Ubiquiti, a manufacturer of products used for networks such as routers, webcams and mesh networks, announced this week that an unauthorized access to its systems hosted by a third-party cloud provider may have compromised...more
CYBERSECURITY -
Further Fall-Out from Russian Hacking of SolarWinds -
U.S. intelligence agencies, including the FBI, the Office of the Director of National Intelligence, the National Security Agency and the Cybersecurity...more
1/8/2021
/ Browser History ,
Cybersecurity ,
Data Breach ,
Data Privacy ,
Drones ,
Federal Breach Notification Standard ,
General Data Protection Regulation (GDPR) ,
Hackers ,
Personally Identifiable Information ,
Ports ,
Russia ,
Software ,
SolarWinds
The Greater Baltimore Medical Center (GBMC) was hit with a ransomware attack over the weekend (December 5-6) that potentially delayed procedures planned for Monday. Cyber attacks against medical providers and hospitals are at...more
Ancestry.com (Ancestry) was sued on November 30, 2020, in a putative class action case filed in the Northern District of California for “knowingly misappropriating the photographs, likenesses, names, and identities of...more
12/4/2020
/ Ancestry.com ,
Consumer Privacy Rights ,
Data Collection ,
Data Protection ,
Intrusion Upon Seclusion ,
Misappropriation ,
Name and Likeness ,
Personally Identifiable Information ,
Photographs ,
Putative Class Actions ,
Right of Publicity ,
Unfair Competition Law (UCL) ,
Unjust Enrichment
Baltimore County Public Schools shut down Monday and Tuesday following a ransomware attack that paralyzed the school system’s network last week right before Thanksgiving....more
I have done more online shopping this year than ever before, and I know that I am not alone. With the holidays approaching, this will only increase because of the pandemic, and hackers and fraudsters know it....more
Home Depot has agreed to settle a multi-state enforcement action by 46 U.S. states and Washington, D.C. arising from the data breach that occurred in 2014. Home Depot has agreed to pay $17.5 million to put the enforcement...more
CYBERSECURITY -
HHS Issues Update to Ransomware Threat Alert to Health Care Sector -
The Department of Health and Human Services’ (HHS) Division of Critical Infrastructure Protection (CIP) issued a health care and public...more
11/20/2020
/ California Privacy Rights Act (CPRA) ,
Cybersecurity ,
Data Privacy ,
Data Protection ,
Department of Health and Human Services (HHS) ,
Drones ,
OCR ,
Personally Identifiable Information ,
Popular ,
Ransomware ,
Right of Access ,
Wal-Mart
The Department of Health and Human Services’ (HHS) Division of Critical Infrastructure Protection (CIP) issued a health care and public health sector notification this week entitled “Ransomware Activity Targeting the...more
We spend a lot of time reporting on ransomware because we are seeing more incidents than ever before, and our readers comment that keeping them up to date on ransomware tactics is helpful. The ransomware gangs, strains and...more
11/12/2020
/ Cyber Attacks ,
Cyber Crimes ,
Cybersecurity ,
Data Breach ,
Hackers ,
Information Technology ,
Malware ,
Personally Identifiable Information ,
Popular ,
Ransomware ,
Risk Management ,
Vulnerability Assessments
CYBERSECURITY -
The GEO Group Hit with Ransomware Attack -
The GEO Group, Inc. (GEO), a publicly-held company located in Boca Raton, Florida, announced on November 3, 2020, that it is beginning to notify individuals...more
11/6/2020
/ California Privacy Rights Act (CPRA) ,
Cyber Attacks ,
Cybersecurity ,
Data Breach ,
Data Privacy ,
Data Protection ,
Data Selling ,
Data-Sharing ,
Drones ,
Hackers ,
Personally Identifiable Information ,
Popular ,
Ransomware ,
Social Media
New Jersey Attorney General (AG) Gurbir S. Grewal announced on November 2, 2020, that his office has settled with ShopRite’s parent company, Wakefern Food Corp. (Wakefern) and two of its supermarket entities for $235,000 for...more
The GEO Group, Inc. (GEO), a publicly held company located in Boca Raton Florida, announced on November 3, 2020, that it is beginning to notify individuals following a ransomware attack that “impacted a limited amount of...more
CYBERSECURITY -
Urgent Warning of Imminent Threat to Hospitals Issued by U.S.
