Security news aggregator

Latest coverage for Proposal

The Proposal tag covers proposals that could shape cybersecurity policy, technical standards, incident response, and protections for digital systems.

2 headlines in this view

Refine the feed

Search across headline titles and summaries.

Tag briefing

Background for this topic.

A proposal is a documented plan for introducing, changing, or funding a security measure, policy, architecture, or project. It turns a problem or requirement into a decision by defining scope, objectives, options, cost, dependencies, owners, and implementation criteria. In security reporting, it may cover a vulnerability-remediation plan, access-control redesign, security tooling purchase, or response to a proposed technical standard.

Its security value depends on connecting identified threats and vulnerabilities to specific controls and verification steps. Reviewers should examine assumptions about assets, trust boundaries, data handling, and third parties; privacy and regulatory constraints where personal data is involved; and plans for testing, rollout, monitoring, exception handling, and reassessment. A proposal that omits residual risk, ownership, measurable acceptance criteria, or maintenance can leave weaknesses unresolved after approval.

Showing 2 most recent headlines Filtered view
Bank Info Security 9 months, 3 weeks ago

Google, Flo Health, Flurry to Pay $59.5M in Privacy Lawsuit

Settlement Ends Litigation Alleging Unlawful Sharing of Consumers' Fertility DataFlo Health, Google and Flurry have agreed to shell out millions of dollars to fund a nearly $60 million settlement for proposed class action lawsuit that accused Flo of using tracking codes in its fertility app that shared women's sensitive information with Google and Flurry without their consent.

Bank Info Security 9 months, 3 weeks ago

Delaware Health System Plans to Settle Rhysida Hack Lawsuit

Bayhealth Medical Center Was Among Cybercrime Group's Many 2024 Healthcare VictimsBayhealth Medical Center in Delaware - an alleged victim of a 2024 hack by the "notorious" and prolific ransomware gang Rhysida that resulted in a breach affecting nearly a half-million people - has agreed to a preliminary settlement in a proposed class action lawsuit stemming from the incident.