News & Analysis as of

Personally Identifiable Information

Girl Scouts Issue Cybersecurity Badges for Girls in K-12

If you have a daughter in K-12 who is in the Girl Scouts, check out the fact that they can now earn cybersecurity badges if they demonstrate a mastery of Internet security. Brilliant! What a great way to get girls interested...more

Working with Data Brokers?  Consult a Privacy Lawyer

by Klein Moynihan Turco LLP on

This month, Trusted Media Brands, Inc. (“TMBI”) – the publisher of Reader’s Digest, Every Day with Rachael Ray and other popular magazines – settled a federal class action lawsuit in Manhattan for over $8 million, reinforcing...more

Could Your Website Be Collecting Information from Kids? Federal Trade Commission Issues 6-Step Plan for Complying with the...

by Balch & Bingham LLP on

This month, the Federal Trade Commission (FTC) issued guidance for businesses operating websites and online services looking to comply with the Children’s Online Privacy Protection Act (“COPPA”). COPPA addresses the...more

1 Million Individuals’ Personal Data on Backup Drive is Stolen from Washington State University

File this story in the category of even locking data up in a safe is not secure. Washington State University (WSU) has begun to notify approximately 1 million individuals that their personal data was compromised when a...more

2017 Security Breaches: Frequency and Severity on the Rise

by Revision Legal on

We are only six months into 2017, and we can already tell that it is going to be a bumper year with regard to instances of data security breaches. Looking back at the hacking statistics from 2015 and 2016, we should not be...more

Data Security in Japan: New Cross-Border Data Transfer Rule

by K&L Gates LLP on

Does your business outside of Japan receive any personal information from Japan, perhaps from your affiliates, business partners, or customers based in Japan? Does your business in Japan transfer any personal information...more

Medicaid Documents Thrown in Dumpster

The North Dakota Department of Human Services has admitted that one of its employees threw Medicaid claim resolution worksheets into a dumpster instead of disposing them in a secure onsite shredding receptacle. The result?...more

Reader’s Digest Publisher Settles Case Alleging it Sold Subscribers’ Personal Information for $8.2M

In what is being considered the largest-ever settlement of alleged violations of Michigan’s privacy law (the Michigan Preservation of Personal Privacy Act), the publisher of Reader’s Digest has agreed to pay out $8.2 million...more

NYS Cyber Regulation Countdown: Continuous Monitoring

In our series of posts leading up to the August 28th deadline for the first phase of requirements under New York’s cybersecurity regulation, the Patterson Belknap team looks at issues that institutions face as they implement...more

Northern District of Illinois Dismisses Barnes & Noble Data Breach Lawsuit

by Alston & Bird on

Earlier this month, the United States District Court for the Northern District of Illinois entered an order dismissing with prejudice a putative class action concerning a security breach affecting PIN pad devices at numerous...more

DFS Cyber Compliance Nightmare? New survey reports less than half of financial firms will meet deadline

A new survey by the Ponemon Institute reports that less than half of the financial institutions covered by New York’s sweeping new cybersecurity regulation say they will “likely” meet next February’s compliance deadline. And...more

New HHS Cybersecurity Preparedness Checklist

by Carlton Fields on

The Department of Health and Human Services’ Office of Civil Rights (OCR) recently published a checklist to guide HIPAA-covered entities and business associates through an appropriate response to a ransomware or cybersecurity...more

OCR Issues Checklist for Responding to Cyber-Attack

The Office for Civil Rights (OCR) recently released guidance entitled “My Entity Just Experienced a Cyber-attack! What Do We Do Now?” The Checklist is a practical tool for health care entities and outlines several steps to...more

Data Gets Personal

by Conduent on

The average total cost per data breach for a U.S. company is $4 million, not to mention reputational damage to the brand and possible litigation1 . No entity is immune from ransomware gangs, careless employees exposing...more

Deeper Dive: Clapper Divide Expands In Data Breach Cases

by BakerHostetler on

As reported in our 2017 Data Security Incident Response Report, plaintiffs allege potential future harm as a basis for injury in 80 percent of data breach lawsuits. But are allegations of future harm sufficient to meet...more

Yet another Target settlement highlights data breach costs

by Thompson Coburn LLP on

In what appears to be the closing act of the saga that is the Target data breach, on May 23 the retailer announced it had reached a settlement agreement with a coalition of 47 states’ attorneys general. Pursuant to the...more

HHS Releases Health Care Industry Cybersecurity Task Force Report

Last week, the Department of Health and Human Services (HHS) issued its “Report on Improving Cybersecurity in the Health Care Industry,” which is the culmination of a year-long effort on behalf of the Cybersecurity Task...more

OneLogin Suffers and Notifies Customers of very Sophisticated and Scary Intrusion

San Francisco based OneLogin, which provides single sign on and identity management services for companies and app vendors, recently notified its users that it has discovered an unauthorized access to its data....more

“Fireball” Malware a Threat to Health Care Industry

A new report released by Check Point has security personnel working in the health care industry particularly concerned and they are warning their colleagues about the existence of “Fireball.”...more

Target Settles For $18.5M Over 2013 Customer Data Breach

by King & Spalding on

On May 23, 2017, Target Corp. reached a settlement with 47 states and the District of Columbia, agreeing to pay $18.5 million to resolve the states’ investigation into Target’s 2013 customer data breach. The resolution...more

2,500 Mothers’ and Newborns’ Personal and Health Information Lost in the Mail

The Arizona Department of Health Services (ADHS) has notified 2,500 patients that their personal and health information has been lost in the mail. The affected patients were mothers and newborns enrolled in the newborn...more

Mobile Apps: Key Privacy, Security and Data Collection Considerations

by Patrick Law Group, LLC on

Over the past three years, mobile application usage in the U.S. has increased by 111%, and over 50% of digital media consumption in the U.S. is now through mobile apps. As consumer use of mobile apps continues to rise, the...more

Privacy Tip #91 – Teen App Wishbone Compromised—Female Teenagers at Risk

Social networking app Wishbone, which is used primarily by teenage girls to vote on various teenage type quizzes, like favorite entertainers or fashion, has been hacked....more

Illinois “Right to Know” Bill Passed Out Of Illinois State Senate

by King & Spalding on

On May 4, 2017, the Illinois State Senate passed a bill requiring websites and apps to notify their Illinois customers of the personally identifiable information they collect and disclose and with whom they share it. If...more

NYS Cyber Regulation Countdown: “Risk Assessment” – Now or Later?

In our series of posts leading up to the August 28th deadline for the first phase of requirements under New York’s cybersecurity regulation, the Patterson Belknap team looks at issues that institutions face as they implement...more

1,752 Results
|
View per page
Page: of 71
Cybersecurity

"My best business intelligence,
in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign up using*

Already signed up? Log in here

*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
*With LinkedIn, you don't need to create a separate login to manage your free JD Supra account, and we can make suggestions based on your needs and interests. We will not post anything on LinkedIn in your name. Or, sign up using your email address.