A new report commissioned by Tanium and Nasdaq finds that 90% of corporate executives admit that they can’t read a cybersecurity report and up to 40% of corporate executives do not feel personally responsible for...more
In a memo outlining a security incident as required by the Federal Information Security Modernization Act of 2014, the FDIC has admitted that the data of 44,000 FDIC customers was “inadvertently” taken by an employee as the...more
A new Ponemon study emphasizes the risk of third party vendors which have access to company data. According to the survey “Data Risk in the Third Party Ecosystem,” companies are concerned about their third party vendors, but...more
We have consistently reported about increased phishing attacks through emails that purport to come from high level executives, including CEOs. According to the FBI, the hackers use sophisticated social engineering to spoof...more
The Sony data breach in 2014 was one of the most significant breaches experienced and was a first on many fronts. It was alleged to have been caused by North Korean hackers (calling themselves Guardians of Peace) seeking to...more
A Government Accountability Office (GAO) examination of the state-run health insurance exchanges for California, Kentucky and Vermont identified inadequate security measures in place to protect consumers’ personal...more
While attending the International Association of Privacy Professionals annual global event, and listening to Chairwoman Edith Ramirez discuss the Federal Trade Commission’s (FTC) concerns about consumer privacy, the FTC, the...more
4/8/2016
/ App Developers ,
Federal Food Drug and Cosmetic Act (FFDCA) ,
Federal Trade Commission (FTC) ,
Food and Drug Administration (FDA) ,
Health Care Providers ,
Health Insurance Portability and Accountability Act (HIPAA) ,
Mobile Apps ,
Mobile Health Apps ,
OCR ,
ONC ,
PHI ,
Privacy Concerns
Litigating companies Google and Oracle have mutually agreed, at the strong recommendation of the presiding judge, to refrain from researching the social media accounts of a potential jury pool before and during a high stakes...more
We have frequently alerted individuals and companies about the increasing risk and success posed by sophisticated phishing schemes.
It has become such a real and grave problem that the U.S. Computer Emergency Readiness...more
Tidewater Community College (Tidewater) has announced that the personal information, including names and Social Security numbers of 3,193 current and former faculty and staff members was compromised in a phishing scheme and...more
KrebsOnSecurity has reported that sources from the banking industry have advised of a pattern of fraud on credit cards used at Trump Hotel Collection (Trump) properties. Trump has confirmed that it is investigating the...more
A Norfolk Admirals fan notified the Admirals last week that his information was posted online. Another customer found out that her information was posted online from the service Have I been Pwned? Her son’s name and address...more
We previously reported that 21st Century Oncology (21st Century) experienced a data breach of up to 2.2 million patient records that compromised the names, Social Security numbers and health and diagnostic information. It...more
The FBI and DOJ continue their effort to bring cyber hackers to justice.
Last week, Chinese national Su Bin pled guilty to stealing data related to Boeing’s C-17 military cargo plane and of trying to steal information...more
MedStar Health has announced that it has shut down its electronic medical record system after confirming that it has been struck with malware....more
Filed under the title of creative lawyering, a putative class action case has been filed against Facebook in federal court in Northern California alleging that health care providers and medical organizations have violated...more
We have been following and reporting on the Facebook and Shutterfly biometrics cases in Illinois and California.
Google was recently sued by a potential class in Illinois alleging that it violated the Illinois Biometric...more
We previously reported that 21st Century Oncology had suffered a data breach and notified 2.2 million patients that it had been the victim of a hacking that exposed the names, Social Security numbers, physicians’ names,...more
It’s tax season. The dreaded April 15 federal tax filing deadline is looming. You try to be diligent, and you file your tax return early, hoping to get an early refund. But when you try to e-file your return, it gets rejected...more
Jeep/Fiat has been sued by a putative class alleging that they were harmed as a result of researchers’ ability to hack into a Jeep and take control of it. Jeep/Fiat filed a motion to dismiss, stating that the owners suffered...more
Just a week after we reported that the FBI warned international law firms that they are targets for cyber hackings, multiple (reportedly up to 50) BigLaw firms have confirmed that they have been victims of hackings and...more
In a sign of increased cross-border cooperation for enforcement purposes, the Federal Trade Commission (FTC) recently signed a Memorandum of Understanding (MOU) with the Canadian Radio-television and Telecommunications...more
Uber recently announced that it has launched a bug bounty program that will pay white-hat hackers up to $10,000 for exposure of information that identifies “critical issues,” such as Social Security numbers, credit card...more
As we mentioned before, Rhode Island amended its Identity Theft Protection Act on June 30, 2015, which will become effective on June 26, 2016. Now is the time to think about and put processes in place for compliance with the...more
The feds have been busy on the cyber prosecutions front. First, on March 18, 2016, the FBI announced that a multi-agency collaborative effort blew up an identity theft ring whose leader was an inmate in a Georgia prison. The...more