>财经>>正文

【国际观察】美参议院发起新提案:掩盖信息泄露事件需承担刑事责任

原标题:【国际观察】美参议院发起新提案:掩盖信息泄露事件需承担刑事责任

上周,美国参议院对一新法案投票。该法案认为,隐瞒数据泄露事件的公司负责人承担刑事责任且入狱服刑。

按照该法案要求,如果企业负责人在知悉数据泄露事件30天内不上报,就将最高面临五年有期徒刑。《连线》杂志报道称,这一法案是否能够通过尚不清楚,因为2014年一相似法案(由Target大规模泄漏事件引起)曾试图达成相同目标。

但是,立法者今年可以援引的信息泄露案件非常可观。

比如,几个月前Equifax就曾宣布遭遇大规模数据攻击。在这起案例中,1.455亿消费者个人信息被泄露,包括20.9万消费者的个人信用卡信息。

Uber最近也对外透露,称曾向黑客支付10万美元来掩盖去年发生的泄露事件。在那次泄露事件中,多达100多万消费者数据和车主车牌号被泄露。Uber掩盖该事件的行为曝光之后,全球监管者纷纷行动起来,美国各州检察官发誓将调查该起泄露案件及后续处理行为。

这些轰动的泄露案件爆发之后的有关调查显示,消费者并不相信公司保护他们个人信息的能力。Centrify上月在新闻发布会上公布了其委托Ponemon机构在美国、英国、德国和澳大利亚调查的结果:62%的消费者曾接到过公司或政府机构告知他们的个人信息数据在某起或几起事件中遭到泄露。其中,36%说他们遭遇过2起以上泄露案件。这些人中1/3表示他们不再使用数据泄露公司的产品或服务。

英文原文

A new bill was introduced in the U.S. Senate last week calling for jail time for executives who hide data breaches.

As reported by Wired, the bill would result in the imprisonment of executives for up to five years if they don’t report a breach within 30 days of learning of it. According to the report, it’s not clear whether the bill will go anywhere, given that a similar bill in 2014 – prompted by the massive Target breach – attempted to achieve the same goal.

This year, legislators had a number of high-profile hacks to choose from, including Equifax, which disclosed a huge data breach a few months ago. In that case, 145.5 million consumers’ personal information was exposed, including the credit card information of 209,000 people.

Meanwhile, Uber recently revealed it paid hackers $100,000 to conceal a data breach that occurred last year, exposing more than a million customers’ data as well as drivers’ license numbers. The reaction to the news that Uber hid the breach resulted in widespread consternation from regulators around the globe, while all of the state attorney generals in the U.S. vowed to open up inquiries into the data breach and its handling.

The high-profile data breaches come amid surveys that show businesses are not inspiring consumer confidence when it comes to protecting personal information in the event of a cyberattack. In a November press release, Centrify – which commissioned a Ponemon Institute study conducted across the U.S., the U.K., Germany and Australia – announced findings that 62 percent of consumers have been notified by a company or government agency when their personal data was lost or stolen as a result of one or more data breaches. Of those, 36 percent said they had experienced two or more separate incidents. One third of that 36 percent said they ended their relationship with the company that experienced the data breach.

译者:潘妍媛

原文来源: PYMNTS

案例分析

免责声明:转载内容仅供读者参考。如您认为本公众号的内容对您的知识产权造成了侵权,请立即告知,我们将在第一时间核实并处理。返回搜狐,查看更多

责任编辑:

声明:本文由入驻搜狐号的作者撰写,除搜狐官方账号外,观点仅代表作者本人,不代表搜狐立场。
阅读 ()
投诉
免费获取
今日推荐