CYBERSECURITY -
Joint Commission Issues Alert on Patient Safety After a Cyber-Attack -
On August 15, 2023, the Joint Commission issued a Sentinel Event Alert entitled “Preserving patient safety after a cyberattack,”...more
CYBERSECURITY -
CISA Issues Four More Industrial Control Systems Advisories -
On August 22, 2023, the Cybersecurity and Infrastructure Security Agency (CISA) issued four more advisories related to industrial control...more
8/25/2023
/ Artificial Intelligence ,
Consumer Privacy Rights ,
Cybersecurity ,
Data Management ,
Data Privacy ,
Data Protection ,
Homeland Security Cybersecurity & Infrastructure Security Agency (CISA) ,
Information Governance ,
Machine Learning ,
Personal Data ,
Vulnerability Assessments
Earlier this month, the Commissioner of Data Protection of the Dubai International Financial Centre (DIFC), a financial free-zone in the United Arab Emirates (UAE), issued the first adequacy decision regarding the California...more
The White House hosted a roundtable meeting Tuesday on the data brokering industry as a part of an administration-wide push toward strengthening America’s consumer privacy landscape. The meeting brought together researchers,...more
8/18/2023
/ Biden Administration ,
Consumer Financial Protection Bureau (CFPB) ,
Consumer Privacy Rights ,
Cybersecurity ,
Data Brokers ,
Data Collection ,
Data Management ,
Data Privacy ,
Data Protection ,
Fair Credit Reporting Act (FCRA) ,
Information Governance ,
Patient Privacy Rights ,
Personal Data ,
Regulatory Agenda ,
Regulatory Reform ,
Regulatory Requirements ,
Reproductive Healthcare Issues
Tennessee, Montana, Iowa, and Indiana have each recently passed a consumer privacy statute in recent weeks. These laws follow the same trend started by California’s Consumer Privacy Act by granting consumers the right to know...more
An Illinois appellate court has ruled that Apple’s biometric unlock features, including Touch ID fingerprint scanning and Face ID facial geometry scanning, do not violate the state’s Biometric Information Privacy Act (BIPA)....more
1/13/2023
/ Apple ,
Biometric Information ,
Biometric Information Privacy Act ,
Class Action ,
Data Collection ,
Data Privacy ,
Data Storage ,
Facial Recognition Technology ,
Fingerprints ,
Personal Data ,
Personally Identifiable Information ,
Smartphones
A 34-page class action was filed against Blackhawk Network for a data breach that occurred on MyPrepaidCenter.com in September of this year. The plaintiffs allege that Blackhawk Network’s failure to prevent or detect this...more
California law will soon require businesses to treat their employees and business partners as consumers under the California Consumer Privacy Act (CCPA). The CCPA and its successor legislation, the California Privacy Rights...more
11/4/2022
/ California ,
California Consumer Privacy Act (CCPA) ,
California Privacy Rights Act (CPRA) ,
Consumer Privacy Rights ,
Cybersecurity ,
Data Collection ,
Data Management ,
Data Privacy ,
Data Protection ,
Information Governance ,
Personal Data ,
Regulatory Requirements
CYBERSECURITY -
CISA Lists Top CVEs Exploited by Chinese State-Sponsored Cyber Actors -
The Cybersecurity & Infrastructure Security Agency (CISA) recently issued an Alert outlining the top Common Vulnerabilities and...more
10/26/2022
/ Artificial Intelligence ,
China ,
Cyber Attacks ,
Cybersecurity ,
Data Management ,
Data Privacy ,
Data Protection ,
Drones ,
Employee Monitoring ,
General Data Protection Regulation (GDPR) ,
Homeland Security Cybersecurity & Infrastructure Security Agency (CISA) ,
Personal Data
ACTS Retirement Services, Inc. (ACTS), a non-profit corporation that manages retirement communities, suffered a data breach in April 2022, which led to unauthorized access to thousands of current and former employees’...more
CYBERSECURITY Neopets Breach Affects 69M Users What is Neopets, you ask? It is a virtual pet website that gives members the ability to “own, raise, and play games with their virtual pets.” According to BleepingComputer,...more
7/29/2022
/ Cybersecurity ,
Data Collection ,
Data Management ,
Data Privacy ,
Data Protection ,
Drones ,
Information Technology ,
Online Gaming ,
Online Safety for Children ,
Personal Data ,
Popular
INRIX, a company that provides location-based data analytics, has been collecting, analyzing, and selling aggregated vehicle, traffic, and parking data for over 17 years. Now, after the Roe v. Wade decision, INRIX is under...more
7/22/2022
/ Abortion ,
Analytics ,
Consumer Information ,
Data Collection ,
Dobbs v. Jackson Women’s Health Organization ,
Geolocation ,
Healthcare ,
Location Data ,
Location Privacy ,
Mobile Apps ,
Personal Data ,
Planned Parenthood ,
Privacy Concerns ,
Reproductive Healthcare Issues ,
Roe v Wade
CYBERSECURITY -
Joint Advisory Warns of MedusaLocker Ransomware -
A recently-issued joint advisory by the FBI, the Cybersecurity and Infrastructure Security Agency, the Financial Crimes Enforcement Network, and the...more
CYBERSECURITY NIST -
Releases Guidance on Supply Chain Security -
The National Institute of Standards and Technology (NIST) Information Technology Laboratory recently released guidance entitled “Software Supply Chain...more
5/13/2022
/ American Civil Liberties Union (ACLU) ,
Clearview AI ,
Consumer Privacy Rights ,
Cybersecurity ,
Data Management ,
Data Privacy ,
Data Protection ,
New Guidance ,
New Legislation ,
NIST ,
Personal Data ,
Popular ,
Privacy Laws ,
Ransomware ,
Supply Chain
CYBERSECURITY -
DOJ Takes Down RaidForums' Website -
In an action against what has been described as one of the largest hacker forums in the world, the U.S. Department of Justice (DOJ) announced on April 12, 2022, that...more
4/15/2022
/ Consumer Privacy Rights ,
Cybersecurity ,
Data Management ,
Data Privacy ,
Data Protection ,
Department of Justice (DOJ) ,
Enforcement Actions ,
Federal Trade Commission (FTC) ,
Microsoft ,
Network Security ,
Personal Data ,
Popular ,
Scams
CYBERSECURITY -
State Department Establishes Bureau of Cyberspace and Digital Policy -
The Department of State’s new Bureau of Cyberspace and Digital Policy (CDP) commenced operations on April 4, 2022. According to an...more
4/8/2022
/ Consumer Privacy Rights ,
Cybersecurity ,
Data Breach ,
Data Privacy ,
Data Protection ,
Drones ,
Enforcement Actions ,
Information Governance ,
Information Technology ,
Personal Data ,
Popular ,
Scams
CYBERSECURITY -
Russian Government Officials Charged with Hacking U.S. Energy Infrastructure -
The U.S. Department of Justice (DOJ) unsealed indictments against four Russian government officials on March 24, 2022,...more
4/4/2022
/ Critical Infrastructure Sectors ,
Cryptocurrency ,
Cybersecurity ,
Data Breach ,
Data Management ,
Data Privacy ,
Drones ,
Employee Tracking ,
GPS ,
Hackers ,
Personal Data ,
Russia
CYBERSECURITY -
Cyber-Attackers Politically Aligned -
The most recent Accenture Global Incident Report (the Report) shows that cyber-attackers have political views and are divided between support for Russia or Ukraine....more
3/18/2022
/ Cyber Attacks ,
Cybersecurity ,
Data Privacy ,
Data Protection ,
Enforcement Actions ,
Federal Trade Commission (FTC) ,
Personal Data ,
Popular ,
Right To Know ,
Russia ,
Scams ,
Vulnerability Assessments
CYBERSECURITY -
CISA/FBI Advisory Warns of Destructive Malware Used Against Ukraine -
