CYBERSECURITY -
Second Security Directive Issued by TSA to Pipeline Operators -
The U.S. Transportation Security Administration (TSA) issued its second Security Directive to the pipeline industry on July 20, 2021,...more
7/23/2021
/ Customs and Border Protection ,
Cyber Attacks ,
Cybersecurity ,
Data Breach ,
Data Privacy ,
Data Protection ,
Drones ,
FBI ,
Hackers ,
Infrastructure ,
Location Data ,
NASA ,
Olympics ,
Pipelines ,
Ransomware ,
TSA
This week, the Department of Homeland Security’s inspector general said in an oversight report that U.S. Customs and Border Protection (CBP) officials have failed to use adequate cybersecurity measures and safeguards to...more
7/23/2021
/ Customs and Border Protection ,
Cyber Crimes ,
Cybersecurity ,
Data Breach ,
Data Protection ,
Data Security ,
Department of Homeland Security (DHS) ,
Hackers ,
Personal Data ,
Risk Management ,
Vulnerability Assessments
This week, a North Carolina federal judge denied Filters Fast LLC’s motion to dismiss a proposed data breach class action, ruling that the plaintiffs demonstrated adequate harm to satisfy Article III standing....more
7/23/2021
/ Article III ,
Class Action ,
Cyber Attacks ,
Data Breach ,
E-Commerce ,
Injury-in-Fact ,
Internet Retailers ,
Negligence ,
Personal Data ,
Settlement Agreements ,
Standing
CYBERSECURITY -
White House Focused on Combating Ransomware -
Ransomware attacks are frequent and escalating as we speak. Double extortion scams are hitting companies at a dizzying pace, and catching companies, large...more
7/16/2021
/ Article III ,
Biden Administration ,
Canon ,
COPPA ,
Cyber Attacks ,
Cybersecurity ,
Data Breach ,
Data Privacy ,
Drones ,
Federal Aviation Administration (FAA) ,
Hackers ,
Ransomware ,
Smart Devices ,
Standing ,
Telemarketing ,
Text Messages
We previously wrote about the proposed class action lawsuit against Canon USA Inc. that resulted from a data breach of former and current employees’ personal information. This week, Canon argued in New York federal court that...more
CYBERSECURITY -
Microsoft Issues Emergency Software Update for PrintNightmare Zero Day Vulnerability -
Following the release of a U.S. Cybersecurity & Infrastructure Security Agency (US-CERT) Coordination Center...more
7/9/2021
/ Bitcoin Mining ,
British Airways ,
Cryptocurrency ,
Cyber Attacks ,
Cybersecurity ,
Data Breach ,
Data Privacy ,
Data Protection ,
Data Security ,
Hackers ,
Microsoft ,
Mobile Apps ,
Personal Data ,
Ransomware ,
Software ,
Vulnerability Assessments
British Airways settled a data breach class action lawsuit this week resulting from a 2018 data breach that affected thousands of its customers. In 2018, the personal data of approximately 420,000 customers and staff was...more
This week, Volkswagen AG’s U.S. entity and its Audi brand were hit with a class action for a data breach that allegedly compromised 3.3 million consumers’ personal information. ...more
CYBERSECURITY -
Fertility Clinic in Georgia Notifies Patients of Data Breach -
Reproductive Biology Associates, LLC (RBA) and its affiliate, MyEggBank, notified approximately 38,000 patients that a data breach...more
Last week, Impact MHC, a Colorado-based mobile home park management company, agreed to pay $25,000 to the Colorado Attorney General’s office and implement new security measures after a data breach of more than 15,000...more
CYBERSECURITY -
Another Win for Justice Department: Slilpp Marketplace Takedown -
People always ask me if law enforcement is having any luck in combatting cyber criminals. Let me be clear: it is a very tough job to take...more
6/18/2021
/ Ancestry.com ,
Beyond Visual Line Of Sight (BVLOS) ,
Car Rentals ,
Computer Fraud and Abuse Act (CFAA) ,
Cyber Attacks ,
Cyber Crimes ,
Cybersecurity ,
Data Breach ,
Data Protection ,
Department of Justice (DOJ) ,
Drones ,
Enforcement Actions ,
Federal Aviation Administration (FAA) ,
Hackers ,
Popular ,
Ransomware ,
SCOTUS ,
Van Buren v United States
This week, Ancestry.com Inc. prevailed in a class action which alleged that it misappropriated consumers’ images and violated their privacy by using such data to solicit and sell their services and products. ...more
6/17/2021
/ Advertising ,
Ancestry.com ,
Article III ,
Class Action ,
Communications Decency Act ,
Consumer Privacy Rights ,
Data Breach ,
Data Protection ,
Databases ,
Injury-in-Fact ,
Leave to Amend ,
Marketing ,
Misappropriation ,
Name and Likeness ,
Photographs ,
Standing
CYBERSECURTY -
U.S. CISA + Cyber Command Warns of Critical Flaw in VMware -
Although a patch has been available by VMware since May 25, 2021, the Department of Homeland Security’s Cybersecurity and Infrastructure...more
6/11/2021
/ Cryptocurrency ,
Cyber Attacks ,
Cybersecurity ,
Data Breach ,
Data Privacy ,
Data Protection ,
Data Security ,
Financial Transactions ,
Hackers ,
Homeland Security Cybersecurity & Infrastructure Security Agency (CISA) ,
Microsoft ,
Ransomware
CYBERSECURITY -
Verizon 2021 Data Breach Investigations Report Released -
If you have been following Verizon’s annual data breach investigation reports like I have over the years, you get excited when the new one comes out....more
