We’re back with a deeper dive into the 2023 Data Security Incident Response Report, which features insights and metrics from 1,160+ incidents in 2022.
This episode dives deeper into privacy litigation.
Questions & comments:...more
Educational institutions have not been excluded from the ransomware epidemic, and stakeholder communications are critical to an effective response. In a typical double-extortion ransomware attack, threat actors demand that...more
2/3/2023
/ Colleges ,
Cyber Attacks ,
Educational Institutions ,
Extortion ,
Harassment ,
Public Communications ,
Public Relations ,
Public Schools ,
Ransomware ,
Students ,
Universities
We recently wrote about North Carolina’s new law prohibiting state agencies - including public schools and universities - from paying a ransom or even communicating with a threat actor following a ransomware incident. On June...more
On April 5th, North Carolina became the first state to prohibit state agencies and local governments from paying ransoms after becoming victims of a ransomware attack. Indeed, in addition to prohibiting said entities from...more
In the event of a ransomware attack, there are a host of legal frameworks that could potentially be implicated. Whether those laws apply often depends on the nature of the data that the threat actor accessed and/or acquired....more
4/19/2022
/ Cyber Attacks ,
Cybersecurity ,
DFARS ,
Educational Institutions ,
FERPA ,
FOIA ,
Health Insurance Portability and Accountability Act (HIPAA) ,
Ransomware ,
Risk Management ,
Safeguards Rule ,
State Data Breach Notification Statutes
The best way to ensure that an educational institution can respond quickly and effectively to a ransomware attack and minimize any chaos and confusion that accompanies such incidents is to have an incident response plan in...more
The ransomware epidemic has affected and continues to affect all industries, including healthcare, manufacturing and finance. Since 2020, however, the education industry has been targeted as much as or more than any other...more