The Cybersecurity and Infrastructure Security Agency (CISA) and the FBI issued a joint advisory this week alerting organizations of...more
3/4/2022
/ Artificial Intelligence ,
Cyber Attacks ,
Cyber Crimes ,
Cybersecurity ,
Data Privacy ,
Data Protection ,
Data Security ,
FBI ,
Hackers ,
Homeland Security Cybersecurity & Infrastructure Security Agency (CISA) ,
Identity Theft ,
Information Blocking Rules ,
Malware ,
Passwords ,
Personal Data ,
Personally Identifiable Information ,
Popular ,
Russia ,
T-Mobile ,
Ukraine ,
Vulnerability Assessments
In a class action lawsuit filed in the U.S. District Court for the Northern District of Illinois, Clearview Al Inc. faces allegations that it uses facial recognition technology that violates the Illinois Biometric Information...more
2/18/2022
/ Alter Ego ,
Artificial Intelligence ,
Biometric Information ,
Biometric Information Privacy Act ,
Class Action ,
Data Collection ,
Data Privacy ,
Facial Recognition Technology ,
Motion to Dismiss ,
Personal Data ,
Personally Identifiable Information ,
Statutory Violations ,
Unjust Enrichment
CYBERSECURITY -
CISA Issues Incident Response + Vulnerability Response Playbooks for Executive Branch -
The Cybersecurity & Infrastructure Security Agency (CISA) issued the Cybersecurity Incident & Vulnerability Response...more
11/19/2021
/ Connected Items ,
Consumer Privacy Rights ,
Costco ,
Cybersecurity ,
Data Collection ,
Data Privacy ,
Data Protection ,
Debit and Credit Card Transactions ,
Homeland Security Cybersecurity & Infrastructure Security Agency (CISA) ,
Information Governance ,
Personal Data ,
Personally Identifiable Information ,
Popular ,
Vulnerability Assessments
CYBERSECURITY -
Medical Center Rebuilding EMR Following Ransomware Attack -
Queen Creek Medical Center (QCMC), also known as Desert Wells Family Medicine, located in Arizona, has notified up to 35,000 patients of a data...more
9/17/2021
/ Apple ,
Consumer Privacy Rights ,
Cybersecurity ,
Data Management ,
Data Privacy ,
Data Protection ,
Drones ,
Enforcement Actions ,
Information Governance ,
iPhone ,
Personal Data ,
Personally Identifiable Information ,
Popular ,
Ransomware ,
Right of Access
CYBERSECURITY -
T-Mobile Clarifies Facts of Security Incident in Press Release -
There has been a flurry of reporting in the past few days on the T-Mobile customer data compromise, with allegations that the compromise...more
8/24/2021
/ Baby Products ,
California Consumer Privacy Act (CCPA) ,
Class Action ,
Consumer Privacy Rights ,
Cybersecurity ,
Data Breach ,
Data Privacy ,
Data Protection ,
Hackers ,
Information Governance ,
Personal Data ,
Personally Identifiable Information ,
Popular ,
Ransomware ,
Smart Devices ,
T-Mobile ,
Vulnerability Assessments
This week, a proposed data breach class action against Dickey’s Barbecue Restaurants Inc. was settled for $2.35 million in the U.S. District Court for the Northern District of Texas with approval of the settlement terms by...more
8/20/2021
/ California Consumer Privacy Act (CCPA) ,
Class Action ,
Data Breach ,
Data Protection ,
Data Security ,
Hackers ,
Personal Data ,
Personally Identifiable Information ,
Restaurant Industry ,
Settlement Agreements ,
Statutory Violations ,
Unfair Competition Law (UCL)
This week, the Department of Homeland Security’s inspector general said in an oversight report that U.S. Customs and Border Protection (CBP) officials have failed to use adequate cybersecurity measures and safeguards to...more
7/23/2021
/ Customs and Border Protection ,
Cyber Crimes ,
Cybersecurity ,
Data Breach ,
Data Protection ,
Data Security ,
Department of Homeland Security (DHS) ,
Hackers ,
Personal Data ,
Risk Management ,
Vulnerability Assessments