Vulnerabilities / Threats

3/24/2017
11:10 AM
50%
50%

US Senate Overturns Obama Consumer Privacy Rule

The FCC regulation, passed in October, was rejected in a 50-to-48 vote and is now in the House of Representatives.

The Federal Communications Commission (FCC) rule requiring internet providers to seek consumer’s permission before sharing their personal details received a setback yesterday after the US Senate voted it out, Reuters reports. The regulation now goes to the House of Representatives for approval.

This decision – 50 for and 48 against - is seen as a victory for internet providers. Democratic members of the FCC and Federal Trade Commission described it as creating "a massive gap in consumer protection law as broadband and cable companies now have no discernible privacy requirements." While FCC chief Ajit Pai assured consumers would continue to have privacy, the Consumers Union says the vote "is a huge step in the wrong direction, and it completely ignores the needs and concerns of consumers."

The Obama administration introduced this rule in October, but the FCC delayed it from taking effect. Following its introduction, Republicans voiced concerns that such a rule would give undue advantage to Facebook, Twitter, and Google in digital advertising.

Democrat Ed Markey says, "Republicans have just made it easier for American's sensitive information about their health, finances and families to be used, shared, and sold to the highest bidder without their permission."

Read details here.

Dark Reading's Quick Hits delivers a brief synopsis and summary of the significance of breaking news events. For more information from the original source of the news item, please follow the link provided in this article. View Full Bio

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
RyanSepe
50%
50%
RyanSepe,
User Rank: Ninja
3/24/2017 | 12:56:42 PM
Contract between ISP and User
I have no issue with ISP's collecting data. But the data they collect should be explicitly stated in your contract. That way, you as the individual are aware and attesting that you are ok with it with your signature.
Veterans Find New Roles in Enterprise Cybersecurity
Kelly Sheridan, Staff Editor, Dark Reading,  11/12/2018
Understanding Evil Twin AP Attacks and How to Prevent Them
Ryan Orsi, Director of Product Management for Wi-Fi at WatchGuard Technologies,  11/14/2018
7 Free (or Cheap) Ways to Increase Your Cybersecurity Knowledge
Curtis Franklin Jr., Senior Editor at Dark Reading,  11/15/2018
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
Flash Poll
Online Malware and Threats: A Profile of Today's Security Posture
Online Malware and Threats: A Profile of Today's Security Posture
This report offers insight on how security professionals plan to invest in cybersecurity, and how they are prioritizing their resources. Find out what your peers have planned today!
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2018-19327
PUBLISHED: 2018-11-17
An issue was discovered in JTBC(PHP) 3.0.1.7. aboutus/manage.php?type=action&action=add allows CSRF.
CVE-2018-19328
PUBLISHED: 2018-11-17
LAOBANCMS 2.0 allows install/mysql_hy.php?riqi=../ Directory Traversal.
CVE-2018-19329
PUBLISHED: 2018-11-17
GreenCMS v2.3.0603 allows remote authenticated administrators to delete arbitrary files by modifying a base64-encoded pathname in an m=admin&c=media&a=delfilehandle&id= call, related to the m=admin&c=media&a=restorefile delete button.
CVE-2018-19331
PUBLISHED: 2018-11-17
An issue was discovered in S-CMS v1.5. There is a SQL injection vulnerability in search.php via the keyword parameter.
CVE-2018-19332
PUBLISHED: 2018-11-17
An issue was discovered in S-CMS v1.5. There is a CSRF vulnerability that can add a new user via the admin/ajax.php?type=member&action=add URI.