Personally Identifiable Information Data Breach

News & Analysis as of

U.S. Court in Louisiana Remands Advance Stores Co. Data Breach Class Action to State Court

In a case with a familiar fact pattern, the United States District Court for the Eastern District of Louisiana refused to find that permitting Plaintiff to proceed in Louisiana state court was “futile” on Article III standing...more

See You In Court! - July/August 2016

Out of the blue, Nancy Newshound, longtime reporter for the Nutmeg Bugle called Mr. Superintendent. “I understand that a student hacked the district’s system and changed a bunch of grades,” she stated. “What can you tell me...more

Scottrade data breach class action case dismissed for lack of standing

We previously reported that Scottrade was hit with a class action case within 24 hours of notifying customers of a data breach. According to the Complaint, the data compromised included the names, addresses, telephone...more

Cybersecurity and Data Privacy: Confidential Data Breach - Escaping Potential Liability (7/16)

The first question asked by many companies after a data breach is – What is our potential liability? On July 12, 2016 a Missouri Federal Court issued a ruling that companies should be aware of when defending customers’ claims...more

Cybersecurity News & Notes – July 2016 #3

In Case You Missed It: Court certifies class in suit against Apple. On July 15, 2016, U.S. District Judge Jon S. Tigar certified a class of users of the mobile app Path, who allege that Apple facilitated the app’s access...more

Wendy’s reports over 1,000 restaurants affected by breach announced earlier this year

Back in May of this year, Wendy’s reported “fewer than 300” locations had been hacked by malicious malware that targeted customer credit card information. Last week, Wendy’s released a list of 1,025 restaurant locations that...more

New York Appellate Court Finds “Electronic Data” Exclusion Applies to Data Breach

The computer network of a Five Guys Burger franchise, RVST Holdings, LLC (RVST), was hacked. Customers’ credit card information was stolen and used to make numerous fraudulent charges. Trustco Bank brought an action against...more

Shareholder Derivative Suit Following Data Breach Misses Target

On July 7, 2016, Judge Paul A. Magnuson of the United States District Court for the District of Minnesota granted Defendants’ Motions to Dismiss a shareholder class action that had been initiated following a 2013 holiday...more

Omni Hotels latest hotel chain hit with malware

Omni Hotels notified guests on Friday, July 8, 2016, that its point of sale systems were compromised with malware from December 23, 2015, through June 15, 2016....more

BYOD Risks under HIPAA – Does Your HIPAA Compliance Program Adequately Address the Ever Increasing Use of Portable Electronic...

Many U.S. employers are now allowing employees to use their own personal handheld devices and laptop computers for work-related purposes. As the age of employer-provided devices is coming to an end and “bring your own device”...more

Data Breach Incident Response: 5 Questions to Ask and New Laws to Know Now

The spring legislative sessions this year brought a now-familiar round of revisions to data breach notification laws, with states broadening their laws in often divergent ways. This year, Illinois, Nebraska, and Tennessee...more

Home Depot Challenges Banks’ Standing to Recover Losses Related to Data Breaches

In the aftermath of major data breaches at deep-pocketed retailers and other businesses, there is typically no shortage of litigants who move quickly to seek compensation from the business at which the breach occurred. But...more

Mille Lacs County in Minnesota settles for $1 million after former employee accesses driver and vehicle database for personal gain

Last week, Mille Lacs County and former investigator for the Mille Lacs County Family Services, Mikki Jo Peterick, agreed to pay $1 million to settle a proposed federal class action which alleged that a former employee of...more

"Data Privacy Protection and Cybersecurity: A Business and Legal Primer"

The news regularly reports on data breaches and cybersecurity. While we read about the biggest breaches – Home Depot, Target, Anthem, JP Morgan, Wyndham – probably every business has been hacked and will be hacked again. ...more

Massachusetts General Hospital vendor Patterson Dental Supply reports breach of 4,300 patient records

Patterson Dental Supply, Massachusetts General Hospital’s (MGH) vendor that provides software to the hospital to manage dental practice information, has reportedly admitted that approximately 4,300 of MGH’s patient records...more

SEC Steps Up Cybersecurity Enforcement with $1 Million Fine Against Morgan Stanley

The Security and Exchange Commission’s (“SEC”) recent $1 million settlement with Morgan Stanley Smith Barney LLC (“MSSB”) marked a turning point in the agency’s focus on cybersecurity issues, an area that the agency has...more

Employment Agreements: Current Issues

Employment agreements are not unusual, particularly for managers and executives. As new laws come into existence and as the work environment is changed by data and data security, drafting adequate, enforceable agreements can...more

SEC Cyber Update: Official Outlines Active Role for SEC on Cybersecurity as Enforcement Questions Persist

SEC Chicago Regional Director David Glockner spoke at a PLI Conference in New York on June 6 regarding the SEC’s data security regulations and enforcement efforts. Mr. Glockner acknowledged frustration with the Division of...more

Another One Bites the Dust: Maryland Federal District Court Dismisses Putative Data Breach Class Action for Lack of Standing

The United States District Court of Maryland recently dismissed a putative class action alleging that CareFirst’s failure to adequately secure the computer hardware storing their customers’ personal information led to two...more

The ICO: A force to be reckoned with

From recent prosecutions it seems that the Information Commissioner's Office (ICO) is a body to be taken seriously. Not only has it continued to bring enforcement action against organisations for data protection breaches, it...more

Nebraska and Illinois Update Breach Notice Requirements

The data breach notification laws for Nebraska and Illinois have been updated to expand the definition of “personal information” to include usernames and email addresses in combination with a password or security question...more

Illinois data breach law amended and includes new twists

Governor Bruce Rauner signed several new provisions into law amending Illinois’ Personal Information Privacy Act, including health insurance and medical information into the definition of personal information that triggers...more

Your Organization is Impacted by Ransomware - Now What?

Some forms of cyber extortion are automated and not targeted at any specific victim. For example, “ransomware” refers to a type of malware that prevents users from accessing their systems unless, and until, a ransom is paid....more

Cybersecurity News & Notes – June 2016 #3

In Case You Missed It: Illinois strengthened its data privacy and security law, with the amendments going into effect in January 2017. The amendments include expanding the definition of “personal information” to include a...more

SEC Fines Morgan Stanley for Data “Breach”

Last week, the SEC fined Morgan Stanley $1 million for two data security failures resulting in the exposure of personal information of 730,000 of its customers. Andrew Ceresney, the director of enforcement at the SEC stated,...more

584 Results
|
View per page
Page: of 24
JD Supra Readers' Choice 2016 Awards

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:

Sign up to create your digest using LinkedIn*

*By using the service, you signify your acceptance of JD Supra's Privacy Policy.

Already signed up? Log in here

*With LinkedIn, you don't need to create a separate login to manage your free JD Supra account, and we can make suggestions based on your needs and interests. We will not post anything on LinkedIn in your name. Or, sign up using your email address.
×