Tag Archives: information security

Employment Screening Resources Successfully Completes SOC 2 Type 2 Data Security Audit for 2017

SOC2-Logo_Revised

Written By Employment Screening Resources (ESR)

Employment Screening Resources® (ESR), a leading global background check firm, has announced that independent auditors conducting a SOC 2® Type 2 examination of ESR’s operations for the six month testing period of November 2016 through April 2017 have issued a SOC 2 Type 2 report that states ESR management maintained effective controls over the privacy, security, and confidentiality of its employee background screening system. Continue reading

Target Settles Credit Card Data Breach Case for $18.5 Million

MaskedManLaptop

Written By ESR News Blog Editor Thomas Ahearn

California Attorney General Xavier Becerra has announced a record $18.5 million multi-state settlement with Target, Inc. in response to allegations that more than 40 million customers had their payment card information compromised from a data breach during the 2013 holiday season after the retailer failed to provide reasonable data security, according to a press release on the Attorney General’s website. Continue reading

FTC Shares Tips on How to Avoid Ransomware Attacks Such as WannaCry

FTC-logo

Written By ESR News Blog Editor Thomas Ahearn

The Federal Trade Commission (FTC) has published a blog entitled ‘Ransomware worries? Keep up to date’ that shares tips on how to avoid ransomware attacks such as WannaCry that affected the computer systems of organizations around the world in May 2017, and suggests people update their own operating systems and other software and keep them up to date. Continue reading

Security Experts Call WannaCry Ransomware Attack One of the Largest Global Cyberattacks Ever

MaskedManLaptop

Written By ESR News Blog Editor Thomas Ahearn

Security experts are calling “WannaCry” (also known as “WannaCrypt”) one of the biggest cyberattacks ever after the ransomware program took advantage of a vulnerability in Microsoft Windows to spread to 150 countries and infect at least 200,000 computers around the world by locking down all files and allowing hackers to demand a $300 ransom in bitcoins for their release, according to a report from CNN. Continue reading

Swiss-U.S. Privacy Shield Framework Now Accepting Self-Certifications

 privacy_shield

Written By ESR News Blog Editor Thomas Ahearn

On April 12, 2017, the U.S. Secretary of Commerce announced that the newly launched Swiss-U.S. Privacy Shield Framework is accepting self-certifications to provide companies a mechanism to comply with Swiss data protection requirements when transferring personal data from Switzerland to the United States in support of transatlantic commerce. For more information, visit www.privacyshield.gov. Continue reading

United States and Switzerland Finalize Swiss-U.S. Privacy Shield Framework for Data Transfer

privacy_shield

Written By ESR News Blog Editor Thomas Ahearn

The International Trade Administration (ITA) has announced the final approval of the Swiss-U.S. Privacy Shield Framework designed by the U.S. Department of Commerce and the Swiss Government to align with the European Union (EU)-U.S. Privacy Shield and replace the U.S.-Swiss Safe Harbor Framework. Continue reading

FTC Issues Data Breach Response Guide for Businesses

 FTC-Data-Breach-Response

Written By ESR News Blog Editor Thomas Ahearn

With massive data breaches like the one affecting 500 million Yahoo users in the news lately, the Federal Trade Commission (FTC) has issued a new Data Breach Response: A Guide for Business that outlines the steps that businesses should take when experiencing a data breach. Continue reading

Employment Screening Resources Successfully Completes 2016 SOC 2 Type 2 Data Security Audit

SOC2-Logo_Revised

Written By Employment Screening Resources (ESR)

Employment Screening Resources® (ESR), a leading global background screening firm, has announced that independent auditors conducting a SOC (Service Organization Control) 2® Type 2 examination of ESR’s operations for the six month testing period of January 2016 through June 2016 have issued a SOC 2® Type 2 report that states ESR management maintained effective controls over the privacy, security, and confidentiality of its employee screening system. Continue reading

Massive Yahoo Data Breach Could Affect 500 Million Users

 MaskedManLaptop

Written By ESR News Blog Editor Thomas Ahearn

Technology company Yahoo has confirmed user account information that may have included names, email addresses, phone numbers, dates of birth, passwords, and security questions was stolen from 500 million Yahoo user accounts by “a state-sponsored actor” in a massive data breach in late 2014. (UPDATE: Important Security Information for Yahoo UsersYahoo believes an unauthorized third party, in August 2013, stole data associated with more than one billion user accounts. Yahoo believes this incident is likely distinct from the incident the company disclosed on September 22, 2016.) Continue reading

FTC Requests Public Comment on Disposal Rule for Consumer Report Information and Records

FTC-logo

Written By ESR News Blog Editor Thomas Ahearn

The Federal Trade Commission (FTC) is seeking public comment on the Disposal Rule formally known as the ‘Disposal of Consumer Report Information and Records Rule’ which implements part of the Fair and Accurate Credit Transactions Act of 2003 (FACTA) by requiring consumer report information for business purposes to be properly disposed of through reasonable measures to protect that data from unauthorized access, according to an FTC press release. Continue reading