An update on ‘reasonable security’ and how it impacts your risk and security posture.
FTC warns companies to remediate Log4j security vulnerability
“The FTC intends to use its full legal authority to pursue companies that fail to take reasonable steps to protect consumer data from exposure as a result of Log4j, or similar known vulnerabilities in the future.”
Does Your Cyber Insurance Policy Look More Like Health Insurance?
“an increasing number of states require businesses to implement “reasonable safeguards“ to protect personal information.”
The Year of Reasonable Security
“What is considered ‘reasonable’ when it comes to cybersecurity? That has become a burning question for not just the IT and cybersecurity communities but also for company board rooms, regulators, judges, and litigators.”
“government resources are setting the baseline on reasonable security for Log4j response and, in essence, providing a potential roadmap for legal compliance.”
IoT Security Standards and Regulations: Where Are We Now?
“in California, a law requires manufacturers to implement ‘reasonable security features’ such as having unique passwords per device if they want to sell to consumers in that market.”
Data Privacy, Security Considerations in Multi-Residence Buildings
“Biometric information also qualifies as personally identifiable information under the data breach notification and reasonable safeguard laws in many states.”