CYBERSECURITY -
President Biden Signs Executive Order to Strengthen Cybersecurity for Federal Government Following Colonial Pipeline Attack -
President Joe Biden signed an Executive Order on Wednesday, May 12, 2021,...more
5/14/2021
/ Biden Administration ,
Critical Infrastructure Sectors ,
Cybersecurity ,
Data Breach ,
Data Protection ,
Data Sellers ,
FBI ,
Hackers ,
Pipelines ,
Regulatory Agenda ,
Supply Chain
CYBERSECURITY -
Eversource Energy Notifies Customers of Data Breach -
Eversource Energy, which is the largest energy supplier in New England with 4.3 million customers in Connecticut, Massachusetts, and New...more
4/30/2021
/ Apple ,
Cyber Attacks ,
Cyber Crimes ,
Cybersecurity ,
Data Breach ,
Data Privacy ,
Data Protection ,
Data Security ,
Hackers ,
iPhone ,
NYDFS ,
Personally Identifiable Information ,
Ransomware ,
SolarWinds
CYBERSECURITY -
NSA Issues New Warning About Four Critical Patches to Microsoft Exchange Servers -
The National Security Agency (NSA) recently issued a warning to private industry about four zero-day vulnerabilities in...more
4/23/2021
/ Cyber Attacks ,
Cyber Crimes ,
Cybersecurity ,
Data Breach ,
Data Privacy ,
Data Protection ,
Data Security ,
Drones ,
Facebook Inc v Duguid ,
Hackers ,
National Security Agency (NSA) ,
NBA ,
NYDFS ,
Personally Identifiable Information ,
Ransomware ,
SCOTUS
CYBERSECURITY -
Cisco/Talos Researchers Find Attackers Using Slack and Discord to Distribute Malware -
Another example of the resiliency and creativity of cyber-attackers is outlined in a new blog by Cisco/Talos...more
4/16/2021
/ Automatic License Plate Readers ,
Biometric Information ,
Cisco ,
Cybersecurity ,
Data Breach ,
Data Privacy ,
Data Protection ,
Hackers ,
Homeland Security Cybersecurity & Infrastructure Security Agency (CISA) ,
Microsoft ,
Mobile Apps ,
NAIC ,
Personal Data ,
Personally Identifiable Information
North American IT company Presidio faces a proposed data breach class action by an employee for an incident involving employee data. Eric LaPrairie, a former Presidio employee, received a notice of a data breach from...more
CYBERSECURITY -
GAO Report Identifies Need for DOE to Address Risks to Electrical Distribution System -
The United States Government Accountability Office (GAO) recently completed and published a study on electricity...more
4/2/2021
/ California Consumer Privacy Act (CCPA) ,
Cybersecurity ,
Data Breach ,
Data Privacy ,
Data Protection ,
Drones ,
Email ,
FBI ,
GAO ,
Health Insurance Portability and Accountability Act (HIPAA) ,
Infrastructure ,
OCR ,
Personal Data ,
Personally Identifiable Information ,
Right of Access ,
Vulnerability Assessments ,
Wal-Mart
Gardiner v. Walmart provided some guidance as to the specificity required to state a claim under the California Consumer Privacy Act (CCPA) and the types of damages that may be recoverable for breaches of California consumer...more
4/2/2021
/ California Consumer Privacy Act (CCPA) ,
Cybersecurity ,
Dark Web ,
Data Breach ,
Data Protection ,
Personally Identifiable Information ,
Popular ,
Privacy Policy ,
Terms of Use ,
Wal-Mart ,
Websites
CYBERSECURITY -
$50 Million Ransom Demand is Largest Ever -
In what is being reported as the largest ransom demand ever, Taiwanese electronics and computer manufacturer Acer has reportedly been hit with a ransomware...more
3/26/2021
/ Critical Infrastructure Sectors ,
Cyber Attacks ,
Cyber Crimes ,
Cybersecurity ,
Data Breach ,
Data Privacy ,
Data Protection ,
Drones ,
Facebook ,
Hackers ,
Honeywell International ,
Personally Identifiable Information ,
Popular ,
Ransomware ,
Vaccinations ,
Vulnerability Assessments
CYBERSECURITY -
Ironic Justice: WeLeakInfo Users’ Information Compromised -
In the category of “you can’t make this up, but satisfyingly ironic,” it was recently reported that criminals who used the WeLeakInfo database...more
3/19/2021
/ California Consumer Privacy Act (CCPA) ,
Credit Reports ,
Cyber Attacks ,
Cyber Crimes ,
Cybersecurity ,
Data Breach ,
Data Privacy ,
Data Security ,
Drones ,
Form 8-K ,
Hackers ,
Molson Coors
CYBERSECURITY -
Microsoft Releases Additional Resources for Exchange Flaws and CISA Issues Alert -
As we alerted our readers last week, Microsoft announced that its Exchange email servers have been compromised, which is...more
3/12/2021
/ California Consumer Privacy Act (CCPA) ,
Cyber Attacks ,
Cybersecurity ,
Data Breach ,
Drones ,
Hackers ,
Legislative Agendas ,
Microsoft ,
Personally Identifiable Information ,
Preemption ,
Regulatory Agenda ,
Surveillance ,
Vulnerability Assessments ,
Wal-Mart
CYBERSECURITY -
Free Ransomware Service Offered to U.S. Hospitals -
The Center for Internet Security (CIS) announced last week that it has launched the Malicious Domain Blocking and Reporting (MDBR) service to assist...more
2/26/2021
/ Cyber Attacks ,
Cyber Crimes ,
Cybersecurity ,
Data Breach ,
Driverless Cars ,
Hackers ,
Health Insurance Portability and Accountability Act (HIPAA) ,
Information Technology ,
Personally Identifiable Information ,
Popular ,
Ransomware ,
Regulatory Agenda ,
Right of Access ,
WhatsApp