Government -
On October 27, 2020, the FBI and the Department of Homeland Security (DHS) warned the health care industry about “an imminent...more
CYBERSECURITY -
Patching Gets More and More Complicated but Is Critical for
Managing Risk -
Patching vulnerabilities has always been challenging, but these days, it is getting more and more complicated as...more
10/16/2020
/ Ballot Measures ,
Cybersecurity ,
Data Management ,
Data Privacy ,
Data Protection ,
HIPAA Breach ,
Information Governance ,
OCC ,
OCR ,
Online Safety for Children ,
Personal Data ,
Personally Identifiable Information ,
Risk Management
On October 8, 2020, New Jersey Attorney General Gurbir Grewal (AG) announced that his office has entered into a multi-state settlement agreement with Community Health Systems, Inc. (CHS) stemming from an investigation of a...more
10/16/2020
/ Cyber Attacks ,
Electronic Medical Records ,
Hackers ,
Health Insurance Portability and Accountability Act (HIPAA) ,
HIPAA Breach ,
Information Technology ,
OCR ,
Personally Identifiable Information ,
PHI ,
Popular ,
Settlement Agreements
Regulatory bodies are upping the ante when it comes to settling with companies that have suffered data breaches. In addition to the below settlements, see also the settlement between the OCR and Dignity Health....more
10/16/2020
/ Cyber Attacks ,
Cybersecurity ,
Data Breach ,
Data Management ,
Data Protection ,
Electronic Medical Records ,
Hackers ,
Health Care Providers ,
Health Information Technologies ,
Health Insurance Portability and Accountability Act (HIPAA) ,
HIPAA Breach ,
OCC ,
Personally Identifiable Information ,
PHI
Health care entities continue to face a barrage of attacks from cyber criminals, and it is widely reported that the health care industry is getting hit more frequently than any other industry. Ransomware is the name of the...more
Premera Blue Cross (Premera) has agreed to settle with the Office for Civil Rights (OCR) for $6.85 million over allegations of violations of HIPAA after an investigation of a data breach that occurred in 2014 affecting 10.4...more
10/9/2020
/ Corporate Counsel ,
Cybersecurity ,
Data Breach ,
Data Security ,
Health Insurance ,
HIPAA Breach ,
OCR ,
Personally Identifiable Information ,
PHI ,
Premera Blue Cross ,
Settlement Agreements
As one of the largest information technology service providers to local governments, the cyber-attack on Tyler Technologies (Tyler) in Plano, Texas is a sobering reminder of how a cyber-attack on a third-party vendor can put...more
10/5/2020
/ Cyber Attacks ,
Cybersecurity ,
Data Breach ,
Data Protection ,
Federal Contractors ,
Hackers ,
Information Security ,
Personally Identifiable Information ,
Popular ,
Ransomware ,
Third-Party Service Provider ,
Vendors
The U.S. Department of Health and Human Services’ Office for Civil Rights (OCR) has announced that it has settled potential violations of HIPAA with Athens Orthopedic Clinic PA (Athens) for $1.5 million, following an...more
10/5/2020
/ Data Breach ,
Electronic Medical Records ,
Enforcement Actions ,
Hackers ,
Health Care Providers ,
Health Insurance Portability and Accountability Act (HIPAA) ,
HIPAA Breach ,
Information Technology ,
OCR ,
Personally Identifiable Information ,
PHI ,
Settlement Agreements
CYBERSECURITY -
VA Alerting 46,000 Veterans of Compromise -
The U.S. Department of Veterans Affairs Office of Management (VA) has announced that it is notifying approximately 46,000 veterans that their personal...more
9/18/2020
/ Cyber Insurance ,
Data Breach ,
Data Protection ,
Deep Fake ,
Department of Veterans Affairs ,
Hackers ,
Health Insurance Portability and Accountability Act (HIPAA) ,
OCR ,
Personally Identifiable Information ,
Right of Access ,
Social Media ,
Veterans
CYBERSECURITY -
City of Hartford Hit with Ransomware Attack, Causing School Delay -
Cyber-attackers know that city and town officials have been gearing up for the start of school and the potential for remote learning,...more
9/14/2020
/ California Consumer Privacy Act (CCPA) ,
Cyber Attacks ,
Cyber Crimes ,
Cybersecurity ,
Data Breach ,
Department of Justice (DOJ) ,
Facial Recognition Technology ,
Hackers ,
Information Technology ,
Personal Data ,
Personally Identifiable Information ,
Popular ,
Ransomware ,
Regulatory Violations ,
TCPA ,
Vulnerable Victims
Cyber-attackers know that city and town officials have been gearing up for the start of school and the potential for remote learning, in school or a hybrid model all summer. The daily monitoring of the coronavirus has kept...more
CYBERSECURITY -
U.S. Organizations Doing Business in China Warned of Malware in Tax Software -
The Federal Bureau of Investigations (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA) have issued a joint...more
8/28/2020
/ ALEXA ,
Amazon Echo ,
Audits ,
Automatic License Plate Readers ,
Connected Cars ,
Cybersecurity ,
Data Breach ,
Data Collection ,
Data Privacy ,
Data Protection ,
Data Security ,
Financial Industry Regulatory Authority (FINRA) ,
Location Data ,
Malware ,
Motor Vehicles ,
Personal Assistants ,
Personally Identifiable Information ,
Popular ,
Scams ,
Websites ,
Zoom®