Security news aggregator

Latest coverage for Proposal

The Proposal tag covers proposals that could shape cybersecurity policy, technical standards, incident response, and protections for digital systems.

300 headlines in this view

Refine the feed

Search across headline titles and summaries.

Tag briefing

Background for this topic.

A proposal is a documented plan for introducing, changing, or funding a security measure, policy, architecture, or project. It turns a problem or requirement into a decision by defining scope, objectives, options, cost, dependencies, owners, and implementation criteria. In security reporting, it may cover a vulnerability-remediation plan, access-control redesign, security tooling purchase, or response to a proposed technical standard.

Its security value depends on connecting identified threats and vulnerabilities to specific controls and verification steps. Reviewers should examine assumptions about assets, trust boundaries, data handling, and third parties; privacy and regulatory constraints where personal data is involved; and plans for testing, rollout, monitoring, exception handling, and reassessment. A proposal that omits residual risk, ownership, measurable acceptance criteria, or maintenance can leave weaknesses unresolved after approval.

Volume over time

Weekly headline count for the current query.

Showing 20 most recent headlines of 300

Also: Binance Eyes More Asia Licenses, India Pushes Fresh Crypto CurbsThis week, the U.S. Securities and Exchange Commission eyes July for a crypto rule proposal, Binance anticipates more Asian business, Malaysia seized 75,000 crypto mining rigs, India's central bank shooed away banks from crypto, and Interpol helped sweep crypto launderers.

2023 LockBit Attack Affected Nearly 9M People, Including ChildrenMCNA Dental, one of the largest providers of U.S. government-sponsored dental benefits to children, has agreed to a proposed multimillion dollar settlement to resolve class action claims stemming from a 2023 LockBit ransomware attack and data theft that affected nearly 9 million people.

Bank Info Security 1 month, 1 week ago

EU Prepares Path for Shutting Out US Cloud Providers

Commission Proposes That Sensitive Public Data Should Be Kept LocalThe European Union's executive arm singled a strong dislike for U.S. cloud service provider participation in public-sector procurements in a long-delayed legislative package meant to bolster continental self-sufficiency. The proposal called for sensitive public data to be stored locally.

Bank Info Security 1 month, 2 weeks ago

Trump Signs Voluntary AI Cyber Review Order

White House Cuts Proposed AI Review Period From 90 Days to 30President Trump signed an executive order creating a voluntary framework for evaluating advanced AI systems with significant cybersecurity capabilities, directing NSA, Treasury and CISA to establish classified benchmarks while avoiding mandatory licensing or preclearance requirements.

A judge said Democrats and civil groups filed the lawsuit too early to demonstrate harm, but that could change after newly proposed postal regulations. The post USPS moving forward with mail-in ballot changes as courts weigh Trump’s election order  appeared first on CyberScoop.

Bank Info Security 1 month, 3 weeks ago

Liberty Mutual Sued Over Alleged Everest Group Data Theft

Incident Comes Months After NYS Fined Liberty Mutual $2M in Other HacksInsurance carrier Liberty Mutual is facing proposed class action litigation filed by policyholders who allege their sensitive information was compromised in an April data theft claimed by cybercrime gang Everest Group. The incident is the company's latest data security related troubles.

Akamai Says Startup LayerX's Browser Telemetry Will Strengthen Access DecisionsAkamai said its proposed $205 million acquisition of LayerX will add enterprise browser security and AI usage controls to its zero trust portfolio as enterprises grapple with generative AI data exposure, autonomous AI agents and growing demand for browser-level visibility.

Proposed Bill Could Reopen Debate Over Computer Misuse Act ProtectionsThe British government has announced plans to update cybersecurity legislation aimed at strengthening the country's digital defenses - while overhauling outdated cybercrime authorities that officials and security researchers warn are no longer fit for modern threats

Bank Info Security 2 months, 1 week ago

Kochava Will Stop Selling 'Sensitive Location' Info

Litigation Initiated by the US FTC Leads to Settlement Restricting Data BrokerThe Federal Trade Commission has banned an Idaho-based data broker from selling sensitive location data gathered from "hundreds of millions" of individuals' mobile devices without their knowledge or consent. The proposed order ends several years of legal sparring between Kochava and the FTC.

Bank Info Security 2 months, 2 weeks ago

Medtronic Already Facing Federal Lawsuits in Recent Hack

ShinyHunters Gang Claims It Stole 9M Records From Medical Device MakerMedtronic is already facing at least a half-dozen proposed class action lawsuits filed in federal court just days after the medical device maker confirmed that cybercriminals recently hacked into its corporate IT systems. Plaintiffs include patients that use the company's cardiac devices and other products.

Bank Info Security 2 months, 2 weeks ago

DHS Shutdown Ends as CISA Faces Long Recovery

Bipartisan Deal Funds DHS Components After Record 75-Day ShutdownThe House passed a bipartisan bill funding the Department of Homeland Security, ending a 75-day shutdown that forced the Cybersecurity and Infrastructure Security Agency into a reactive posture and disrupted preventive cyber operations, even as workforce losses and proposed cuts threaten long-term resilience.

Patients Allege Health Entities Did Not Get Consent to Record ConversationsProposed federal class action litigation alleges that two California healthcare organizations violated patient privacy in their use of an AI-enabled ambient tool that records, transcribes, and processes sensitive conversations between clinicians and patients without individuals' consent.

HHS OCR Director Says Cost of Inaction May Outweigh Compliance BurdensThe Trump administration has yet to decide whether to continue a proposed overhaul of the HIPAA Security Rule floated by its predecessor administration. But the nation's top federal enforcer of health regulation provided some insight into what regulators are thinking.

White House Criticizes Cyber Defense Agency - and Proposes a Steep $700 Million CutThe FY2027 proposal would cut roughly $707 million from CISA, reducing staffing, contractor support and coordination programs while shifting the agency toward a narrower focus on federal networks and critical infrastructure amid rising nation-state cyberthreats.

Loading more headlines...