Now Available!
Join Us On LinkedIn
Join the Cybersecurity and Incident Response Group on LinkedInTop
Data Transfer Considerations in Investigations | Investigations and Enforcement Blog
Companies that operate in more than one jurisdiction that are either carrying out an internal investigation or are subject to a criminal or regulatory investigation by U.S. law enforcement agencies will almost certainly need to consider the legality of trans-Atlantic data transfers. Under European law, in particular, companies falling short in compliance with data protection […]
Smartwatch maker Garmin hit by outages after ransomware attack | Technology | The Guardian
Garmin has been forced to shut down its call centres, website and some other online services after a ransomware attack encrypted the smartwatch maker’s internal network and some production systems. The US company shut down services including the official Garmin website and all customer services, including phone lines, online chat and email. via Smartwatch maker […]
NY Charges First American Financial for Massive Data Leak — Krebs on Security
In May 2019, KrebsOnSecurity broke the news that the website of mortgage title insurance giant First American Financial Corp. had exposed approximately 885 million records related to mortgage deals going back to 2003. On Wednesday, regulators in New York announced that First American was the target of their first ever cybersecurity enforcement action in connection […]
$117.5M Yahoo Breach Settlement Was Reasonable, But Legal Work Was ‘Not Novel,’ Judge Koh Says | Law.com
U.S. District Judge Lucy Koh signed off on the $117.5 million data breach settlement with Yahoo Inc. on Tuesday, but she slashed attorney fees by more than $7 million after concluding the deal was “unexceptional” and the legal work “not particularly novel.” via $117.5M Yahoo Breach Settlement Was Reasonable, But Legal Work Was ‘Not Novel,’ […]
Twitter: “An update on our security incident”
At this time, we believe attackers targeted certain Twitter employees through a social engineering scheme. What does this mean? In this context, social engineering is the intentional manipulation of people into performing certain actions and divulging confidential information. The attackers successfully manipulated a small number of employees and used their credentials to access Twitter’s internal […]
2020 is on Track to Hit a New Data Breach Record – Security Boulevard
We’re just halfway through the year, and 2020 is on track to set a new data breach record. The new year started off on the wrong foot, with the coronavirus wreaking havoc across the world, creating the perfect storm for cybercrime to flourish. From healthcare institutions, tech, software, social media and meal delivery companies, cybercriminals […]
Information security and privacy lawyer Ronald Plesco joins DLA Piper’s Intellectual Property and Technology practice as a partner in Philadelphia | News | DLA Piper Global Law Firm
DLA Piper announced today that Ronald Plesco has joined the firm’s Intellectual Property and Technology practice as a partner in Philadelphia. Plesco, a former prosecutor, is an internationally known information security and privacy attorney with more than 20 years of experience in cyber investigations, privacy, threat intelligence, information assurance, identity management, cyber threats and cyber-enabled […]
One of Florida’s largest orthopedic providers faces class-action lawsuit after data breach
One of Florida’s largest orthopedic providers is facing a class-action lawsuit after hackers stole personal information from potentially thousands of patients. Attorney John Yanchunis of Morgan & Morgan filed the lawsuit against the Florida Orthopedic Institute, seeking at least $99 million on behalf of patients and former patients citing a “failure to properly secure and […]
Ransomware Gangs Don’t Need PR Help — Krebs on Security
We’ve seen an ugly trend recently of tech news stories and cybersecurity firms trumpeting claims of ransomware attacks on companies large and small, apparently based on little more than the say-so of the ransomware gangs themselves. Such coverage is potentially quite harmful and plays deftly into the hands of organized crime. Often the rationale behind […]
Keeping Data-Breach Reports Confidential After Capital One
When U.S. Magistrate Judge John Anderson ordered[1] Capital One Financial Corp. to turn over a post-breach digital forensics report to the consumer plaintiffs in the multidistrict litigation relating to the bank’s July 29, 2019, data breach,[2] the decision sent shock waves through the community of legal and forensic firms that help companies respond to cyberattacks. […]
How hackers extorted $1.14m from University of California, San Francisco – BBC News
A leading medical-research institution working on a cure for Covid-19 has admitted it paid hackers a $1.14m (£910,000) ransom after a covert negotiation witnessed by BBC News. The Netwalker criminal gang attacked University of California San Francisco (UCSF) on 1 June. via How hackers extorted $1.14m from University of California, San Francisco – BBC News.
Two Senior Commercial Cyber Leaders Join Booz Allen | Business Wire
Booz Allen Hamilton (NYSE: BAH) today announced that Kevin Richards, former global head of cyber risk consulting for global insurance broker Marsh, and Tony Sharp, a former vice president of information security at FedEx, have joined Booz Allen as leaders in the firm’s Commercial business. via Two Senior Commercial Cyber Leaders Join Booz Allen | […]
A New CCPA Data Breach Lawsuit Is “Minted” – Lexology
Online stationery and craft company Minted Inc. has been hit with a CCPA class action lawsuit, stemming from a massive data breach the company disclosed in late May. The proposed class action lawsuit, filed in a California federal court, claims that Minted Inc. failed to implement “reasonable security measures” and to properly encrypt certain personal […]
Norton Rose Fulbright enhances data protection, privacy and cybersecurity practice with new Houston partner
Global law firm Norton Rose Fulbright today announced that Will Daugherty, a data protection, privacy and cybersecurity lawyer with a focus on risk mitigation, incident response and compliance, has joined as a partner in its Houston office. Previously a partner with BakerHostetler, Daugherty counsels clients on all aspects of preparing for and responding to data […]
James A. Dawson Named Special Agent in Charge of the Criminal and Cyber Division of the Washington Field Office — FBI
Director Christopher Wray has named James A. Dawson as the special agent in charge of the Criminal and Cyber Division of the Washington Field Office. Mr. Dawson most recently served as the special agent in charge of the Mission Services Division in the same office. Mr. Dawson joined the FBI as a special agent in […]