Thursday, February 25, 2021

Subscribers Only

Free

Yahoo Says 1 Billion More User Accounts Hacked

On Wednesday, Yahoo announced that a 2013 data breach compromised more than 1 billion accounts. The reported breach is separate from a 2014 incident disclose in August, which compromised 500 million accounts. The attack involved sensitive user information, including names, telephone numbers, dates of birth, encrypted passwords, and unencrypted security questions that could be used […]
Must be a Paid Member or a Free Trial Member to Access Content. Members log in here.

Data Breach Harm Standard May Head to SCOTUS in ‘17

Experts say it’s only a matter of time before a lawsuit seeking damages due to harm resulting from a cybersecurity breach makes its way to the Supreme Court. Although many such cases are filed, few have won on the merits and the full facts of the breach are often left undisclosed. Experts believe the time […]
Must be a Paid Member or a Free Trial Member to Access Content. Members log in here.

Treasury Official: CPAs Should Audit Firms’ Cyber Programs

Treasury Department Deputy Secretary Sarah Bloom Raskin says she supports a proposal that would encourage certified public accountants to assess the cybersecurity programs of the firms they audit. According to Raskin, a standard reporting framework could allow various types to organizations to demonstrate the level of effectiveness of their cybersecurity risk management programs in a […]
Must be a Paid Member or a Free Trial Member to Access Content. Members log in here.

Companies Without Incident Response Plans May Not Be Able to Get Cyber Insurance

A new report from the National Association of Insurance Commissioners Cybersecurity Task Force suggests that insurance companies will want to examine customers’ incident response plans and how they align with the business’ risk management practices. Firms lacking a robust incident response plan could find themselves ineligible for cyber insurance policies that cover liability for security […]
Must be a Paid Member or a Free Trial Member to Access Content. Members log in here.

The Role of Cyber Security In Mergers And Acquisitions

Companies planning merger or acquisition activity should consider the risks presented by privileged accounts, which are a highly-targeted source of access for hackers. Merging companies should ensure their processes for assigning user privileges are aligned, have an inventory of which employees have privileged access and what they can access, and create and communicate clearly understood […]
Must be a Paid Member or a Free Trial Member to Access Content. Members log in here.

The Legal Profession’s Obligation to Monitor Evolving Technology

The American Bar Association and 14 states require attorneys to remain abreast of information technology developments, including the risks and benefits of using technology in their practices. This requirement applies to the full range of legal practice, including billing, legal research, and records management, as well as to individual tools, such as computers, smart phones, […]
Must be a Paid Member or a Free Trial Member to Access Content. Members log in here.

The UK’s Cybersecurity Regulatory Landscape: An Overview

The American Bar Association and 14 states require attorneys to remain abreast of information technology developments, including the risks and benefits of using technology in their practices. This requirement applies to the full range of legal practice, including billing, legal research, and records management, as well as to individual tools, such as computers, smart phones, […]
Must be a Paid Member or a Free Trial Member to Access Content. Members log in here.

European Commission Plans to Upgrade e-Privacy Directive to a Regulation

The European Commission plans to upgrade the EU’s e-Privacy Directive into a Regulation, which will replace the baseline requirements that EU members states use to create their own privacy laws with a regulation that will establish a harmonized set of requirements that apply across the EU. The draft regulation expand the directive’s scope to include […]
Must be a Paid Member or a Free Trial Member to Access Content. Members log in here.

Navy Taps 4 Firms for Marine Corps Cyber Command Training

The Navy has awarded four contracts for cyber and IT training for personnel in the Marine Corps Cyber Command. RavenTek, Onyx Consulting Services, CSR Group, and Ultimate Knowledge Corp. will provide basic and intermediate level courses, opportunity courses, and software training. More at Military Aerospace
Must be a Paid Member or a Free Trial Member to Access Content. Members log in here.

EU Privacy Upheaval Demands Urgent U.S. Corporate Game Plan

Companies are working to comply with the EU’s General Data Protection Regulation before the May 2018 implementation deadline, but ambiguities in the law may make it difficult to know if a company is fully prepared. Multinational companies are still figuring out how to protect the personal data of EU citizens under the regulation, and are […]
Must be a Paid Member or a Free Trial Member to Access Content. Members log in here.