Miniature people: Worker hacking in padlock security

Rattana.R/Shutterstock (Licensed)

FCC wants telecom companies to be more transparent with data breaches

The proposal would eliminate a waiting period to notify customers of a breach.

 

Andrew Wyrich

Tech

Published Jan 13, 2022   Updated Jan 13, 2022, 10:08 am CST

Federal Communications Commission (FCC) Chairwoman Jessica Rosenworcel shared a rulemaking proposal on Wednesday that would tighten the requirements for telecom companies to report data breaches.

The proposal would specifically eliminate a current seven-day waiting period for companies to notify customers of a data breach, require companies to notify customers of inadvertent or accidental data breaches, and require carriers to notify the FCC of all reportable breaches in addition to the FBI and Secret Service.

“Current law already requires telecommunications carriers to protect the privacy and security of sensitive customer information. But these rules need updating to fully reflect the evolving nature of data breaches and the real-time threat they pose to affected consumers,” Rosenworcel said in a statement. “Customers deserve to be protected against the increase in frequency, sophistication, and scale of these data leaks, and the consequences that can last years after an exposure of personal information.”

The FCC did not say when the proposal would be voted on.

Last summer, T-Mobile suffered a data breach that affected millions of customers. The company said 7.8 million customer accounts’ information was stolen, along with “just over” 40 million records of “former or prospective customers who had previously applied for credit with T-Mobile.” Additionally, the company said 850,000 active customers had their names, phone numbers, and account PINs exposed. T-Mobile acknowledged the data breach a day after Motherboard reported on it. T-Mobile said it was made aware of the incident prior to Motherboard’s report. The new rules proposed by Rosenworcel would increase the transparency companies need to have when alerting the public to data breaches.

The FCC said it would investigate that breach. In 2015, AT&T was hit with a $25 million penalty by the FCC over a data breach.

Meanwhile, T-Mobile also announced another cyberattack two weeks ago. However, that only affected a “small number” of customers, according to the T-Mo Report.


Read more about the FCC

FCC chairwoman tells Republicans she won’t cave on net neutrality
New FCC affordable broadband program launches
‘The time for these votes is now’: Public interest groups urge the Senate to confirm Gigi Sohn for the FCC
Biden re-nominates picks for FCC, FTC
Sign up to receive the Daily Dot’s Internet Insider newsletter for urgent news from the frontline of online.

Share this article
*First Published: Jan 13, 2022, 9:33 am CST