Andreas Kaltsounis on Data Breach

Former Uber Chief Security Officer Convicted of Federal Obstruction and Concealment Crimes in Connection with Extortionate Data...

On October 5, 2022, a federal jury found Joseph Sullivan, Uber’s former chief security officer, guilty of obstruction of justice and misprision of a felony in connection with his role in responding to a 2016 data breach...more

10/12/2022 / Compliance , Corporate Officers , Criminal Convictions , Criminal Prosecution , Cyber Crimes , Cyber Incident Reporting , Cybersecurity , Data Breach , Department of Justice (DOJ) , Incident Response Plans , Obstruction of Justice , Popular , Uber

Federal Banking Regulators Issue 36-Hour Computer-Security Incident Notification Requirement

As the federal government continues its whole-of-government response to cyber incidents, federal banking regulators took action to impose a new notice requirement on federally regulated banks. In November, the Federal Deposit...more

12/16/2021 / Banking Sector , Cyber Incident Reporting , Data Breach , Data Security , FDIC , Federal Bank Regulatory Agencies , Financial Services Industry , Notification Requirements , OCC

International Data Protection Update – First Quarter 2021

This quarterly update highlights some of the international data protection issues that have caught our attention, and the attention of our clients, in the past three months....more

A Risk-Based Approach to the SolarWinds Vulnerability Disclosures

On December 13, 2020, SolarWinds disclosed that an unknown attacker compromised its network and inserted malicious code (referred to as the Sunburst vulnerability) into software updates for the Orion platform. In what will...more

1/7/2021 / Cyber Attacks , Cyber Crimes , Cybersecurity , Data Breach , Data Security , Hackers , Homeland Security Cybersecurity & Infrastructure Security Agency (CISA) , Malware , SolarWinds

New Year Brings Trio of U.S. Breach Notification Amendments

Along with the California Consumer Privacy Act, the new year brought us a trio of updated breach notification laws, in Oregon, Texas and Illinois. ...more

1/8/2020 / California Consumer Privacy Act (CCPA) , Cybersecurity , Data Breach , Data Protection , State Data Breach Notification Statutes

Insurance Data Security Model Law Picks Up Steam

Three states recently enacted variations of the National Association of Insurance Commissioner’s (NAIC) Insurance Data Security Model Law (MDL-668), based on the landmark cybersecurity requirements issued by the New York...more

2/7/2019 / Cybersecurity , Data Breach , Data Privacy , Data Security , NAIC , NYDFS

Last But Not Least: Alabama Enacts a Data Breach Notification Law with Strong Notification and Security Requirements

Several weeks ago, South Dakota and Alabama became the final two states to enact data breach notification laws. The Alabama Data Breach Notification Act of 2018 takes effect on May 1, 2018, and imposes information security,...more

5/1/2018 / Cybersecurity , Data Breach , Data Protection , Data Security , Health Insurance Portability and Accountability Act (HIPAA) , State and Local Government , State Data Breach Notification Statutes

Recent Trends, Future Predictions, and Effective Risk Assessments

Risk assessments are a fundamental part of any organization’s risk management process. But many organizations still do not incorporate true risk assessments into their information-security planning, even though doing so makes...more

1/9/2018 / Cyber Attacks , Cybersecurity , Data Breach , Data Protection , Malware , Risk Assessment

Andreas Kaltsounis

BakerHostetler

Popular Topics by This Author

Latest Posts › Data Breach