Online mortgage lender Lending Tree sent breach notification letters to affected individuals on June 29, 2022. The letter advises those persons that their name, social security number...more
CYBERSECURITY -
Joint Advisory Warns of MedusaLocker Ransomware -
A recently-issued joint advisory by the FBI, the Cybersecurity and Infrastructure Security Agency, the Financial Crimes Enforcement Network, and the...more
CYBERSECURITY -
Karakurt Extortion Group Auctions Data for Ransom -
On June 2, 2022, CISA (the Cybersecurity and Infrastructure Security Agency), the FBI, the Department of the Treasury and the Financial Crimes...more
Ramping up the state’s continued focus on data privacy, on June 8, 2022, Colorado Governor Jared Polis signed legislation aimed at limiting the use of facial recognition technology by government agencies and state...more
6/16/2022
/ Biometric Information ,
Civil Liberties ,
Colorado ,
Consumer Privacy Rights ,
Data Collection ,
Data Privacy ,
Educational Institutions ,
Facial Recognition Technology ,
New Legislation ,
Personal Data ,
Personally Identifiable Information ,
Regulatory Reform ,
Students
CYBERSECURITY -
Joint Advisory Warns of Chinese-Sponsored Attacks on Telecommunications Companies -
A joint advisory issued June 7, 2022, by the Cybersecurity & Infrastructure Security Agency, FBI and the National...more
6/10/2022
/ China ,
Cryptocurrency ,
Cyber Attacks ,
Cybersecurity ,
Data Breach ,
Data Privacy ,
Drones ,
Hackers ,
Non-Fungible Tokens (NFTs) ,
Popular ,
Right to Repair ,
Scams ,
Vulnerability Assessments
CYBERSECURITY -
Verizon’s 2022 Data Breach Investigations Report: A Must Read -
I love Verizon’s annual Data Breach Investigations Report (DBIR). I have pored over its content every year since its inception in 2008. (Just...more
6/3/2022
/ California Privacy Rights Act (CPRA) ,
Cyber Attacks ,
Cybersecurity ,
Data Breach ,
Data Privacy ,
Data Protection ,
Enforcement Actions ,
Hackers ,
Homeland Security Cybersecurity & Infrastructure Security Agency (CISA) ,
Personally Identifiable Information ,
Popular ,
Regulatory Reform ,
Vulnerability Assessments
CYBERSECURITY NIST -
Releases Guidance on Supply Chain Security -
The National Institute of Standards and Technology (NIST) Information Technology Laboratory recently released guidance entitled “Software Supply Chain...more
5/13/2022
/ American Civil Liberties Union (ACLU) ,
Clearview AI ,
Consumer Privacy Rights ,
Cybersecurity ,
Data Management ,
Data Privacy ,
Data Protection ,
New Guidance ,
New Legislation ,
NIST ,
Personal Data ,
Popular ,
Privacy Laws ,
Ransomware ,
Supply Chain
The American Civil Liberties Union (ACLU) filed suit against Clearview AI, Inc. (Clearview AI) in March 2020, alleging that it violated the Illinois Biometric Information Privacy Act (BIPA) by capturing and using billions of...more
5/13/2022
/ American Civil Liberties Union (ACLU) ,
Artificial Intelligence ,
Biometric Information ,
Biometric Information Privacy Act ,
Clearview AI ,
Consumer Privacy Rights ,
Data Collection ,
Data Privacy ,
Facial Recognition Technology ,
Personally Identifiable Information ,
Settlement Agreements ,
Statutory Violations
Connecticut Governor Ned Lamont signed the Personal Data Privacy and Online Monitoring Act (CPDPA) into law on May 10, 2022, making Connecticut the most recent state to pass its own privacy law in the absence of comprehensive...more
5/13/2022
/ Connecticut ,
Consumer Privacy Rights ,
Cybersecurity ,
Data Privacy ,
Data Protection ,
Electronic Protected Health Information (ePHI) ,
Health Insurance Portability and Accountability Act (HIPAA) ,
Healthcare ,
Information Governance ,
Information Technology ,
New Legislation ,
Personal Data ,
Regulatory Reform ,
State Privacy Laws
CYBERSECURITY -
Education Sector Continues to Get Hit with Ransomware Attacks -
According to Emsisoft, the education sector continues to experience ransomware attacks, with a whopping 1,043 schools affected by ransomware...more
