FTC settlement shows key compliance area
A settlement between the Federal Trade Commission (FTC) and computer vendor Asus shows employers one way to stay on the feds’ good side – act quickly when you receive vulnerability reports.
According to the complaint, Asus misrepresented its security policies, and failed to act on vulnerability reports quickly.
Delayed notification
Specifically, the FTC alleges that Asus took too long to address reported vulnerabilities and notify its customers that the flaws could lead to cyberattacks.
That delay was a key factor in the company’s poor security practices, the FTC said. To settle the suit, Asus has agreed to implement a more thorough security program that fixes these issues, along with other steps.
To keep out of federal regulator’s crosshairs, be sure you have solid procedures to address vulnerabilities and notify consumers if those flaws could endanger their data security.
- Share on
Free Training & Resources
Webinars
Provided by Yooz
Further Reading
Companies seeking accountants to replace or reinforce their workforces will continue to find themselves stuck between a rock and a hard pla...
The Securities and Exchange Commission (SEC) just fined a company $35 million because it didn’t maintain adequate disclosure rules fo...
The IRS is about to put all of the the funding, personnel and technology advantages it now enjoys to use. Count on an upswing in audits of ...
Finding and securing talent is always at or near the top of CFOs’ list of concerns. Could removing college degree requirements from ...
Federal rulemakers are requiring more transparency and detail in companies’ audits. Turns out all that extra detail is exactly what i...
If you’ve used Excel to create a database table with fixed formulas, and that table will be used by multiple people, there’s a ...
