The FBI and the Cybersecurity & Infrastructure Security Agency have been warning the healthcare sector for years about vulnerabilities and ransomware gangs targeting those vulnerabilities. With millions of records -- and...more
A ransomware gang that has been targeting hospitals and other health care providers has been at least temporarily dismantled by the FBI. Attorney General Merrick Garland and other U.S. officials announced that the FBI's...more
The Federal Trade Commission (“FTC”) announced on Monday that it is settling a case against Drizly and its CEO stemming from a 2020 data breach that impacted roughly 2.5 million consumers. The proposed order not only...more
10/31/2022
/ Corporate Counsel ,
Cybersecurity ,
Data Breach ,
Data Privacy ,
Data Protection ,
Data Security ,
Federal Trade Commission (FTC) ,
Hackers ,
Identity Theft ,
Personal Data ,
Popular ,
Securities and Exchange Commission (SEC) ,
Settlement
There is a pattern here. Long holiday weekends make for ransomware attacks and data breaches. It is well-known that malicious actors take advantage of understaffed IT resources on holidays. In fact, it’s become such a common...more
9/3/2021
/ Cyber Attacks ,
Cyber Crimes ,
Cybersecurity ,
Data Breach ,
Data Privacy ,
Data Protection ,
FBI ,
Hackers ,
Holidays ,
Homeland Security Cybersecurity & Infrastructure Security Agency (CISA) ,
Ransomware ,
Risk Management
Online stationery and craft company Minted Inc. has been hit with a CCPA class action lawsuit, stemming from a massive data breach the company disclosed in late May. The proposed class action lawsuit, filed in a California...more
6/17/2020
/ Breach of Implied Contract ,
California Consumer Privacy Act (CCPA) ,
Class Action ,
Consumer Privacy Rights ,
Corporate Counsel ,
Cybersecurity ,
Data Breach ,
Data Protection ,
Hackers ,
Putative Class Actions ,
State Attorneys General ,
Unfair Competition Law (UCL)
If you haven’t been paying attention to all the Microsoft warnings for the past year and your company is still running Windows 7, time’s up. After January 14, 2020, Microsoft will stop pushing out security updates to Windows...more
Beware of March Madness! Scammers and phishers take advantage of increased web traffic by impersonating popular March Madness websites, including bracket sites and game live streams. Will your employees take the bait?...more
Amid the flurry following former FBI Director James Comey’s firing last week, President Trump marked his 111th day in office on Thursday, May 11th by signing an executive order targeting national cybersecurity....more
We’ve been following the latest on the WannaCry ransomware attack that we first told you about over the weekend.
A feared “second strike” did not materialize today, but victimized firms in over 100 countries are still...more
By now, you may have heard about the global ransomware attacks affecting health care and other organizations throughout the world, in particular the United Kingdom, but also in the United States. The ransomware variant,...more
Wearable technology continues to do a full court press on the marketplace and in the process, the step counters of the world and health apps tied to devices capable of tracking real-time biostatistics, are revolutionizing the...more
The U.S. Federal Trade Commission (“FTC”) has filed a lawsuit against device manufacturer D-link for allegedly deceiving the marketplace about the security of its products and, in turn, unfairly placing customer privacy at...more
According to the FBI, “there are only two types of companies: those that have been hacked and those that will be.” It does not take an actual data breach, however, for a company to be liable for its data security practices. ...more
7/20/2016
/ Consumer Financial Protection Bureau (CFPB) ,
Cybersecurity ,
Data Breach ,
Data Collection ,
Data Privacy ,
Data Security ,
Dwolla ,
FinTech ,
FTC v Wyndham ,
Hackers ,
Personal Data ,
Privacy Laws
Sophisticated phishing scams and muscular hacking efforts continue to compromise personal and sensitive information held by insurers, hospital systems, and businesses large and small. In response, many states have...more
6/15/2016
/ Breach Notification Rule ,
Cybersecurity ,
Data Breach ,
Data Protection ,
Encryption ,
Exemptions ,
Gramm-Leach-Blilely Act ,
Hackers ,
Health Insurance Portability and Accountability Act (HIPAA) ,
HITECH Act ,
Personal Data ,
Personal Information Protection Act ,
Personally Identifiable Information ,
Phishing Scams ,
PIPA ,
Safe Harbors ,
State Data Breach Notification Statutes
California Attorney General Kamala Harris has released a report of the data breaches that have been reported to her office from 2012 until 2015. Although the California data breach notification law took effect in 2003,...more
In a chain of events that should be a wake-up call to any entity using and storing critical health information (and indeed, ANY kind of critical information), Hollywood Presbyterian Medical Center (“HPMC”) has announced that...more
The recent data breach of Hong Kong-based electronic toy manufacturer VTech Holdings Limited (“VTech” or the “Company”) is making headlines around the world for good reason: it exposed sensitive personal information of over...more
While you enjoy what is left of the summer of 2015, we will kick off your week with a few privacy and security bits and bytes....more
8/4/2015
/ Cyber Threats ,
Cybersecurity ,
Data Privacy ,
Data Protection ,
Data Security ,
Food and Drug Administration (FDA) ,
Hackers ,
Healthcare Facilities ,
Hospitals ,
Medical Devices ,
NAIC ,
Nursing Homes ,
Personally Identifiable Information
Once again, data breaches and hacks are front and center, so here are three stories you should know about to start your week....more
7/21/2015
/ Auto-Dialed Calls ,
Breach Notification Rule ,
Credit Monitoring ,
Cyber Crimes ,
Data Breach ,
Encryption ,
FCC ,
Hackers ,
Personally Identifiable Information ,
Robocalling ,
TCPA ,
UCLA ,
UCLA Medical Center
The news continues to pour in about the two-part massive hack into the federal government’s Office of Personnel Management (OPM) and the compromise of personal information of millions of present and former federal...more
As an update to our blog post, “Data Breach Affects Millions of Current and Former Government Workers”, a union representing federal workers is now claiming that the hack may be worse than originally feared. Yesterday, the...more
Spring has finally arrived on the East Coast, and not a moment too soon.
Here are 3 privacy & security bits and bytes to start your week....more
Welcome to the first Privacy Tuesday of 2015!
We hope that you enjoyed our 12 Days of Privacy series (and if you missed it, they are all linked in the right column of the blog…).
Three things that you should...more
1/6/2015
/ Board of Directors ,
C-Suite Executives ,
Chick-Fil-A ,
Cybersecurity ,
Data Breach ,
Experian ,
Federal Trade Commission (FTC) ,
Hackers ,
PHI ,
Privacy Laws ,
Privacy Policy ,
Snapchat
Our series last year was a reader favorite, so we decided to put our prognosticator hats on again and present:
Rather than look back at 2014, starting tomorrow, the Privacy & Security blog will count down The 12 Days...more
12/9/2014
/ Automotive Industry ,
Cyber Insurance ,
Cybersecurity ,
EU Data Protection Laws ,
Hackers ,
Mobile Devices ,
OCR ,
Patient Privacy Rights ,
PHI ,
Proxy Season ,
V2V ,
Wearable Technology
Welcome to December – we hope you had a restful and enjoyable Thanksgiving holiday.
Here are a few privacy bits and bytes to start your week.
1. ICYMI – 60 Minutes Explains Credit Card Hacking...more