5/6/2022
/ Consumer Privacy Rights ,
Cybersecurity ,
Data Management ,
Data Privacy ,
Data Protection ,
Information Governance ,
Mobile Apps ,
Personally Identifiable Information ,
Popular ,
Ransomware ,
Vulnerability Assessments
According to Emsisoft, the education sector continues to experience ransomware attacks, with a whopping 1,043 schools affected by ransomware in 2021. This statistic breaks down to 62 school districts and 26 colleges and...more
CYBERSECURITY -
State Department Offers $10M Reward for Information on Russian Officers Involved in Malicious Cyber Activities -
The U.S. Department of State has announced a $10 million reward for “information leading to...more
CYBERSECURITY -
Intelligence Points to Likely Russian Attacks on Critical Infrastructure -
The cybersecurity authorities of the United States (including CISA, FBI, NSA and DOE), Australia, Canada, New Zealand, and the...more
4/22/2022
/ Cyber Attacks ,
Cybersecurity ,
Data Breach ,
Data Privacy ,
Data Protection ,
Hackers ,
Identity Theft ,
Personal Data ,
Personally Identifiable Information ,
Popular ,
Ransomware ,
Russia ,
Scams ,
Ukraine
CYBERSECURITY -
DOJ Takes Down RaidForums' Website -
In an action against what has been described as one of the largest hacker forums in the world, the U.S. Department of Justice (DOJ) announced on April 12, 2022, that...more
4/15/2022
/ Consumer Privacy Rights ,
Cybersecurity ,
Data Management ,
Data Privacy ,
Data Protection ,
Department of Justice (DOJ) ,
Enforcement Actions ,
Federal Trade Commission (FTC) ,
Microsoft ,
Network Security ,
Personal Data ,
Popular ,
Scams
CYBERSECURITY -
State Department Establishes Bureau of Cyberspace and Digital Policy -
The Department of State’s new Bureau of Cyberspace and Digital Policy (CDP) commenced operations on April 4, 2022. According to an...more
4/8/2022
/ Consumer Privacy Rights ,
Cybersecurity ,
Data Breach ,
Data Privacy ,
Data Protection ,
Drones ,
Enforcement Actions ,
Information Governance ,
Information Technology ,
Personal Data ,
Popular ,
Scams
CYBERSECURITY -
Russian Government Officials Charged with Hacking U.S. Energy Infrastructure -
The U.S. Department of Justice (DOJ) unsealed indictments against four Russian government officials on March 24, 2022,...more
4/4/2022
/ Critical Infrastructure Sectors ,
Cryptocurrency ,
Cybersecurity ,
Data Breach ,
Data Management ,
Data Privacy ,
Drones ,
Employee Tracking ,
GPS ,
Hackers ,
Personal Data ,
Russia
CYBERSECURITY -
Okta Notifies Customers of LAPSUS$ Attack -
Okta, which markets itself as a “leading provider of identity” in the health care, public sector, energy, financial services, technology, travel and hospitality,...more
3/25/2022
/ Cyber Attacks ,
Cybersecurity ,
Data Privacy ,
Data Protection ,
Data Security ,
Drones ,
FBI ,
NIST ,
PHI ,
Popular ,
State Data Breach Notification Statutes
CYBERSECURITY -
Cyber-Attackers Politically Aligned -
The most recent Accenture Global Incident Report (the Report) shows that cyber-attackers have political views and are divided between support for Russia or Ukraine....more
3/18/2022
/ Cyber Attacks ,
Cybersecurity ,
Data Privacy ,
Data Protection ,
Enforcement Actions ,
Federal Trade Commission (FTC) ,
Personal Data ,
Popular ,
Right To Know ,
Russia ,
Scams ,
Vulnerability Assessments
CYBERSECURITY -
Chinese APT41 Attacking State Networks -
Although we are receiving frequent alerts from CISA and the FBI about the potential for increased cyber threats coming out of Russia, China continues its cyber...more
3/11/2022
/ China ,
COPPA ,
Cyber Attacks ,
Cyber Threats ,
Cybersecurity ,
Data Breach ,
Data Privacy ,
Data Protection ,
Data Security ,
Drones ,
Elder Abuse ,
Hackers ,
Identity Theft ,
Information Technology ,
Military Conflict ,
Online Safety for Children ,
Russia ,
Ukraine
Governor Mark Gordon signed the Wyoming Genetic Data Privacy Act into law on March 8, 2022. The law goes into effect on July 1, 2022.
