News & Analysis as of September 21, 2024

Risk Management

+ Follow

Follow this channel for advisories on one of the biggest threats to businesses today. Read a morning brief of fresh guidance and commentary by leading lawyers on security, privacy, risk... more +

Follow this channel for advisories on one of the biggest threats to businesses today. Read a morning brief of fresh guidance and commentary by leading lawyers on security, privacy, risk management, global regulations, data protection, leaks, hacking, cyber insurance, compliance, HIPAA, and every other aspect of cybersecurity of import to corporate readers right now. less -

Privacy Tip #411 – Phishing Attacks Increased 40% in 2023

Robinson+Cole Data Privacy + Security Insider on 8/22/2024

Everyone thinks they can spot a phishing email. If true, we would not see so many security incidents, data breaches, and ransomware attacks. The statistics are overwhelming that phishing emails are a significant cause of data...more

Privacy Briefs: April 2024

Health Care Compliance Association (HCCA) on 4/22/2024

The Cybersecurity and Infrastructure Agency (CISA) is seeking comment on a proposed rule to implement reporting requirements for critical infrastructure entities, including health care entities, on cyberattacks and ransomware...more

Ransomware Hitting U.S. Companies at Increasing Rate

Robinson+Cole Data Privacy + Security Insider on 2/8/2024

Unfortunately, according to Unit 42 of Palo Alto’s recently published “Ransomware and Extortion Report,” ransomware groups had a good year in 2022. They found that threat actors are using multi-extortion tactics to get paid...more

Privacy Breach: The Silent Killer of Startups

Pillsbury - Propel on 1/23/2024

A privacy breach can have detrimental consequences for startups: A privacy breach may trigger legal consequences and regulatory scrutiny, especially for a startup that operates in areas with stringent data protection laws...more

Pressure-Testing Your Privacy Program for 2024

BCLP on 1/5/2024

With the onslaught of new privacy legislation and cyber threats coupled with upticks in enforcement, running a well-functioning and flexible privacy program is now, more than ever, a critical component of an organization’s...more

Privacy Briefs: December 2023

Health Care Compliance Association (HCCA) on 12/8/2023

Report on Patient Privacy 23, no. 12 (December, 2023) Northwell Health in New York and Cook County Health in Chicago each experienced impacts from a breach at Nevada-based transcription company Perry Johnson & Associates...more

Resilience Midyear 2023 Claims Report: Ransomware Cybercriminals Shift Tactics

Robinson+Cole Data Privacy + Security Insider on 10/27/2023

Resilience issued its Midyear 2023 Claims Report, which is well worth the read. In addition to commenting on the impact of the MOVEit incident, some of the key findings include...more

Red Cross Creates Rules for Civilian Hackers in Conflict Zones

Robinson+Cole Data Privacy + Security Insider on 10/23/2023

The International Committee of the Red Cross (ICRC) has taken a new step to regulate the activities of civilian hackers in conflict zones. To address the rise in the involvement of civilian hackers in inter-state conflicts,...more

HC3 Warns Healthcare Organizations of NoEscape Ransomware

Robinson+Cole Data Privacy + Security Insider on 10/23/2023

On October 12, 2023, the Health Sector Cybersecurity Coordination Center (HC3) issued an Alert to the healthcare industry about a “new threat actor and ransomware,” NoEscape, which is threatening health care organizations....more

Don’t Gamble With Your Cybersecurity and Incident Response Plan: Lessons Learned from the Las Vegas Ransomware Attacks

Amundsen Davis LLC on 9/29/2023

Typically, we beat the drum of the need to prepare for a data incident—anything from a full-blown ransomware attack to an employee accidently sharing data with the wrong person—by having your Incident Response Plan developed...more

Privacy Tip #372 – Personal Preparedness for Massive Cyber-Attack

Robinson+Cole Data Privacy + Security Insider on 9/22/2023

It is scary to think of cyber warfare and how it may affect us. But the reality is there, and we should be prepared. I was chatting with a colleague this morning who asked for the top two things to do to prepare for a massive...more

Hacking the Hive: How It Can Help Businesses

Burr & Forman on 2/15/2023

Businesses can breathe a little easier now that one of the world’s top five ransomware networks, the Hive, has been infiltrated and disbanded by the FBI....more

Executive Order Clarifies Focus and Five Factors for Future CFIUS Reviews

Bradley Arant Boult Cummings LLP on 9/29/2022

President Biden issued Executive Order (EO) 14083 on September 15, 2022, establishing five factors for reviews by the Committee on Foreign Investment in the U.S. (CFIUS), and areas of heightened scrutiny for transactions...more

Hybrid Workforces and Compliance with Sheila Limmroth

Health Care Compliance Association (HCCA) on 4/21/2022

Hybrid work is likely here to say, and, as Sheila Limmroth, privacy specialist at DCH Health System, and the author of the chapter Hybrid Work Environment in the Complete Healthcare Compliance Manual observes in this...more

