The recent proposals around software liability, including the Cyber Resilience Act (CRA) in Europe and the National Cybersecurity Strategy (NCS) in the US, have sparked debates about accountability, especially among the open-source community. Supporters believe that liability could enhance security practices, directly holding companies responsible for insecure software. However, critics argue that such proposals oversimplify the complexity of cybersecurity and may hinder innovation. To address these concerns, policymakers must determine what constitutes a reasonable level of security and how much liability should cost.
Change Healthcare breach affected 100 million Americans, marking a new record
The recent data breach at Change Healthcare is now known to have impacted 100 million Americans, according to new information revealed to the Health and