A LEGISLATIVE UPDATE: IN THE SENATE: Sens. Amy Klobuchar (D-Minn.) and John Kennedy (R-La.) on Tuesday introduced a bipartisan internet privacy bill that would give users more control over what websites can do with their data. The new bill, the Social Media Privacy Protection and Consumer Rights Act, comes just weeks after Congress threatened Facebook CEO Mark Zuckerberg with tougher regulations when he testified in back-to-back hearings earlier this month. "I don't want to hurt Facebook, and I don't want to regulate them half to death, either," Kennedy said in a statement. "But I have a job to do, and that's protecting the rights and privacy of our citizens." What it does: The bill would give users the right to opt out of having their data collected and require websites to make their terms of service easily understandable. Users would also have the ability to order websites to delete their data and request copies of what has been collected about them. Timeline: Zuckerberg promised Congress that Facebook would take a broader view of its responsibility to consumers after it was revealed that Cambridge Analytica, a political firm that contracted with President Trump's 2016 campaign, obtained data on more than 87 million users without their knowledge. Still, some lawmakers, such as Kennedy and Klobuchar, see the need for privacy legislation to rein in internet giants. Their bill would require websites to inform users of privacy violations within 72 hours of any breach. To read more of our piece, click here. A CONFIRMATION IN FOCUS: TRUMP'S NSA DIRECTOR: The Senate has approved President Trump's choice to lead the National Security Agency (NSA) and U.S. Cyber Command. The upper chamber approved the nomination of Lt. Gen. Paul Nakasone in a voice vote Tuesday morning. Nakasone will replace outgoing NSA Director Mike Rogers. Nakasone, who has most recently helmed the U.S. Army's cyber operations, is widely cheered by current and former officials as a qualified choice. He was commissioned as a military intelligence officer more than three decades ago, serving in key roles at the NSA and Cyber Command. Nakasone sailed through confirmation hearings before the Senate Armed Services and Intelligence committees last month, earning broad praise from lawmakers in both parties. At the helm of the NSA, Nakasone will oversee the U.S. government's foreign and counterintelligence collection, an operation that has increasingly drawn scrutiny since the 2013 disclosures by NSA contractor-turned-whistleblower Edward Snowden. The bottom line: Nakasone will serve in the dual-hatted position of NSA director and commander of Cyber Command, the Pentagon's burgeoning cyber warfare unit, while the Trump administration continues to study whether to separate the two organizations. To read more of our coverage, click here. A LIGHTER TWITTER CLICK: You know that person who talks too loudly on their phone in a public space? That appears to be President Trump's attorney Ty Cobbs. (Tweet) WHAT'S IN THE SPOTLIGHT: YAHOO PAYS FOR EMAIL BREACH: Yahoo has agreed to pay a $35 million penalty after failing to properly notify customers and investors that hackers had compromised hundreds of millions of user accounts, the Securities and Exchange Commission (SEC) announced Tuesday. Yahoo, which was rebranded after being purchased by Verizon last year, first learned about the cyber intrusion in December of 2014, but did not alert the public until December 2016, according to the SEC's order. The company's information security team first discovered that Russian hackers had obtained a trove of personal user information in their hack four days after the breach took place, the SEC order says. The cyber criminals gained access to internal data like usernames, email addresses, passwords, phone numbers and birthdates, as well as security questions and answers for hundreds of millions of user accounts. Yahoo only disclosed the breach to the public when Verizon was in the process of acquiring Yahoo's operating business, which it ultimately did in June, the SEC said. "Although information relating to the breach was reported to members of Yahoo's senior management and legal department, Yahoo failed to properly investigate the circumstances of the breach and to adequately consider whether the breach needed to be disclosed to investors," the SEC said. After the hack, the company continued to file both quarterly and annual reports that failed to disclose how one of the world's largest data breaches could affect their potential business. In addition, the company did not seek an outside party to assess the impact of the hack, the SEC found. To read more of our piece, click here. Why this matters: This settlement marks the first time the SEC has pursued a company for failing to properly disclose a cyber breach. While Yahoo agreed to pay the charges without admitting or denying wrongdoing, they still agreed to pay a multi-million dollar settlement. IN CASE YOU MISSED IT: Links from our blog, The Hill, and around the Web. Facebook unveils standards on policing users. (The Hill) Twitter announces updated privacy policy ahead of new EU laws. (The Hill) Facebook to let users appeal censored content. (The Hill) Trump's CIA pick facing brutal confirmation fight. (The Hill) GOP chairmen say they have deal with Justice on documents. (The Hill) Comey book sales top 600,000 in first week. (The Hill) OP-ED: Congress is walking the online privacy tightrope with oversight. (The Hill) OP-ED: To solve the Facebook problem, think big (data). (The Hill) Coalition of tech companies add 'Importance of Strong Encryption' to policy principles. (Reform Government Surveillance) Pentagon program wants to combine cyber experts with computer defenders to confront cyberattacks. (Defense One) Amazon is now delivering to your trunk for free -- if you're a Prime member. (CNN Money) The G7 Communique has a lot of cyber talk. (G7 Foreign Ministers' Communique) If you'd like to receive our newsletter in your inbox, please sign up here. |
沒有留言:
張貼留言