Now Available!
Join Us On LinkedIn
Join the Cybersecurity and Incident Response Group on LinkedInTop
California AG Submits CCPA Regulations for Final Approval, Paving the Way Toward Enforcement – Lewis Brisbois Bisgaard & Smith LLP
On Monday, June 1, 2020, the California Attorney General’s Office announced that it had submitted the final version of its proposed regulations under the California Consumer Privacy Act (CCPA) to the California Office of Administrative Law (OAL) for review and approval. via California AG Submits CCPA Regulations for Final Approval, Paving the Way Toward Enforcement […]
Ransomware Is Growing More Pernicious; It’s High Time Your Defenses Evolve : Risk & Insurance
One of the key takeaways from the inaugural meeting was the emergence of the Maze variant and a “new normal” of data exfiltration, often including stolen private customer information. Whereas previous generations of ransomware have been designed by threat actors to encrypt data and extort an organization for Bitcoin in exchange for the decryption key, […]
How to Pay a Ransom: A Step-By-Step Guide for Something You’d Never Do
While you may not envision a scenario where your company would give in to paying ransom, it’s happening more often as organizations weigh the risks and benefits and find they have no choice.So say this is your reality. Dark Reading spoke to several cybersecurity experts to map out the step-by-step process of paying ransom and […]
Cybersecurity Threats in Private Equity: Regulations
Cybersecurity breaches and threats are pervasive concerns for any entity storing valuable data or managing large sums of money: private investment funds are no exception. Recently three private equity firms suffered breaches that compromised their email accounts and wire transfers, resulting in $1.3 million in losses. We have seen the SEC follow through on its 2019 priority of […]
EasyJet Says Cyberattack Stole Data of 9 Million Customers – The New York Times
EasyJet, the low-cost airline based in England, said on Tuesday that it was the target of a “highly sophisticated” cyberattack that exposed the email addresses and personal travel plans of about nine million customers, and that some had their credit card details stolen. via EasyJet Says Cyberattack Stole Data of 9 Million Customers – The […]
Equifax Offers to Pay Banks $30.5 Million for Data Breach Claims
Equifax, Inc. has agreed to a proposed settlement with a subclass of financial institutions to resolve allegations that it failed to protect the personal data of over 140 million Americans from cyberattack, according to an unopposed motion for preliminary approval filed in the Northern District of Georgia. The proposed settlement provides for a $5.5 million […]
Law Firm Hackers Claim to Have Dirt on Donald Trump, Up Data Ransom to $42M
The cyber-extortionists who stole a trove of private data from entertainment law firm Grubman Shire Meiselas & Sacks now have a new target in their sights: President Donald Trump. In a blog post Thursday on the dark web viewed by Variety, the hacker collective that is holding thousands of the law firm’s documents hostage — […]
GoDaddy Confirms Breach Affecting 28,000 Accounts: Report
Web hosting giant GoDaddy confirms that a data breach has affected about 28,000 of its customers’ web hosting accounts, according to a company spokesperson. The company has reset passwords and usernames for some customers as a precaution, although it says no data appears to have been altered, it states in a notification letter to clients. […]
How Law Firms Can Demonstrate Strong Cybersecurity Practices
Law firms have long been known as a “soft target” for bad actors in the technology space. The amount of sensitive data that exists at a law firm is a treasure chest for hackers or bad actors – privileged communications, confidential financial data, nonpublic personal information are just a few of the examples. Public breaches […]
Ransomware mentioned in 1,000+ SEC filings over the past year | ZDNet
A growing number of public companies are now listing ransomware as a forward-looking risk factor in documents filed with the US Securities Exchange Commission. More than 1,000 documents mentioning ransomware as a risk factor have been filed over the last 12 months, and more than 700 in 2020 alone, with the number expected to easily […]
How Cybercriminals are Weathering COVID-19 — Krebs on Security
In many ways, the COVID-19 pandemic has been a boon to cybercriminals: With unprecedented numbers of people working from home and anxious for news about the virus outbreak, it’s hard to imagine a more target-rich environment for phishers, scammers and malware purveyors. In addition, many crooks are finding the outbreak has helped them better market […]
Ransomware Payments Up 33% As Maze and Sodinokibi Proliferate in Q1 2020 – Security Boulevard
In Q1 2020, the average enterprise ransom payment increased to $111,605, up 33% from Q4 of 2019. Ransomware distributors increasingly targeted large enterprises and were successful in forcing ransom payments for the safe recovery of data. Large enterprise ransom payments are the minority by volume, but the size of the payments dramatically pulled up the […]
Guidance to Department of Financial Services (“DFS”) Regulated Entities Regarding Cybersecurity Awareness During COVID-19 Pandemic | Department of Financial Services
As we face an unprecedented threat from the novel coronavirus known as “COVID-19,” every organization’s highest priority must be health and safety. The extraordinary steps necessary to combat the COVID-19 pandemic have also created new challenges as regulated entities work to continue operating and providing critical services. Among these new risks is a significant increase […]
Cyber Security 101: What Every Defense Lawyer Should Know – Lexology
The day begins like any other. Your client opens for business at 9:00 a.m. All employees are at their desks as customers begin calling, emailing, and walking in with various questions and needs. Except this time, when the employees attempt to access customer records from your client’scomputer network, they immediately notice something is wrong. None […]
Cybersecurity Docket Announces ‘Incident Response 30′ for 2020
Cybersecurity Docket announces its 2020 list of the 30 best data breach response lawyers.