Cybersecurity Firms, The New Scapegoat for Companies?

Cybersecurity Threats Increase Cybersecurity Firms’ Business

The FTC has had the right, for years, to sue companies who do not take proper measures to ensure their customer’s information is safe.  With the increased risk of security breaches through cybersecurity attacks, the likelihood of businesses utilizing the services of cybersecurity firms to make sure their data is safe and secure has increased.  Unfortunately, this provides a scapegoat for the company.  If for any reason their customers’ information is hacked, they then point the finger to the cybersecurity firm.  Realistically, yes, it is the firm’s responsibility to minimize the risk of exposure; however at what point is the company still responsible?

This is the exact argument that is currently taking place between the cybersecurity firm Trustwave, and Affinity Gaming who suffered a second breach after implementing Trustwave’s services.  According to The Street, Affinity Gaming is suing the cybersecurity firm for 100k in damages and Trustwave is disputing the lawsuit.  As the litigation continues, it will be interesting to see who is deemed liable.

We want to know–who do you think should be held responsible?



 1,135 total views,  1 views today

(Visited 1 times, 1 visits today)

4 thoughts on “Cybersecurity Firms, The New Scapegoat for Companies?”

  1. Thur 2/4/16
    Over a year ago, I purchased a lifetime subscription for my Dell Laptop.. I look at the security reports frequently and “CLEAR ALL” Recently I noticed the heading at the top of the security report has some titles in various color print.
    Yellow-Bad, Unknown & Blocked. Orange-Unknown and Allowed. Red-Bad & Allowed
    Is something to be coded by these colors in Security Reports? All the listings in my security reports have been black fonts. Now that I have had PCMatic over a year do I need to update the program? How frequently should I CLEAR ALL in my security report? and how often should my PC Matic program be updated?

  2. I think it depends on what actually happened, and nothing I read above says anything about that. If it's a case of simply not detecting and exploit or etc, then I'd think there'd a case. But it's perfectly possible that the casino company was doing something out of the control of the security company, ignored warnings, etc., etc. In that case I don't see how the security co. could be responsible.

  3. The Oncoming Storm

    it’s a dirty irresponsible trick for a corporation to pass the buck like that and hire a cybersecurity firm to handle their more sensitive data, but unfortunately from a legal standpoint, they have the right and upon taking on the responsibility of keeping said data secure, the cybersecurity company becomes liable for any breaches.

Leave a Comment

Your email address will not be published.

This site uses Akismet to reduce spam. Learn how your comment data is processed.