Now Available!
Join Us On LinkedIn
Join the Cybersecurity and Incident Response Group on LinkedInTop
Insurer’s Bid to Dismiss Complaint Seeking Cyber Policy Coverage for Payment Instruction Loss Denied | The D&O Diary
One of the more challenging issues businesses must confront as wrongdoers have turned Internet tools into criminal devices has been the rising threat of payment instruction fraud, or, as it is sometimes called, social engineering fraud. Along with these crimes have come vexing questions of insurance coverage for the ensuing losses. Courts have struggled to […]
New York SHIELD Act on Data Breach Notification
The Stop Hacks and Improve Electronic Data Security Handling Act (SHIELD Act) recently enacted by the New York Senate brings New York in line with many states that have expanded their breach notification laws, and imposes new obligations on businesses that hold New York residents’ personal information. Effective October 2019, the Act amends New York’s […]
Cyber risk insurance is more than just insurance
Insurance companies such as Chubb are offering incident response services and security tools to help companies improve their cyber security posture and better cope with cyber attacks via Cyber risk insurance is more than just insurance.
Former FBI Cyber Leader Jerry Bessette Joins Booz Allen
Booz Allen Hamilton announced today that Jerry Bessette, a former senior cybersecurity official at the Federal Bureau of Investigation, has joined Booz Allen as a leader of the firm’s Commercial business. In his new role as a senior vice president, Bessette will head the U.S. Commercial group’s Incident Response team, helping clients deploy cyber security […]
Microsoft will honor California’s new privacy rights throughout the United States – Microsoft on the Issues
We are optimistic that the California Consumer Privacy Act — and the commitment we are making to extend its core rights more broadly — will help serve as a catalyst for even more comprehensive privacy legislation in the U.S. As important a milestone as CCPA is, more remains to be done to provide the protection […]
Capital One Senior Security Officer Being Moved to New Role – WSJ
Capital One Financial Corp. is moving its chief information security officer out of the role in the wake of the bank’s massive data breach, according to people familiar with the matter. The bank informed employees on Thursday that Michael Johnson will become an adviser and that the bank will begin an external search for a […]
The CCPA Is Coming and So Are Data Breach Class Actions | Corporate Counsel
Even if companies are prepared for the CCPA, those responsible for compliance and regulation should be keeping an eye on what other states are doing. “The one thing that is becoming an emerging area is that other states are following the lead of California and enacting their own laws,” Palmer said. “The CCPA is the […]
Exodus of Cyber Security Team Could Expose White House to Cyber Attacks – CPO Magazine
At a time when global cyber threats seem to be emerging everywhere, the U.S. White House appears to be ignoring the potential risk of a cyber attack carried on the White House’s computer networks. What is most alarming is a recent exodus of at least a dozen senior cyber security officials, all of them former […]
Hackers Plead Guilty in Data Breach That Uber Covered Up – NBC 10 Philadelphia
Two computer hackers have pleaded guilty to concocting an extortion scheme that entangled Uber in a yearlong cover-up of a data breach that stole sensitive information about 57 million of the ride-hailing service’s passengers and drivers. The pleas entered Wednesday in a San Jose, California, federal court by Brandon Charles Glover and Vasile Mereacre resurrected […]
Cybersecurity scam called ‘formjacking’ on the rise | wcnc.com
A new cybersecurity scam called “formjacking” is on the rise. Hackers are injecting malicious code into websites and capturing your sensitive information which can be sold on the dark web for other people to use. The worst part? It can make you a victim on even the most secure websites. You could be shopping or […]
To Prove Cybersecurity’s Worth, Create a Cyber Balance Sheet
Using financial modeling, companies can adopt approaches for estimating both the direct and hidden intangible costs associated with cyber-risk and express those risks in traditional financial terms. These models should be based on industry-accepted frameworks (e.g., FAIR, NIST, etc.). A cyber balance sheet incorporates these financial models and related tools to gauge the impact differential […]
The California Consumer Privacy Act: Everything You Wanted to Know But Were Afraid to Ask — 100 Days Out, Part Two | Law.com
Part One of this article, last issue, covered how the CCPA applies to businesses — both in and outside California, the revenue threshold, proposed amendments and other open issues. Part Two continues with the rights that CCPA grants to Californians, the CCPA’s impact on company privacy policies, how other states’ privacy laws compare to the CCPA, […]
The California Consumer Privacy Act: Everything You Wanted to Know But Were Afraid to Ask — 100 Days Out (Part 1) | Law Journal Newsletters
Part One of this article covers how the CCPA applies to businesses — both in and outside California, the revenue threshold, proposed amendments and other open issues. Part Two, in the next issue, will cover the rights that CCPA grants to Californians, the CCPA’s impact on company privacy policies, how other states’ privacy laws compare […]
Ransomware Hit Case Management Provider TrialWorks. What Happens Next? | Legaltech News
Add case management platform TrialWorks to the laundry list of companies and public sector agencies that were struck and paralyzed by a cyberattack this year. And unless lawyers backed up their client files to a separate storage network, they could be frozen out of their data by TrialWorks’ problems. Still, experts say there are ways to mitigate the […]
Uber allegedly paid $100,000 ransom after massive data breach – WDEF
New details about how Uber responded to a massive hack attack in 2016 raise questions about the way it handled sensitive customer information. Instead of reporting the hackers to police, the company allegedly paid $100,000 in exchange for a promise to delete 57 million user files the men stole off a third party server, prosecutors said. […]