The Genetic Data Privacy Act requires any business that collects genetic data from...more
CYBERSECURITY -
CISA/FBI Advisory Warns of Destructive Malware Used Against Ukraine -
The Cybersecurity and Infrastructure Security Agency (CISA) and the FBI issued a joint advisory this week alerting organizations of...more
3/4/2022
/ Artificial Intelligence ,
Cyber Attacks ,
Cyber Crimes ,
Cybersecurity ,
Data Privacy ,
Data Protection ,
Data Security ,
FBI ,
Hackers ,
Homeland Security Cybersecurity & Infrastructure Security Agency (CISA) ,
Identity Theft ,
Information Blocking Rules ,
Malware ,
Passwords ,
Personal Data ,
Personally Identifiable Information ,
Popular ,
Russia ,
T-Mobile ,
Ukraine ,
Vulnerability Assessments
Kronos, Inc., has agreed to (and a federal judge has preliminarily approved) a $15.3 million settlement to resolve claims that it violated the Illinois Biometric Information Privacy Act (BIPA) by collecting biometric...more
2/25/2022
/ Biometric Information ,
Biometric Information Privacy Act ,
Class Action ,
Data Collection ,
Data Privacy ,
Employer Liability Issues ,
Employment Litigation ,
Fingerprints ,
Personal Data ,
Personally Identifiable Information ,
Settlement
CYBERSECURITY -
FBI and DHS Warn of Russian Cyberattacks Against Critical Infrastructure -
U.S. officials this week warned government agencies, cybersecurity personnel, and operators of critical infrastructure that...more
2/23/2022
/ Biometric Information ,
Biometric Information Privacy Act ,
Cyber Attacks ,
Cybersecurity ,
Data Privacy ,
Data Protection ,
Drones ,
Facial Recognition Technology ,
Hackers ,
Personally Identifiable Information ,
Ransomware ,
Russia ,
Vulnerability Assessments
CYBERSECURITY -
FBI and DHS Warn of Russian Cyberattacks Against Critical Infrastructure -
U.S. officials this week warned government agencies, cybersecurity personnel, and operators of critical infrastructure that...more
2/18/2022
/ Biometric Information Privacy Act ,
Cyber Attacks ,
Cybersecurity ,
Data Breach ,
Data Collection ,
Data Privacy ,
Data Protection ,
Department of Homeland Security (DHS) ,
Drones ,
Facebook ,
Facial Recognition Technology ,
FBI ,
Hackers ,
Personally Identifiable Information ,
Ransomware ,
Russia ,
Vulnerability Assessments
Texas enacted a biometric information privacy law way back in 2001, which was amended in 2009. That was a long time ago in the context of the development of privacy laws, and even longer when it comes to biometric information...more
2/18/2022
/ Biometric Information ,
Data Collection ,
Data Privacy ,
Facebook ,
Facial Recognition Technology ,
Notice Requirements ,
Online Platforms ,
Personal Data ,
Personally Identifiable Information ,
Regulatory Requirements ,
Social Media ,
Statutory Violations