Yahoo hack spurs push for legislation
Yahoo recently made headline news after disclosing that hackers stole data from at least 500 million accounts in 2014. While a breach of this size is catastrophic on its own, it is further complicated by the revelation that Yahoo may have been aware of the hack for months. This discovery has sparked lawmakers to take another look at setting a national standard for data breach notification. According to Sen. Richard Blumenthal of Connecticut, “This breach demonstrates the urgent need for Congress to enact data breach and security legislation — only stiffer enforcement and stringent penalties will make sure companies are properly and promptly notifying consumers when their data has been compromised.”
Your business should start preparing for this new legislation now. Let CSR show you how our 360 solution to data privacy can help protect your business from a breach, as well as fulfill all mandatory breach reporting requirements.
Supporters of legislation that would dictate how and when companies have to notify customers of a data breach are seizing on the hack of 500 million Yahoo accounts to push their effort forward.
“We haven’t hit that sweet spot quite yet, but we’re close. I’m hoping this revelation about Yahoo will provide the needed impetus to get across the finish line,” Sen. John Thune (R-S.D.) told reporters this week.
Thune, the Commerce Committee chairman, is in talks with a handful of senators, some of whom have competing proposals to address data breach rules.
Data breach legislation generally is seen as the next cybersecurity frontier for Congress, but so far lawmakers have been unable to coalesce around a single proposal.