Filtering by content type: Public Statement
Filtering by content type: Blog Post
As the old saying goes, “The job’s not finished until the paperwork is done.” But since the enactment of the FTC’s Disposal Rule, the job’s not finished until the paperwork – in this case, consumer reports or information derived from them – is securely destroyed.
Ransom notes used to come in the form of pasted letters clipped from newspapers. Now datanappers gain entry through a weak spot in a company’s network, lock the business out of its own system, and hold files – including sensitive health or financial information – for ransom. Would...
We often get the question, “If I comply with the NIST Cybersecurity Framework, am I complying with what the FTC requires?” From the perspective of the staff of the Federal Trade Commission, NIST’s Cybersecurity Framework is consistent with the process-based approach that the FTC has...
We’re not being overdramatic when we describe it as a business executive’s nightmare: a shadowy contact from a hacker who has infiltrated a company’s network, encrypted the data, and now demands ransom for a key to access the files.
The Internet of Things refers to consumer products that connect to the Internet to send and receive data – everything from fitness devices, wearables, and smart cars to connected smoke detectors, light bulbs, and refrigerators.
Filtering by content type: Video
Filtering by content type: Press Release
A new blog post from the Federal Trade Commission provides guidance to businesses on how the cybersecurity framework created by the National Institute for Standards and Technology (NIST) aligns with the FTC’s data security program.
The Federal Trade Commission is seeking public comment on Standards for Safeguarding Customer Information (the “Safeguards Rule”) as part of its systematic review of all FTC rules and guides.
After a public comment period, the Federal Trade Commission has approved a final order resolving the Commission’s complaint against Practice Fusion. In its complaint, the FTC charged that Practice Fusion misled consumers by soliciting reviews for doctors in connection with an online healthcare...
The Federal Trade Commission has announced the agenda for its Sept. 7 event looking at ransomware, which is one of the most challenging cybersecurity problems affecting consumers and businesses. Hackers use ransomware to gain access to consumer and business computers and encrypt files including...
The Federal Trade Commission today announced the issuance of an Opinion and Final Order reversing an Administrative Law Judge (ALJ) Initial Decision that had dismissed FTC charges against medical testing laboratory LabMD, Inc.
After a public comment period, the Federal Trade Commission has approved a final order resolving the Commission’s complaint against ASUSTeK Computer, Inc., charging that critical security flaws in its routers put the home networks of hundreds of thousands of consumers at risk.
Filtering by content type: Federal Register Notice
Filtering by content type: Plain Language Guidance
You just learned that your business experienced a data breach. Whether hackers took personal information from your corporate server, an insider stole customer information, or information was inadvertently exposed on your company’s website, you are probably wondering what to do next....
Filtering by content type: Closing Letter