The U.S. Securities and Exchange Commission announced London-based educational publishing company Pearson will pay $1 million to settle allegations it misled investors about a 2018 cyber breach. The SEC said Pearson referred to the incident as a hypothetical risk in 2019, when it had already occurred, compromising millions of student records and 13,000 administrator account log-ins. The company earlier announced birth dates and email addresses may have been compromised when it knew the data was impacted, the SEC said.
19 Aug. 2021
SEC charges Pearson $1M for misleading investors about cyber breach
Related stories
Notes from the Asia-Pacific region: Australia eSafety Commissioner launches social media age restrictions hub
EU Data operational impacts: The Data Act's interplay within the EU digital rulebook
Notes from the IAPP Europe: A focus on the Digital Networks Act
The 2025 Brazilian DPO: Navigating high risks with limited runways
PETs: Beyond privacy-enhancing
