CYBERSECURITY -
Russian Government Officials Charged with Hacking U.S. Energy Infrastructure -
The U.S. Department of Justice (DOJ) unsealed indictments against four Russian government officials on March 24, 2022,...more
4/4/2022
/ Critical Infrastructure Sectors ,
Cryptocurrency ,
Cybersecurity ,
Data Breach ,
Data Management ,
Data Privacy ,
Drones ,
Employee Tracking ,
GPS ,
Hackers ,
Personal Data ,
Russia
CYBERSECURITY -
Okta Notifies Customers of LAPSUS$ Attack -
Okta, which markets itself as a “leading provider of identity” in the health care, public sector, energy, financial services, technology, travel and hospitality,...more
3/25/2022
/ Cyber Attacks ,
Cybersecurity ,
Data Privacy ,
Data Protection ,
Data Security ,
Drones ,
FBI ,
NIST ,
PHI ,
Popular ,
State Data Breach Notification Statutes
CYBERSECURITY -
Cyber-Attackers Politically Aligned -
The most recent Accenture Global Incident Report (the Report) shows that cyber-attackers have political views and are divided between support for Russia or Ukraine....more
3/18/2022
/ Cyber Attacks ,
Cybersecurity ,
Data Privacy ,
Data Protection ,
Enforcement Actions ,
Federal Trade Commission (FTC) ,
Personal Data ,
Popular ,
Right To Know ,
Russia ,
Scams ,
Vulnerability Assessments
CYBERSECURITY -
Chinese APT41 Attacking State Networks -
Although we are receiving frequent alerts from CISA and the FBI about the potential for increased cyber threats coming out of Russia, China continues its cyber...more
3/11/2022
/ China ,
COPPA ,
Cyber Attacks ,
Cyber Threats ,
Cybersecurity ,
Data Breach ,
Data Privacy ,
Data Protection ,
Data Security ,
Drones ,
Elder Abuse ,
Hackers ,
Identity Theft ,
Information Technology ,
Military Conflict ,
Online Safety for Children ,
Russia ,
Ukraine
Governor Mark Gordon signed the Wyoming Genetic Data Privacy Act into law on March 8, 2022. The law goes into effect on July 1, 2022.
The Genetic Data Privacy Act requires any business that collects genetic data from...more
CYBERSECURITY -
CISA/FBI Advisory Warns of Destructive Malware Used Against Ukraine -
The Cybersecurity and Infrastructure Security Agency (CISA) and the FBI issued a joint advisory this week alerting organizations of...more
3/4/2022
/ Artificial Intelligence ,
Cyber Attacks ,
Cyber Crimes ,
Cybersecurity ,
Data Privacy ,
Data Protection ,
Data Security ,
FBI ,
Hackers ,
Homeland Security Cybersecurity & Infrastructure Security Agency (CISA) ,
Identity Theft ,
Information Blocking Rules ,
Malware ,
Passwords ,
Personal Data ,
Personally Identifiable Information ,
Popular ,
Russia ,
T-Mobile ,
Ukraine ,
Vulnerability Assessments
Kronos, Inc., has agreed to (and a federal judge has preliminarily approved) a $15.3 million settlement to resolve claims that it violated the Illinois Biometric Information Privacy Act (BIPA) by collecting biometric...more
2/25/2022
/ Biometric Information ,
Biometric Information Privacy Act ,
Class Action ,
Data Collection ,
Data Privacy ,
Employer Liability Issues ,
Employment Litigation ,
Fingerprints ,
Personal Data ,
Personally Identifiable Information ,
Settlement
CYBERSECURITY -
FBI and DHS Warn of Russian Cyberattacks Against Critical Infrastructure -
U.S. officials this week warned government agencies, cybersecurity personnel, and operators of critical infrastructure that...more
2/23/2022
/ Biometric Information ,
Biometric Information Privacy Act ,
Cyber Attacks ,
Cybersecurity ,
Data Privacy ,
Data Protection ,
Drones ,
Facial Recognition Technology ,
Hackers ,
Personally Identifiable Information ,
Ransomware ,
Russia ,
Vulnerability Assessments
CYBERSECURITY -
FBI and DHS Warn of Russian Cyberattacks Against Critical Infrastructure -
U.S. officials this week warned government agencies, cybersecurity personnel, and operators of critical infrastructure that...more
2/18/2022
/ Biometric Information Privacy Act ,
Cyber Attacks ,
Cybersecurity ,
Data Breach ,
Data Collection ,
Data Privacy ,
Data Protection ,
Department of Homeland Security (DHS) ,
Drones ,
Facebook ,
Facial Recognition Technology ,
FBI ,
Hackers ,
Personally Identifiable Information ,
Ransomware ,
Russia ,
Vulnerability Assessments
Texas enacted a biometric information privacy law way back in 2001, which was amended in 2009. That was a long time ago in the context of the development of privacy laws, and even longer when it comes to biometric information...more
2/18/2022
/ Biometric Information ,
Data Collection ,
Data Privacy ,
Facebook ,
Facial Recognition Technology ,
Notice Requirements ,
Online Platforms ,
Personal Data ,
Personally Identifiable Information ,
Regulatory Requirements ,
Social Media ,
Statutory Violations
I have written about the privacy concerns of facial recognition technology many times before.
