Sunday, September 27, 2020

Subscribers Only

Free

Lessons From the Complaint Against Uber’s Former Chief Security Officer

Former Uber CSO Joe Sullivan was charged last month with obstruction of justice and misprision of a felony for knowingly concealing a hack of Uber in 2016. Looking at the charges, Knobbe Martens identifies lessons about how a company should respond to cyber intrusions, considering: (1) what Sullivan allegedly did wrong; (2) what corporate officers […]
Must be a Paid Member or a Free Trial Member to Access Content. Members log in here.

Massachusetts Attorney General Creates Data Privacy And Security Division

The Massachusetts Office of the Attorney General has created a new Data Privacy and Security Division, charged with protecting consumers from the threats to the privacy and security of their data. In the Fall of 2019, governor Charlie Baker introduced an expansive cybersecurity program, including statewide workshops for municipalities to work together to enhance their […]
Must be a Paid Member or a Free Trial Member to Access Content. Members log in here.

CISA Orders Immediate Action to Fix Vulnerability in Windows Directory

CISA has alerted federal and private sector entities of the availability of malicious code capable of exploiting a vulnerability in a Microsoft system widely used across the federal government. Over the weekend, the agency issued an emergency directive for agencies to update Windows domain controllers by the end of the day Monday. The vulnerability “could […]
Must be a Paid Member or a Free Trial Member to Access Content. Members log in here.

U.S. House Passes IoT Cybersecurity Bill

The U.S. House of Representatives has passed the IoT Cybersecurity Improvement Act, which is intended to improve the security of IoT devices. The bill is backed by Representatives Will Hurd (R-TX) and Robin Kelly (D-IL), and Senators Mark Warner (D-VA) and Cory Gardner (R-CO), and has support from major cybersecurity and tech companies including BSA, […]
Must be a Paid Member or a Free Trial Member to Access Content. Members log in here.

GAO: Treasury Needs to Improve Tracking of Financial Sector Cybersecurity Risk Mitigation Efforts

As the designated lead cybersecurity agency for the financial sector, the Treasury Department plays a key role in supporting many of the efforts to enhance the sector’s cybersecurity and resiliency. However, according to a new report from GAO, the agency  does not track efforts or prioritize them according to goals established by the sector for […]
Must be a Paid Member or a Free Trial Member to Access Content. Members log in here.

Inside Privacy Audiocast: Episode 4 – A Look into the ACLU of California’s Position...

Covington & Burling’s Inside Privacy Audiocast looks at the California Privacy Rights Act, joined by Jacob Snow of the ACLU of Northern California. In September 2019, Californians for Consumer Privacy launched a ballot initiative for the California Privacy Rights Act to appear on the state’s November 2020 ballot. This latest proposal would amend the newly […]
Must be a Paid Member or a Free Trial Member to Access Content. Members log in here.

Filling in the Holes: Dunkin Settles Breach Allegations with NYAG

The New York Attorney General has settled with Dunkin’ Brands, Inc. over allegations that the company failed to adequately respond to years of cyberattacks that compromised customers’ online accounts. According to the lawsuit, beginning in early 2015, Dunkin’ customers with loyalty-rewards accounts were targeted by a series of automated credential-stuffing attacks. The developer of the […]
Must be a Paid Member or a Free Trial Member to Access Content. Members log in here.

Proposed Regulations Under Virginia’s Insurance Data Security Act

Virginia’s Bureau of Insurance has proposed regulations implementing the new Insurance Data Security Act. The new rules would distinguish between smaller and larger licensees for specifying requirements and timing around risk assessments and information security program security measures: “level one” for licensees with more than 10 employees and authorized persons, and “level two” for those […]
Must be a Paid Member or a Free Trial Member to Access Content. Members log in here.

CMMC Advisory Board – The Good News First

The Cybersecurity Maturity Model Certification Advisory Board (CMMC AB) made a major announcement on September 16, 2020, announcing that it has trained an initial...

National Guard Cybersecurity Units Ready to Protect Election

National Guard units are commonly called up to help deal with natural disasters, and they’ve responded lately to the COVID-19 pandemic and civil unrest. Some states are now calling out the National Guard to help protect the election process from online attacks and interference, acting in their role as their state’s cybersecurity support system. Ten […]
Must be a Paid Member or a Free Trial Member to Access Content. Members log in here.