This week, a North Carolina federal judge denied Filters Fast LLC’s motion to dismiss a proposed data breach class action, ruling that the plaintiffs demonstrated adequate harm to satisfy Article III standing....more
7/23/2021
/ Article III ,
Class Action ,
Cyber Attacks ,
Data Breach ,
E-Commerce ,
Injury-in-Fact ,
Internet Retailers ,
Negligence ,
Personal Data ,
Settlement Agreements ,
Standing
With the signature of Governor Jared Polis last week on the Colorado Privacy Act, Colorado became the third state (following California and Virginia) to adopt a comprehensive consumer privacy law....more
CYBERSECURITY -
Microsoft Issues Emergency Software Update for PrintNightmare Zero Day Vulnerability -
Following the release of a U.S. Cybersecurity & Infrastructure Security Agency (US-CERT) Coordination Center...more
7/9/2021
/ Bitcoin Mining ,
British Airways ,
Cryptocurrency ,
Cyber Attacks ,
Cybersecurity ,
Data Breach ,
Data Privacy ,
Data Protection ,
Data Security ,
Hackers ,
Microsoft ,
Mobile Apps ,
Personal Data ,
Ransomware ,
Software ,
Vulnerability Assessments
British Airways settled a data breach class action lawsuit this week resulting from a 2018 data breach that affected thousands of its customers. In 2018, the personal data of approximately 420,000 customers and staff was...more
CYBERSECURITY -
Law Enforcement Takes Down DoubleVPN -
I love seeing another win for law enforcement in the cyber context. Servers and web domains owned by DoubleVPN, a virtual private network, were seized recently...more
7/2/2021
/ Cybersecurity ,
Data Management ,
Data Privacy ,
Data Protection ,
Homeland Security Cybersecurity & Infrastructure Security Agency (CISA) ,
Microsoft ,
Personal Data ,
Personally Identifiable Information ,
Popular ,
Scams ,
Volkswagen
CYBERSECURITY -
Fertility Clinic in Georgia Notifies Patients of Data Breach -
Reproductive Biology Associates, LLC (RBA) and its affiliate, MyEggBank, notified approximately 38,000 patients that a data breach...more
Lifespace Communities (Lifespace) Inc., a retirement community chain with more than 15 communities in eight states, recently settled a class action for $987,850 for its alleged violation of the Illinois Biometric Information...more
Many U.S. employers offer their employees financial wellness programs to complement retirement planning and investment advice. This may include emergency savings plans and household budgeting tips, for example. Many of these...more
CYBERSECURITY -
Coveware Q1 2021 Report Shows Increase in Ransomware Payments Over Q4 2020 Coveware issued its Q1 2021 -
Ransomware Report on April 26, 2021, which concludes that “[D]ata exfiltration extortion continues...more
5/7/2021
/ Apple ,
Contact Tracing ,
Cybersecurity ,
Data Privacy ,
Data Protection ,
Drones ,
Girl Scouts ,
Kroger ,
Personal Data ,
Personally Identifiable Information ,
Popular ,
Ransomware
In Gates v. Eagle Family Foods in the Northern District of Illinois, Gregory Gates, a former sanitation and assembly line employee, alleges that Eagle Foods collected and retained his handprints without consent as part...more
CYBERSECURITY -
Cisco/Talos Researchers Find Attackers Using Slack and Discord to Distribute Malware -
Another example of the resiliency and creativity of cyber-attackers is outlined in a new blog by Cisco/Talos...more
4/16/2021
/ Automatic License Plate Readers ,
Biometric Information ,
Cisco ,
Cybersecurity ,
Data Breach ,
Data Privacy ,
Data Protection ,
Hackers ,
Homeland Security Cybersecurity & Infrastructure Security Agency (CISA) ,
Microsoft ,
Mobile Apps ,
NAIC ,
Personal Data ,
Personally Identifiable Information
The California Attorney General recently approved modified regulations under the California Consumer Privacy Act (CCPA). One part of the modified regulations bans “dark patterns” on a website. What are dark patterns?...more
4/9/2021
/ California Consumer Privacy Act (CCPA) ,
Consumer Privacy Rights ,
Corporate Counsel ,
Cybersecurity ,
Data Privacy ,
Data Protection ,
Information Governance ,
Opt-Outs ,
Personal Data ,
Personally Identifiable Information ,
Website Owner Liability ,
Websites
CYBERSECURITY -
GAO Report Identifies Need for DOE to Address Risks to Electrical Distribution System -
The United States Government Accountability Office (GAO) recently completed and published a study on electricity...more
4/2/2021
/ California Consumer Privacy Act (CCPA) ,
Cybersecurity ,
Data Breach ,
Data Privacy ,
Data Protection ,
Drones ,
Email ,
FBI ,
GAO ,
Health Insurance Portability and Accountability Act (HIPAA) ,
Infrastructure ,
OCR ,
Personal Data ,
Personally Identifiable Information ,
Right of Access ,
Vulnerability Assessments ,
Wal-Mart
A new commercial has hit the airwaves in Israel. It begins with a door swinging open to reveal a beautiful seaside patio with a couple awaiting their dinners as a voiceover says, “How much have we missed going out with...more
How will a Biden-Harris presidency affect the U.S. privacy landscape? Let’s take a look.