Many individuals are unaware of how facial recognition technology works, who is collecting their facial geometry, and how...more
CYBERSECURITY -
Coveware 2021 Q4 Ransomware Report Issued -
Coveware issued its 2021 Q4 Ransomware Report on February 1, 2022. The report stated that although average and median ransom payments increased...more
2/11/2022
/ Cyber Attacks ,
Cybersecurity ,
Data Breach ,
Data Privacy ,
Data Protection ,
Data Security ,
Drones ,
Hackers ,
Health Insurance Portability and Accountability Act (HIPAA) ,
Online Safety for Children ,
Personally Identifiable Information ,
Ransomware
CYBERSECURITY -
FBI Warns Olympics/Paralympics Participants of Cyber “Activities” -
On January 31, 2022, the FBI issued a Private Industry Notification entitled “Potential for Malicious Cyber Activities to Disrupt the...more
2/4/2022
/ Consumer Privacy Rights ,
Customer-Loyalty Programs ,
Cybersecurity ,
Data Breach ,
Data Collection ,
Data Privacy ,
Data Protection ,
Drones ,
FBI ,
Information Governance ,
Internet of Things ,
Personally Identifiable Information ,
Popular ,
Vulnerability Assessments
California Attorney General Rob Bonta is serious about compliance with the California Consumer Privacy Act (CCPA). So serious, that on January 28, 2022, also known as Data Privacy Day, he announced that his office was...more
CYBERSECURITY -
ECRI Names Cybersecurity Attacks as Top Health Technology Hazard for 2022 -
ECRI has been publishing its annual report of health technology hazards for the past 15 years. According to ECRI’s Device...more
1/21/2022
/ Automation Systems ,
Cyber Attacks ,
Cybersecurity ,
Data Breach ,
Data Privacy ,
Data Protection ,
Data Security ,
Data Theft ,
FBI ,
Hackers ,
Health Care Providers ,
Japan ,
Malware ,
Popular ,
QR Codes ,
Vessels ,
Vulnerability Assessments
CYBERSECURITY -
New Mexico County Recovering from Ransomware Attack -
Another day, another governmental entity hit with a ransomware attack. If you are a resident of Bernalillo County, New Mexico, and you need a marriage...more
1/14/2022
/ Army ,
Cyber Attacks ,
Cybersecurity ,
Data Breach ,
Data Privacy ,
Data Protection ,
Data Security ,
Drones ,
Federal Trade Commission (FTC) ,
Genetic Testing ,
Hackers ,
Homeland Security Cybersecurity & Infrastructure Security Agency (CISA) ,
Mobile Apps ,
Personally Identifiable Information ,
Ransomware ,
Russia
CYBERSECURITY -
FTC Warns Companies of Enforcement for Failing to Patch Log4j Vulnerability -
In what I would describe as an unusual but interesting move by the Federal Trade Commission (FTC), on January 4, 2022, it...more
1/7/2022
/ Cyber Attacks ,
Cybersecurity ,
Data Privacy ,
Data Protection ,
Data Security ,
Drones ,
Federal Trade Commission (FTC) ,
Hackers ,
Personally Identifiable Information ,
Search Engines ,
Vulnerability Assessments
CYBERSECURITY -
New Jersey Settles with Cancer Center Over Business Email Compromise -
One of the challenging things about HIPAA (Health Insurance Portability and Accountability Act) enforcement is the fact that both the...more
12/27/2021
/ California Consumer Privacy Act (CCPA) ,
Cyber Attacks ,
Cyber Crimes ,
Cybersecurity ,
Data Breach ,
Data Privacy ,
Data Protection ,
Data Security ,
Drones ,
Facebook ,
Fraud ,
Hackers ,
Hate Speech ,
Personally Identifiable Information ,
Popular