To Pay or Not to Pay: Five Critical Approaches to Beating a Ransomware Threat

Fenwick & West LLP on 4/1/2022

It’s the call you hope you never get. Your company has been hit with a ransomware attack. Your systems are offline. Your customer data was stolen by an unknown threat actor who is threatening to leak it. You have lots of...more

Joint International Advisory Warns of Increased Global Threat of Ransomware

Robinson+Cole Data Privacy + Security Insider on 2/18/2022

A joint Cybersecurity Advisory issued by U.S. and international partners, entitled “2021 Trends Show Increased Globalized Threat of Ransomware,” warns of “the growing international threat posed by ransomware over the past...more

Data Privacy + Cybersecurity Insider - January 2022 #4

Robinson & Cole LLP on 1/28/2022

CYBERSECURITY - CISA Warns “Every Organization” in U.S. to Assess + Respond to Cyber Risks - The Cybersecurity & Infrastructure Security Agency (CISA) recently issued another warning to “every organization” in the...more

CISA Warns “Every Organization” in U.S. to Assess + Respond to Cyber Risks

Robinson+Cole Data Privacy + Security Insider on 1/27/2022

The Cybersecurity & Infrastructure Security Agency (CISA) recently issued another warning to “every organization” in the U.S. about cybersecurity risks during the ongoing escalation of tension between the U.S. and Russia over...more

China-Based Ransomware Operator Exploiting Log4j Vulnerability

Robinson+Cole Data Privacy + Security Insider on 1/14/2022

Microsoft has issued frequent updates on the Log4j vulnerability that we have been hearing so much about. The vulnerability is a serious problem that will become more widespread as time goes on....more

Federal Data Breach Reporting Requirements Continue to Evolve

McDermott Will & Emery on 12/10/2021

Complementing the patchwork of state data breach notification laws, a number of federal agencies recently have promulgated sector-specific reporting rules affecting a variety of companies, both directly and indirectly, with...more

Rebranded Ransomware Group Sabbath Hitting Hospitals and Schools

Robinson+Cole Data Privacy + Security Insider on 12/2/2021

Researchers at Mandiant have recently reported that a new ransomware group calling itself Sabbath appears to be the rebranded group Arcane and “picked up their pace” in November....more

Federal Banking Regulators Issue Rule Requiring 36 Hour Notice of Ransomware and Other Disruptive Cybersecurity Incidents

Polsinelli on 11/22/2021

On November 18, 2021, the Federal Deposit Insurance Corporation, the Board of Governors of the Federal Reserve System, and the Office of the Comptroller of the Currency issued a joint final rule to require banking...more

330 Results

View per page

Page: of 14

Cybersecurity › Personally Identifiable Information › Risk Management

Privacy Tip #411 – Phishing Attacks Increased 40% in 2023

Privacy Briefs: April 2024

Ransomware Hitting U.S. Companies at Increasing Rate

Privacy Breach: The Silent Killer of Startups

Pressure-Testing Your Privacy Program for 2024

Privacy Briefs: December 2023

Resilience Midyear 2023 Claims Report: Ransomware Cybercriminals Shift Tactics

Red Cross Creates Rules for Civilian Hackers in Conflict Zones

HC3 Warns Healthcare Organizations of NoEscape Ransomware

Don’t Gamble With Your Cybersecurity and Incident Response Plan: Lessons Learned from the Las Vegas Ransomware Attacks

Privacy Tip #372 – Personal Preparedness for Massive Cyber-Attack

Hacking the Hive: How It Can Help Businesses

Executive Order Clarifies Focus and Five Factors for Future CFIUS Reviews

Hybrid Workforces and Compliance with Sheila Limmroth

To Pay or Not to Pay: Five Critical Approaches to Beating a Ransomware Threat

Joint International Advisory Warns of Increased Global Threat of Ransomware

Data Privacy + Cybersecurity Insider - January 2022 #4

CISA Warns “Every Organization” in U.S. to Assess + Respond to Cyber Risks

China-Based Ransomware Operator Exploiting Log4j Vulnerability

Federal Data Breach Reporting Requirements Continue to Evolve

Rebranded Ransomware Group Sabbath Hitting Hospitals and Schools

Federal Banking Regulators Issue Rule Requiring 36 Hour Notice of Ransomware and Other Disruptive Cybersecurity Incidents

FBI Warning: M&A Activity Targeted by Ransomware Groups

Big Tech Ally Could Advise the ICO on Enforcement Action

OSFI Cybersecurity Guidance and Notification Requirements

Cybersecurity › Personally Identifiable Information › Risk Management

"My best business intelligence, in one easy email…"