A U.S. Federal Trade Commission complaint alleged education technology company Chegg's “lax security practices” led to four separate data breaches affecting 40 million consumers’ personal information. The FTC claimed Chegg allowed employees and third-party contractors to access its “Simple Storage Service” and didn’t require multifactor authentication or encrypt data. The FTC also said Chegg did not monitor networks for unauthorized attempts. Chegg agreed to a “comprehensive restructuring of its data protection practices” as part of a proposed settlement.
If you want to comment on this post, you need to login.