One of the challenging things about HIPAA (Health Insurance Portability and Accountability Act) enforcement is the fact that both the Office for Civil Rights and State AGs have jurisdiction to assess fines and penalties for...more
12/23/2021
/ Data Breach ,
Data Privacy ,
Data Protection ,
Electronic Protected Health Information (ePHI) ,
Email ,
Fines ,
Health Care Providers ,
Health Insurance Portability and Accountability Act (HIPAA) ,
HIPAA Breach ,
HIPAA Violations ,
OCR ,
Penalties ,
PHI ,
Phishing Scams ,
Policies and Procedures ,
State Attorneys General
CYBERSECURITY -
Update on Apache log4j and Kronos Security Incidents -
It was a crazy weekend for cyber-attacks. People seem surprised, but those of us in the industry aren’t surprised one bit. It is very logical and...more
12/17/2021
/ COPPA ,
Cyber Attacks ,
Cyber Threats ,
Cybersecurity ,
Data Breach ,
Data Privacy ,
Data Protection ,
Data Security ,
Hackers ,
Information Technology ,
Ransomware ,
Vulnerability Assessments
CYBERSECURITY -
Joint CISA/FBI Alert on Vulnerability in Zoho ManageEngine ServiceDesk Plus -
On December 6, 2021, the Cybersecurity & Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI)...more
12/13/2021
/ Consumer Privacy Rights ,
Coronavirus/COVID-19 ,
Cybersecurity ,
Data Privacy ,
Data Protection ,
FBI ,
Gift-Cards ,
Health Insurance Portability and Accountability Act (HIPAA) ,
Homeland Security Cybersecurity & Infrastructure Security Agency (CISA) ,
Infectious Diseases ,
Information Governance ,
Personally Identifiable Information ,
Popular ,
Scams ,
Vaccine Passports ,
Vulnerability Assessments
The statistics on the participation of women in the field of cybersecurity continue to be bleak, despite significant outreach efforts, including “Girls Who Code” and programs to encourage girls to explore STEM (Science,...more
CYBERSECURITY -
CISA + FBI Remind Organizations to “Stay Vigilant” During Holiday Season -
The Cybersecurity & Infrastructure Security Agency (CISA) and the FBI issued a joint Alert this week, entitled “Reminder for...more
11/24/2021
/ Critical Infrastructure Sectors ,
Cyber Crimes ,
Cybersecurity ,
Data Breach ,
Data Privacy ,
Data Protection ,
Drones ,
FBI ,
GrubHub ,
Hackers ,
Homeland Security Cybersecurity & Infrastructure Security Agency (CISA) ,
Personally Identifiable Information ,
Ransomware ,
TCPA
CYBERSECURITY -
CISA Issues Incident Response + Vulnerability Response Playbooks for Executive Branch -
The Cybersecurity & Infrastructure Security Agency (CISA) issued the Cybersecurity Incident & Vulnerability Response...more
11/19/2021
/ Connected Items ,
Consumer Privacy Rights ,
Costco ,
Cybersecurity ,
Data Collection ,
Data Privacy ,
Data Protection ,
Debit and Credit Card Transactions ,
Homeland Security Cybersecurity & Infrastructure Security Agency (CISA) ,
Information Governance ,
Personal Data ,
Personally Identifiable Information ,
Popular ,
Vulnerability Assessments
CYBERSECURITY -
November's "Patch Tuesday" Includes 55 Patches -
Staying current with Microsoft’s monthly patches is challenging, yet critical for one’s cybersecurity program. This week, Microsoft’s November Patch...more
11/12/2021
/ Cyber Attacks ,
Cybersecurity ,
Data Breach ,
Data Privacy ,
Data Protection ,
Hackers ,
Homeland Security Cybersecurity & Infrastructure Security Agency (CISA) ,
Microsoft ,
Network Security ,
Personally Identifiable Information ,
Shopify ,
Vaccinations ,
Vulnerability Assessments