For a long time I’ve said that the penalties in place for data breaches aren’t damaging enough for companies to take cyber security seriously. In most cases simply announcing that a breach has occurred and providing credit monitoring (which is freely given out anyway) is all that needs to be done. The SEC has come out and warned public companies that if they fail to tighten their cyber security controls they could be in violation of federal law.
Unfortunately the SEC was specifically looking at business email compromises (BECs), where fraudsters pretend to be vendors the public company works with that send fake invoices that are then paid by the public company not knowing that these invoices are illegitimate. Despite investigating nine companies that lost over $100 million to these scams no charges were filed. Unfortunately this will also do little to help secure consumers personal and private data. Large scale data breaches will continue to happen at frequent rates until the penalties for these breaches are increased.
Hat tip to Aerial Dag
IHG should take note. My account was hacked and drained of points. IHG reinstated my points. But still…. A 4 digit PIN. How 1980’s.
“You must have a strong password.” Minimum one letter,one number one upper case one special character. Then their back end gets hacked. Makes you wonder why you need to come up with a password that you can even remember.
I recall my Chipotle rewards login had something arduous like required 10 characters with upper, lower, numbers, and symbols. I quit logging in because the password had to be changed every 90 days on top of that. Grave concern Russian hackers will get my complimentary chips & salsa with 10 burrito purchases.
Password manager solves this issue.
Using the term “Lax Security” when discussing with a bunch of churners is a good way to cause some confusion!
I definitely need coffee. Was reading through the post trying to figure out why TSA in Los Angeles International violates federal law… “Lax Security Could Be Violating Federal Law”
I need one too. Spilled mine after reading your post.
I’ll buy you one. Meet after LAX security. 😀
lol
Like feature needed 😂
Nominated for best comment