继第三巡回巡回裁定维护FTC的权力监管unf和欺骗性根据FTC法案第5条,Wyndham全球公司和FTC的网络安全实践已同意定居。这标志着数据安全和监管执法的十字路口的热竞争和被关心的案例。
正如我们之前的帖子上报道的那样,Wyndham于2008年和2009年经历了三个违约,导致曝光约619,000名消费者的信用卡号码。FTC于2012年启动了一项执法行动,指示Wyndham从事FTC法案第5条的不公平和欺骗网络安全措施。The FTC asserted that Wyndham’s cybersecurity practices were deficient in myriad ways that placed consumer data at risk of theft, for example, by storing payment card information in clear text, using weak and default passwords across networks, failing to install or misconfiguring firewalls, failing to adequately restrict vendor access to corporate networks, and failing to follow appropriate incident response procedures after successive cyberattacks.