The Federal Trade Commission (FTC) finalized an order with Chegg citing careless data security practices that exposed student and staff information.

Remote work environments can lead to higher levels of insider risk to an enterprise without cybersecurity measures in place to protect data privacy.

Organizations need to establish clear visibility into third-party risk and expectations for data privacy with their external partners.

School districts need to increase their awareness and preparedness to combat cyberattacks. Governments and businesses need to join forces to support districts via training, testing and tools to ensure threat detection, appropriate response and minimal damage.

Georgetown University's Center on Privacy & Technology released a report detailing facial recognition technology use and driver's license searches conducted by the U.S. Immigration and Customs Enforcement agency (ICE).

With an increase in healthcare-related data due to the COVID-19 pandemic, cybersecurity professionals can employ encryption, data anonymization and other techniques to ensure healthcare data security.

Russian food delivery app Yandex Food has reported a data breach found to contain location and contact data for Russian military and security agencies.

Data privacy legislation has popped up across the United States, largely regulated by individual states. The California Privacy Rights Act (CPRA) has wide-reaching effects for U.S. enterprise organizations.

From the early stages of the internet, personal identifiable information (PII) has been stored, managed and used by companies. As data privacy has evolved, so has the security standpoint behind collecting user data.

The U.S. Internal Revenue Service (IRS) announced the implementation of mandatory facial recognition in order to access some government services. This may increase cybersecurity and data privacy risks.