FTC Orders Blackbaud to Address Poor Security Practices
Friday, February 2, 2024
This comes just months after Blackbaud agreed to pay $49.5 million to settle data breach claims brought by the attorneys general of 49 states and Washington, DC.
“This is one more example that the FTC is artfully and progressively policing US cyber space for poor data protection practices, which may fall under Article 5(a) of the FTC Act (‘unfair and/or deceptive acts or practices’),” Ilia Kolochenko, CEO and chief architect at ImmuniWeb, told SecurityWeek.
“The ‘Mandated Information Security Program’ section of the FTC Order to Blackbaud is very detailed and covers virtually all technical aspects of a comprehensive cybersecurity program. Non-compliance with the Order can be punished with a hefty monetary fine, so cybersecurity will likely become a high priority for Blackbaud during the next years.” added Kolochenko, who is also an adjunct professor of cybersecurity and cyber law at Capital Technology University. Read Full Article
Radio Lac: Lutte contre les commentaires anonymes: "une fausse bonne idée"
ComputerWeekly: AI will heighten global ransomware threat, says NCSC