Now Available!
Join Us On LinkedIn
Join the Cybersecurity and Incident Response Group on LinkedInCybersecurity Threats in Private Equity: Regulations
Cybersecurity breaches and threats are pervasive concerns for any entity storing valuable data or managing large sums of money: private investment funds are no exception. Recently three private equity firms suffered breaches that compromised their email accounts and wire transfers, resulting in $1.3 million in losses. We have seen the SEC follow through on its 2019 priority of […]
Reasonable and Pragmatic Approach by UK’s ICO to GDPR Compliance during the COVID-19 Pandemic
On March 12, 2020, the Information Commissioner’s Office (ICO), the U.K.’s data protection authority (DPA), published Guidance for data controllers on their data protection compliance obligations during the COVID-19 pandemic. The take-away point is that the ICO will take into account “the compelling public interest in the current health emergency” and will take a “reasonable […]
Cybersecurity and Infrastructure Security Agency Seeks Feedback on Essential Workers, Sectors | Subject to Inquiry
As many industries transition to alternate working arrangements in response to COVID-19, certain sectors and functions essential to the nation’s public health, safety and community well-being must continue to operate. The Cybersecurity and Infrastructure Security Agency (CISA) of the Department of Homeland Security recently released an initial list of “Essential Critical Infrastructure Workers” to help […]
US Could Appoint a Cybersecurity Leader for Each State – Infosecurity Magazine
The USA is considering legislation that would protect local governments by requiring the appointment of a cybersecurity leader for each state. Backers of the Cybersecurity State Coordinator Act of 2020 say the proposed law will improve intelligence sharing between state and federal governments and speed up incident response times in the event of a cyber-attack. Under the […]
Your CCPA rights, explained – Vox
When the California Consumer Privacy Act, or CCPA (which you can read in full here), goes into effect on January 1, 2020, Californians will finally have certain rights over the data that companies like Facebook, Google, data brokers, and even Recode’s parent company, Vox Media, collect from them. While these rights have limits, the very […]
What Does California’s New Data Privacy Law Mean? Nobody Agrees – The New York Times
Millions of people in California are now seeing notices on many of the apps and websites they use. “Do Not Sell My Personal Information,” the notices may say, or just “Do Not Sell My Info.” But what those messages mean depends on which company you ask. Stopping the sale of personal data is just one […]
What You May Have Overlooked in the Run Up to CCPA Compliance | Legaltech News
With just days to go before the California Consumer Privacy Act (CCPA) compliance date, some companies may be scrambling to get their data collection and management processes in order. Others, however, might be taking a wait-and-see approach before fulling investing into large-scale changes. Whatever an organization’s plan, there are certain things all covered entities should […]
US Navy Bans TikTok, Citing “Cybersecurity Threat”
Lawmakers are urging the United States Armed Forces to drop TikTok as an approved app. Service members in the US can no longer use TikTok on government-issued smartphones, according to Reuters, due to the popular video-sharing app’s emergence as a “cybersecurity threat.” Both the Navy and the Army are disabling smartphones with TikTok currently installed. […]
On Data Privacy, India Charts Its Own Path – The New York Times
India is poised to pass its first major data protection law, placing new restrictions on how corporations can collect and use information from the country’s 1.3 billion people. The legislation, which is set to be introduced in Parliament this week after more than a year of discussion, builds on Europe’s recently enacted privacy protections that […]
US Hospitals Fined $2.175M for “Refusal to Properly Report” Data Breach – Infosecurity Magazine
An American health services provider has agreed to pay a fine of $2.175m after refusing to properly notify Health and Human Services of a data breach. In April of 2017, a complaint regarding Sentara Hospitals was received by the Department of Health and Human Services (HHS). The complainant said that they had received a bill from Sentara Hospitals […]
Cybersecurity has taken a back seat to privacy.
Cybercrime will carry a global price tag of $6 trillion by 2021, according to a Cybersecurity Ventures annual report. The National Security Agency warns that cybercriminals are “becoming more sophisticated and capable every day in their ability to use the Internet for nefarious purposes.” Yet many companies fail to take basic precautions, such as deleting […]
Council Post: California’s IoT Security Law: Why It Matters And The Meaning Of ‘Reasonable Cybersecurity’
Over the last several years, the internet of things (IoT) has not only come to pervade our home life, but our work life as well. A smart thermostat adjusts office temperatures based on changes in the weather, and the vending machine in the hall issues an alert when it needs to be refilled. Yet the […]
U.S. National Guard’s Evolving Mission Includes Assisting Local Governments Experiencing Cyber Attacks – CPO Magazine
These brigades are also often consolidated efforts, bringing together personnel and resources from multiple National Guard branches (such as the Army and Air Force). In total the National Guard has nearly 4,000 service members dedicated to cyber security spread across 59 units in 38 states, and anticipates adding more through 2022. An example of the […]
Too Many CISOs Delay Cyber Response, DHS Official Says – Nextgov
An overabundance of cybersecurity leaders across federal agencies is hindering the government’s ability to adapt to the changing digital landscape, according to a top Homeland Security Department official. Agencies must be able to act swiftly to keep their tech ecosystems secure against a constantly evolving array of digital threats, but excessive bureaucracy within the federal […]
New York SHIELD Act on Data Breach Notification
The Stop Hacks and Improve Electronic Data Security Handling Act (SHIELD Act) recently enacted by the New York Senate brings New York in line with many states that have expanded their breach notification laws, and imposes new obligations on businesses that hold New York residents’ personal information. Effective October 2019, the Act amends New York’s […]