Federal Privacy Legislation -
On both sides of the political aisle there have been draft proposals in the last 18 months on federal...more
11/13/2020
/ Biden Administration ,
Big Tech ,
COPPA ,
Cybersecurity ,
Data Protection ,
EU ,
EU-US Privacy Shield ,
FCC ,
Federal Trade Commission (FTC) ,
International Data Transfers ,
Personal Data ,
Popular
Although the Presidential race is unconfirmed at the time of this writing, there are several data privacy and security laws to put on your radar following the election this week....more
11/6/2020
/ Ballot Measures ,
California Consumer Privacy Act (CCPA) ,
California Privacy Rights Act (CPRA) ,
Corporate Counsel ,
Cybersecurity ,
Data Privacy ,
Data Security ,
Electronic Data Transmissions ,
Facial Recognition Technology ,
Personal Data ,
Referendums
CYBERSECURITY -
Patching Gets More and More Complicated but Is Critical for
Managing Risk -
Patching vulnerabilities has always been challenging, but these days, it is getting more and more complicated as...more
10/16/2020
/ Ballot Measures ,
Cybersecurity ,
Data Management ,
Data Privacy ,
Data Protection ,
HIPAA Breach ,
Information Governance ,
OCC ,
OCR ,
Online Safety for Children ,
Personal Data ,
Personally Identifiable Information ,
Risk Management
CYBERSECURITY -
U.S. Chamber of Commerce and FICO Release Security Guidelines
on Telework During COVID-19 -
It is no secret that companies are experiencing an increase in security incidents following the transition...more
10/9/2020
/ California Consumer Privacy Act (CCPA) ,
Chamber of Commerce ,
Construction Project ,
Cyber Attacks ,
Cybersecurity ,
Data Breach ,
Data Management ,
Data Privacy ,
Drones ,
FBI ,
Governor Newsom ,
Hackers ,
OCR ,
Personal Data ,
Premera Blue Cross ,
Ransomware ,
Risk Management ,
Telecommuting ,
Wifi
DataGrail recently released a mid-year report on trends related to the California Consumer Privacy Act (CCPA) and how it has affected consumers and businesses. The report indicates that consumers are regularly opting out of...more
CYBERSECURITY -
City of Hartford Hit with Ransomware Attack, Causing School Delay -
Cyber-attackers know that city and town officials have been gearing up for the start of school and the potential for remote learning,...more
9/14/2020
/ California Consumer Privacy Act (CCPA) ,
Cyber Attacks ,
Cyber Crimes ,
Cybersecurity ,
Data Breach ,
Department of Justice (DOJ) ,
Facial Recognition Technology ,
Hackers ,
Information Technology ,
Personal Data ,
Personally Identifiable Information ,
Popular ,
Ransomware ,
Regulatory Violations ,
TCPA ,
Vulnerable Victims
The California Privacy Rights Act (CPRA) recently qualified for the November 2020 ballot, and if California voters approve this initiative, the CPRA will expand the rights of California residents under the current (stringent)...more
9/14/2020
/ California Consumer Privacy Act (CCPA) ,
California Privacy Rights Act (CPRA) ,
Consumer Privacy Rights ,
Cybersecurity ,
Data Collection ,
Data Management ,
Data Privacy ,
Data Protection ,
Information Governance ,
Personal Data ,
Personally Identifiable Information ,
State and Local Government
CYBERSECURITY -
NSA + FBI Warn Defense Contractors of Russian Hackers -
When the National Security Agency (NSA) and the Federal Bureau of Investigations (FBI) get together to issue a joint warning, you may wish to listen...more
8/21/2020
/ California Consumer Privacy Act (CCPA) ,
Carnival Cruise Lines ,
Class Action ,
Cybersecurity ,
Data Privacy ,
Data Protection ,
FBI ,
Instagram ,
NASA ,
Personal Data ,
Personally Identifiable Information ,
Popular ,
Ransomware ,
Social Media ,
TikTok ,
Vulnerability Assessments ,
YouTube
CYBERSECURITY -
Maze Continues to Strike Companies -
It is being reported by ZDNet that the Maze ransomware group has attacked two companies that, apparently, refused to pay the requested ransom, so Maze, as it...more
8/10/2020
/ Capital One ,
Cyber Attacks ,
Cybersecurity ,
Data Breach ,
Data Privacy ,
Data Protection ,
Financial Services Industry ,
Hackers ,
Personal Data ,
Personally Identifiable Information ,
Ransomware ,
Settlement Agreements ,
Social Media ,
TikTok
While the California Consumer Privacy Act (CCPA) went into effect on January 1st of this year, the California Attorney General submitted the final draft of proposed regulations only last month....more
7/17/2020
/ California Consumer Privacy Act (CCPA) ,
Consumer Privacy Rights ,
Corporate Counsel ,
Cybersecurity ,
Data Collection ,
Data Management ,
Data Privacy ,
Data Protection ,
Information Governance ,
Personal Data ,
Personally Identifiable Information ,
Privacy Laws ,
State and Local Government
Alabama City Hit with Ransomware -
On June 5, 2020, Florence, Alabama’s information technology systems were hit with ransomware by the DoppelPaymer group demanding a ransom payment of $378,000 in bitcoin. Mayor Steve Holt...more
6/13/2020
/ California Consumer Privacy Act (CCPA) ,
Cybersecurity ,
Data Privacy ,
Data Protection ,
Department of Homeland Security (DHS) ,
Hackers ,
Marketing ,
Microsoft ,
Personal Data ,
Personally Identifiable Information ,
Popular ,
Ransomware ,
Robocalling ,
Vulnerability Assessments