Andreas Kaltsounis

Andreas Kaltsounis

BakerHostetler

Contact
View Bio
RSS

Latest Posts › Data Security

Share:

Federal Banking Regulators Issue 36-Hour Computer-Security Incident Notification Requirement

As the federal government continues its whole-of-government response to cyber incidents, federal banking regulators took action to impose a new notice requirement on federally regulated banks. In November, the Federal Deposit...more

12/16/2021  /  Banking Sector , Cyber Incident Reporting , Data Breach , Data Security , FDIC , Federal Bank Regulatory Agencies , Financial Services Industry , Notification Requirements , OCC

International Data Protection Update – Summer 2021

This update highlights some of the international data protection issues that caught our attention, and the attention of our clients, over the summer. Asia-Pacific - China’s Data Security Law and Personal Information...more

9/22/2021  /  Cybersecurity , Data Protection , Data Security , Information Technology , International Data Transfers , Popular

The Brave New World of Cybersecurity Compliance—Key Takeaways from Recent Government Action on Cybersecurity

After a series of high-profile supply chain and ransomware attacks, the federal government is ramping up its effort to improve the nation’s cybersecurity. In the past several months, multiple federal departments and agencies...more

7/21/2021  /  Compliance , Cyber Attacks , Cyber Threats , Cybersecurity , Data Security , Ransomware , Securities and Exchange Commission (SEC) , TSA

Updated EU Standard Contractual Clauses Are Finally Here

On June 4, 2021, the European Union’s (EU) executive branch, the European Commission (EC), released their new Standard Contractual Clauses (SCCs) for compliant cross-border data transfers under the EU’s General Data...more

6/8/2021  /  Data Protection , Data Security , EU , European Commission , General Data Protection Regulation (GDPR) , International Data Transfers , Personal Data , Schrems I & Schrems II , Standard Contractual Clauses , UK

Responding to Supply-Chain Risk—It's Not Just About Vendor Management

Organizations around the globe began 2021 grappling with two significant supply-chain attacks. First, the SVR, Russia’s foreign intelligence service, planted malicious code in Orion, SolarWinds’ flagship network management...more

4/14/2021  /  Cyber Threats , Cybersecurity , Data Security , Risk Management , Supply Chain , Vendors

International Data Protection Update – First Quarter 2021

This quarterly update highlights some of the international data protection issues that have caught our attention, and the attention of our clients, in the past three months....more

3/30/2021  /  Asia Pacific , CNIL , Cookies , Cybersecurity , Data Breach , Data Collection , Data Privacy , Data Processors , Data Protection , Data Protection Authority , Data Security , Data Transfers , Enforcement Actions , EU , European Data Protection Board (EDPB) , General Data Protection Regulation (GDPR) , Notice Requirements , Personal Data , Popular , Russia , South America , UK , Web Tracking

A Risk-Based Approach to the SolarWinds Vulnerability Disclosures

On December 13, 2020, SolarWinds disclosed that an unknown attacker compromised its network and inserted malicious code (referred to as the Sunburst vulnerability) into software updates for the Orion platform. In what will...more

1/7/2021  /  Cyber Attacks , Cyber Crimes , Cybersecurity , Data Breach , Data Security , Hackers , Homeland Security Cybersecurity & Infrastructure Security Agency (CISA) , Malware , SolarWinds

Insurance Data Security Model Law Picks Up Steam

Three states recently enacted variations of the National Association of Insurance Commissioner’s (NAIC) Insurance Data Security Model Law (MDL-668), based on the landmark cybersecurity requirements issued by the New York...more

2/7/2019  /  Cybersecurity , Data Breach , Data Privacy , Data Security , NAIC , NYDFS

Last But Not Least: Alabama Enacts a Data Breach Notification Law with Strong Notification and Security Requirements

Several weeks ago, South Dakota and Alabama became the final two states to enact data breach notification laws. The Alabama Data Breach Notification Act of 2018 takes effect on May 1, 2018, and imposes information security,...more

5/1/2018  /  Cybersecurity , Data Breach , Data Protection , Data Security , Health Insurance Portability and Accountability Act (HIPAA) , State and Local Government , State Data Breach Notification Statutes

When Obscurity Is Not a Defense

Many organizations facing a data-security incident struggle to understand how or why their organization was targeted in an attack. Most simply believe they are too small or too obscure to be targeted by malicious cyber...more

2/22/2018  /  Cyber Attacks , Cyber Threats , Cybersecurity , Data Privacy , Data Protection , Data Security , Email , Phishing Scams
10 Results
 / 
View per page
Page: of 1

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign up Log in
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide