More than ever before, malicious actors are targeting email platforms in an attempt to access and monetize sensitive personal information. They often gain access to email accounts through the use of social engineering – inducing unsuspecting account owners to open email attachments that contain malicious computer code (malware).
Read more »Latest Blog Posts
-
Social Engineering Targets: Email Compromises - A Quick Prevention Guide Posted on: October 15, 2018 In: Digital Insights Blog
-
California Legislature Passes Benefit Reimbursement Law for Data Breach Victims Posted on: September 10, 2018 In: Digital Insights BlogThe California legislature, in recognizing the vulnerability of state information systems to exploitation by malicious actors, recently passed legislation allowing state benefits to be reimbursed to affected persons if benefits are stolen through a data breach.
Read more »
-
Equifax Agrees to New Data Security Measures in Consent Order with Eight State Regulatory Agencies Posted on: July 25, 2018 In: Digital Insights BlogOn September 7, 2017, the consumer reporting agency Equifax announced one of the most highly publicized cybersecurity incidents in history, which may have exposed more than 143 million Americans’ personally identifiable information (PII). Equifax claimed that malicious actors gained unauthorized access to certain files containing consumers’ PII, including Social Security numbers and payment card information, between May and July of 2017.
Read more »
-
European Parliament Votes to Suspend the EU-U.S. Privacy Shield Posted on: July 10, 2018 In: Digital Insights BlogOn July 5, 2018, the European Parliament voted to suspend the EU-U.S. Privacy Shield Framework (Privacy Shield), an agreement between the United States and the European Union regarding the obligations of U.S.-based companies to protect Europeans’ personal data.
Read more »
-
California Enacts Sweeping, EU-Style Privacy Law Posted on: July 06, 2018 In: Digital Insights Blog
On June 28, 2018, California Governor Jerry Brown signed A.B. 375 into law, a robust bill that provides substantially broader privacy rights to California consumers regarding how certain businesses can collect, use, sell, and disclose their personal information. The new law requires such businesses to be more transparent in their data collection and sharing practices.
Read more »
-
Colorado Amends Data Breach Notification Statute Posted on: June 18, 2018 In: Digital Insights BlogOn May 29, 2018, Colorado Governor John Hickenlooper signed House Bill (“HB”) 1128 into law, amending the State’s data breach notification statute and imposing significant new requirements on entities that must notify Colorado residents of a data incident pursuant to Colo. Rev. Stat. § 6-1-716.
Read more »
-
Benefits of A Security Posture Assessment Posted on: May 07, 2018 In: Digital Insights BlogThe most difficult step to take in tackling the digital security goals of an organization is often the first one. Before responding to an audit, before scheduling a penetration test, before implementing a new privacy policy or formulating an incident response plan, the most important thing a company can do right from the start about security is to have a conversation.
Read more »
-
GDPR, Part VII: A Brief Guide to the GDPR Posted on: May 02, 2018 In: Digital Insights BlogOn May 25, 2018, the European Union’s General Data Protection Regulation (GDPR) will take effect. The primary objectives of the GDPR are to return control of “personal data” to EU citizens and residents and to simplify the regulatory environment for international business by unifying regulations within the EU.
Read more »
-
Protecting Against Ransomware Attacks: Security and Best Practices Tips Posted on: April 11, 2018 In: Digital Insights BlogEncryption attacks, more commonly known as ransomware, are one of the major cyber threats facing businesses today. No company is immune from threat of attack—any business that is connected to the internet is at risk. Industry experts estimate that a business falls victim to a ransomware event every 40 seconds.
Read more »
-
The United States of Data Breach Notification Posted on: April 10, 2018 In: Digital Insights BlogThe absence of comprehensive federal legislation on data breach notification has led to the development of a patchwork of state laws to ensure that individuals receive timely notification of data breaches that might impact their personal data.
Read more »
-
Oregon Amends Data Breach Notification Law Posted on: April 09, 2018 In: Digital Insights BlogIn March 2018, Oregon Governor Kate Brown signed into law new measures to strengthen the state’s existing data breach notification statute, ORS § 646A.604. The legislation is set to take effect in June 2018 and, among other things, will require organizations that experience a data breach affecting Oregon residents to notify affected individuals of the data breach within 45 days of its discovery, unless asked to delay notification by law enforcement.
Read more »
-
Virginia Imposes New Breach Notification Requirements on Tax Preparers Posted on: March 16, 2018 In: Digital Insights BlogOn Friday, March 9, 2018, Virginia Governor Ralph Northam signed H.B. 183, which imposes data breach notification requirements on certain tax preparers. The bill, introduced by Delegate Hala S. Ayala, had unanimous support in both the Virginia House and Senate.
Read more »
Blog Search
Featured Posts
- January 29, 2019 Huawei Trade Secrets Indictment is Cautionary Tale for Tech Partnerships
- January 22, 2019 Modlishka – Exploiting Two-Factor Authentication
- January 17, 2019 Preserving Patent Rights on a Global Stage: Foreign Filing Options and How to Successfully Navigate Novelty Requirements
- January 08, 2019 Tax Return Theft: Tips for Prevention & Response
Blog Categories
Blog Tags
2fa
aia
anti-raiding
audit
blockchain
breach notification
ca9
cafc
california
canada
cease and desist
checklist
client notification
coast guard
commission
congress
consumer consent
consumer notification
copyright
credit report
cryptocurrency
cybersecurity
cyber threat
data breach
data privacy officer
data security
department of health and human services
department of state
department of transportation
digital music
dmarc
ebt
electronic benefit transfer
electronic protected health information
email
encryption attack
epo
equifax
eu
eu-u.s. privacy shield
european unioin
european union
executive order
fcc
fcra
federal trade commission
fraud alert
gdpr
hacking
hippa
homeland security
huawei
identity fraud
identity theft
intellectual property
internet
internet service provider
ipr sovereign immunity
ipr time-bar
irs
litigation
malware
maritime cybersecurity
meltdown
microsoft office 365
modlishka
multi-factor identification
music
nda
new mexico
nist framework
nist security controls
non-solicitation
office for civil rights
on-sale doctrine
patent
patents
personal data
phishing
pre-breach services
ptab
ransomware
research
security rule
security vulnerabilities
social engineering
social media
spectre
ssn
statute
supreme court
tax preparers
tax returns
technology
third party
trade secrets
utah
virginia
virus
washington