Back to school, back to traffic jams … back to Privacy Mondays! Our look at bits and bytes and goofs and gaffes in data privacy and security....more
Some weeks ago, we wrote a piece “What You Need to Know About Backoff Malware: The New Threat Targeting Retailers” . It’s apparently gotten worse. Any business utilizing point-of-sale (POS) terminals for “swiping” credit...more
We are just two Mondays away from Labor Day, the traditional end of summer in the United States. Here are some privacy tidbits to get your week started. See especially Jake Romero’s piece on the new Delaware data...more
A breach of this nature is reportable under the breach notification laws in both California and Florida, as recently amended: “Personal Information” includes user name or email address, in combination with a password or...more
There are quite a few privacy-related things taking effect July 1. Some reminders:
Florida Amendments to Data Breach Notification Law -
The Florida Information Protection Act of 2014 (“FIPA”) takes effect...more
The first Tuesday in June is also the first Tuesday of meterological summer -and a welcome sight after a brutally-long winter for many of our readers. So, here’s to a happy Summer!
Google Receives 12,000 Take-Down...more
Last week, the U.S. Securities and Exchange Commission’s Office of Compliance Inspections and Examinations (OCIE) released a Risk Alert announcing its Cybersecurity Initiative....more
Happy Cinco de Mayo!
Breaking news this Privacy Monday: The fallout from the massive Target Corporation data breach continues. This morning, the Target board announced that Chief Executive Officer Gregg Steinhafel...more
For the last Tuesday in April, we have a few privacy and security bits and bytes to start your week.
Trending Now – 5 Things Every Company’s Data Security Program Should Include...
What's the one thing every company's data security program must include? That's the question we put recently to experts in the field, knowing that, especially after Heartbleed, the diversity of responses would create an...more
Last week was certainly the “week of the Heartbleed.” Unless you have been on vacation on a remote island (and if so, good for you!), you have heard and read much about the latest mass bug to infect the Internet....more
The FTC’s Claim -
A New Jersey federal judge has confirmed the Federal Trade Commission’s (“FTC”) authority to regulate data security and bring claims against companies suffering data breaches due to inadequate...more
The vulnerability caused by the Heartbleed bug circumvents the purpose of OpenSSL: encryption. Therefore, the conclusion would appear to be that any data breach during the time of OpenSSL vulnerability would be reportable...more
If you’re like most Americans, you probably think that the worst thing that Fandango, the online movie ticket service, has ever done to you is make you watch those commercials with the creepy talking paper bags before your...more
It has been difficult to keep up with all the various permutations of the Target data breach saga.
Yesterday, the fingerpointing continued in the form of the release of a Harris Poll and testimony on Capitol Hill at a...more
The “observance” of Data Privacy Day annually on January began in 2008. The National Cyber Security Alliance (NCSA) will be kicking off today’s events with a live stream of its press conference in Washington, DC. ...more
As anyone with a pulse and a computer, television or carrier pigeon knows, Target Corporation (NYSE: TGT) suffered a major data breach in December – the extent of which is still being uncovered – and pegs the latest number of...more
These are busy times in the data privacy/security world.
If Misery Loves Company, Target Has Friends -
Target was not the only target of data thieves this holiday season. Reports over the weekend revealed that...more
The Target data breach story keeps getting worse. The December pre-Christmas disclosure was the theft of up to 40 million Target shoppers’ credit and debit card information in what appeared to have been a hack of the Target...more
After a brief hiatus for the holidays and our “12 Days of Privacy” series, we are back.
We have had a series of late year — and new year — data breaches in the news. These latest incidents should prompt New Year’s...more
If you haven’t been paying attention to “password hygiene” preached by this blog and others, perhaps it’s time. Jose Pagliery from CNNMoney reports of a large-scale hack that has compromised over 2 million passwords at...more
The month of November is quickly slipping by – this is the time to be looking at the 2014 cybersecurity and data privacy goals and updates and planning ahead.
Our selected bits and bytes for this Monday...more
First and foremost, this is Veterans’ Day in the US. Let’s take a moment to thank all of those who served and who still serve, and honor the memory of those who gave their all. Businesses are offering special deals to...more
The federal government may be completely unable to pass laws, but that certainly isn’t the case with the State of California, which has just completed a data privacy hat trick by passing three significant laws addressing a...more
Despite the government shutdown, the Supreme Court is in for the 2013-2014 session. There are a couple of privacy cases on the agenda.
U.S. v. Wurie and Riley v. California -
At issue: Separate appeals over...more