Security news aggregator

Latest coverage for Fine

Stay informed on the latest in information security trends, breaches, and best practices with our expertly curated content on cyber safety.

6 headlines in this view

Refine the feed

Search across headline titles and summaries.

Tag briefing

Background for this topic.

A fine is a monetary penalty imposed by a competent authority or court for violating a law, regulation, or legally binding requirement. In information security and privacy, it may follow inadequate safeguards for personal data, unlawful processing, failure to meet required reporting or record-keeping duties, or non-compliance with sector-specific controls. The legal basis, maximum amount, and factors such as severity, duration, negligence, cooperation, and remediation vary by jurisdiction; a fine is generally punitive rather than compensation for affected parties.

For security practitioners, a fine signals that controls and security decisions may be examined as evidence of compliance. Maintain documented risk assessments, access reviews, patching decisions, supplier oversight, logging, and retention practices, especially where they protect regulated data. During an incident, preserve relevant records and establish an accurate timeline for containment, notification, and remediation. Privacy requirements such as data minimization and retention limits can therefore be security controls as well as legal obligations. A fine does not by itself establish that a particular attack or breach occurred.

Showing 6 most recent headlines Filtered view
Bank Info Security 1 year, 2 months ago

TikTok Fined 530 Million Euros for Data Transfer to China

Irish DPC Imposes a Fine for GDPR ViolationsTikTok must pay 530 million euros to the Irish data regulator for non-compliance with European privacy law. The nearly $600 million fine stems from TikTok's storage of European user data on servers in China and failure to disclose data transfers to China from July 2020 through November 2022.

Bank Info Security 1 year, 2 months ago

HHS Fines Neurology Practice $25K for Ransomware Attack

Enforcement Action Is Latest Under Agency's Ransomware, Risk Analysis InitiativesFederal regulators fined a New York neurology practice $25,000 following an investigation into a 2020 ransomware breach affecting nearly 7,000 individuals. Comprehensive Neurology failed to conduct an accurate and thorough risk analysis, regulators said.