Security News > 2022 > July > DoJ approves Google's acquisition of Mandiant
In a statement, the US Department of Justice said: "Uber admitted to and accepted responsibility for the acts of its officers, directors, employees, and agents in concealing its 2016 data breach from the Federal Trade Commission, which at the time of the 2016 breach had a pending investigation into the company's data security practices."
ESET researchers have uncovered a fresh sample of macOS malware that uses public cloud services to store payloads, exfiltrate data and execute command and control of infected machines.
The US Federal Communications Commission wants to know all the ins and outs of how major US telecom companies store and share customer data, so it's asking 15 of the largest for a look behind their data retention curtains.
All the letters are identical aside from brand names, and ask a lot of questions about data retention and sharing, including where data is stored and for how long, data deletion policies, opt-out capabilities, arrangements with third-parties to share geolocation data, customer notification and more.
The letters were written two days prior to news that the American Data Privacy and Protection Act had passed committee and was on the way to the House floor.
If passed, the ADPPA would limit how companies could collect and use customer data and would be the first federal-level data privacy law in the US. While it may not be directly related to the advance of the ADPPA, Rosenworcel did say that an FTC report from last year found that 98 percent of mobile internet service providers "Collect more data than is necessary to provide services and more data than consumers expect."
News URL
https://go.theregister.com/feed/www.theregister.com/2022/07/25/security_in_brief/