes Organizations Make After a Cyber Intrusion

A lot of what’s necessary to appropriately respond to a cyber incident should happen way in advance.

Survey: Nearly 3 in 4 Americans Want More Government Oversight on Data Privacy

Slightly less than half of Americans say they wouldn’t share any sort of sensitive information with a business for any reason.

Using Automated Security Protocols Reduce the Cost of Data Breaches, Report Says

U.S. agencies lead in adopting security automation and orchestration, an expert said.  

CIA Report Prompts Call for DHS Cyber Authority Over Intelligence Agencies

Senator asks the director of national intelligence why his office hasn’t implemented a basic anti-phishing tool like the rest of the government.

U.S. Marshals Service Breach Exposed Personal Data of 387,000 Prisoners

The agency notified affected individuals this month after learning about the intrusion in December.

Preventing Remote Workers from Being Sitting Ducks

Unlike workers in other industries, most federal workers have largely conducted business within the four walls of their agency.

DISA Confirms Data Breach Affecting 200,000 People

Defense officials provided few details but said the affected systems have since been secured.

America’s Hopelessly Anemic Response to One of the Largest Personal-Data Breaches Ever

The government has indicted four members of China’s People’s Liberation Army for hacking into the credit-reporting agency Equifax. The question is why.

Justice Department Attributes Equifax Hack to Chinese Military Officers 

Officials highlight the theft of intellectual property, in addition to personal information.

German Researchers Accessed Service Members’ Sensitive Medical Data—and One Lawmaker Wants Answers

Sen. Mark Warner wants to know what the Defense Health Agency is doing to secure “a significant number” of medical images.