Jane Blaney on Data Security

HIPAA Regulation of Online Tracking Technologies

In a December 2022 bulletin published by the Office for Civil Rights at the U.S. Department of Health and Human Services (HHS), HHS made clear that the use of third-party tracking technologies by covered entities and business...more

1/19/2023 / Covered Entities , Data Privacy , Data Security , Department of Health and Human Services (HHS) , Health Insurance Portability and Accountability Act (HIPAA) , HIPAA Privacy Rule , HIPAA Security Rule , Mobile Apps , OCR , PHI , Risk Management , Technology , Third-Party , Tracking Systems , Web Tracking

Insurance Privacy, Cybersecurity and Data Strategy: Mid-2022 Updates

The first half of 2022 brought plenty of activity in the data privacy and cybersecurity space, much of which is applicable to or of interest to the insurance industry. We outline some of this activity below. Revisions to...more

7/14/2022 / Cyber Incident Reporting , Cybersecurity , Data Protection , Data Security , Insurance Industry , NAIC , Popular , Proposed Rules , Ransomware , Risk Management

HHS Ransomware Report Details Revival of Dangerous LOTL Cyberattack

On May 5, 2022, the U.S. Department of Health and Human Services (HHS) issued a report entitled “Ransomware Trends in the HPH Sector” (HHS Report) that reviewed key cybersecurity threats and trends affecting the U.S....more

5/16/2022 / Corporate Counsel , Cyber Attacks , Cybersecurity , Data Security , Department of Health and Human Services (HHS) , Healthcare , Popular , Ransomware

Feds Hope to Tighten Timeline for Agency Reporting of Cyberattacks as Congress Debates Federal Data Breach Notification Law

On December 6, 2021, in the Memorandum for the Heads of Executive Departments and Agencies, the Office of Management and Budget took a more aggressive position on strengthening the nation’s cybersecurity posture. Under this...more

12/20/2021 / Covered Entities , Critical Infrastructure Sectors , Cyber Attacks , Cybersecurity , Data Breach , Data Protection , Data Security , Enforcement Actions , Homeland Security Cybersecurity & Infrastructure Security Agency (CISA) , OMB , Popular , Proposed Legislation , Risk Management

NIST Releases New “Cybersecurity Framework Profile for Ransomware Risk Management” to Battle Growing Threat of Ransomware Attacks

Ransomware incidents continue to be on the rise, wreaking havoc for organizations globally. Ransomware attacks target an organization’s data or infrastructure, and, in exchange for releasing the captured data or...more

11/11/2021 / Cyber Attacks , Cybersecurity , Cybersecurity Framework , Data Protection , Data Security , NIST , Popular , Ransomware , Risk Management

“Zero Trust Architecture” Is Officially Here: NIST Publishes New Cybersecurity Framework

The National Institute of Standards and Technology, commonly referred to as NIST, recently published a new computer framework for users to consider as a cyber-framework security model — the Zero Trust Architecture Model...more

5/21/2021 / Cybersecurity , Cybersecurity Framework , Data Security , NIST , Popular , Technology , U.S. Commerce Department

New Bill Proposes that Americans Should Be Able to Sue Foreign Hackers

The Homeland and Cyber Threat Act (HACT) was introduced in the U.S. House on March 12, 2021. This bill would allow U.S. citizens to sue foreign governments, agents and officials and to collect monetary damages for personal...more

5/20/2021 / Citizen Suits , Cyber Attacks , Cybersecurity , Data Security , Foreign Agents , Foreign Governments , Foreign Official , Foreign Sovereign Immunities Act of 1976 (FSIA) , Hackers , Legislative Agendas , Proposed Legislation

Jane Blaney

Faegre Drinker Biddle & Reath LLP

Popular Topics by This Author

Latest Posts › Data Security