Data Privacy & Cybersecurity PracticeEthereum, one of the most popular cryptocurrencies with a market cap of more than $21.8 billon, is causing serious anxiety in the cryptocurrency marketplace. Code integrity concerns have resulted in $170 million in cryptocurrency being frozen, and one recent security compromise caused $38,000 in losses to users. New research has further heightened concerns about the coin’s ecosystem itself.
Read more »Digital Insights Blog
-
Lack of Code Diversity in Cryptocurrency Ethereum May be Propagating Bad Code Posted on: November 12, 2018 In: Digital Insights Blog
-
Social Media and the Workplace – Why and How Employers Should Limit the Use of Social Media in the Workplace Posted on: November 09, 2018 In: Digital Insights BlogSocial media has revolutionized the way people communicate and stay in contact with one another. But in the workplace, trying to “friend” an employee or sharing a photo with sensitive information in the background can create legal liabilities that employers may not have thought about before.
Read more »
-
New Canadian Data Breach Notification Requirements Take Effect as PIPEDA Amendments Come Into Force Posted on: October 31, 2018 In: Digital Insights BlogOn November 1, 2018, the long-awaited amendments to Canada’s main federal data privacy law, the Personal Information Protection and Electronic Documents Act (PIPEDA), take effect.
Read more »
-
Congress Amends FCRA, Eliminates Credit Freeze Fees for Identity Fraud Cases Posted on: October 30, 2018 In: Digital Insights BlogUnder the recent amendments to the Fair Credit Reporting Act (FCRA) passed by Congress, as of September 21, 2018, consumer credit reporting agencies can no longer charge fees for consumers to place or lift credit freezes on their credit file.
Read more »
-
American Bar Association Issues Data Breach Guidance Posted on: October 23, 2018 In: Digital Insights BlogOn October 17, 2018, the American Bar Association (ABA) released Formal Opinion 483 (the Opinion) which formally recognized that lawyers have an ethical duty to notify clients whose confidential information is compromised by a data breach.
Read more »
-
Social Engineering Targets: Email Compromises A Quick Prevention Guide Posted on: October 15, 2018 In: Digital Insights BlogMore than ever before, malicious actors are targeting email platforms in an attempt to access and monetize sensitive personal information. They often gain access to email accounts through the use of social engineering – inducing unsuspecting account owners to open email attachments that contain malicious computer code (malware).
Read more »
-
California Legislature Passes Benefit Reimbursement Law for Data Breach Victims Posted on: September 10, 2018 In: Digital Insights BlogThe California legislature, in recognizing the vulnerability of state information systems to exploitation by malicious actors, recently passed legislation allowing state benefits to be reimbursed to affected persons if benefits are stolen through a data breach.
Read more »
-
Equifax Agrees to New Data Security Measures in Consent Order with Eight State Regulatory Agencies Posted on: July 25, 2018 In: Digital Insights BlogOn September 7, 2017, the consumer reporting agency Equifax announced one of the most highly publicized cybersecurity incidents in history, which may have exposed more than 143 million Americans’ personally identifiable information (PII). Equifax claimed that malicious actors gained unauthorized access to certain files containing consumers’ PII, including Social Security numbers and payment card information, between May and July of 2017.
Read more »
-
European Parliament Votes to Suspend the EU-U.S. Privacy Shield Posted on: July 10, 2018 In: Digital Insights BlogOn July 5, 2018, the European Parliament voted to suspend the EU-U.S. Privacy Shield Framework (Privacy Shield), an agreement between the United States and the European Union regarding the obligations of U.S.-based companies to protect Europeans’ personal data.
Read more »
-
California Enacts Sweeping, EU-Style Privacy Law Posted on: July 06, 2018 In: Digital Insights Blog
On June 28, 2018, California Governor Jerry Brown signed A.B. 375 into law, a robust bill that provides substantially broader privacy rights to California consumers regarding how certain businesses can collect, use, sell, and disclose their personal information. The new law requires such businesses to be more transparent in their data collection and sharing practices.
Read more »
-
Colorado Amends Data Breach Notification Statute Posted on: June 18, 2018 In: Digital Insights BlogOn May 29, 2018, Colorado Governor John Hickenlooper signed House Bill (“HB”) 1128 into law, amending the State’s data breach notification statute and imposing significant new requirements on entities that must notify Colorado residents of a data incident pursuant to Colo. Rev. Stat. § 6-1-716.
Read more »
-
Benefits of A Security Posture Assessment Posted on: May 07, 2018 In: Digital Insights BlogThe most difficult step to take in tackling the digital security goals of an organization is often the first one. Before responding to an audit, before scheduling a penetration test, before implementing a new privacy policy or formulating an incident response plan, the most important thing a company can do right from the start about security is to have a conversation.
Read more »
Blog Search
Featured Posts
Blog Tags
aba
alabama
american bar association
arkansas
audit
blockchain
breach notification
california
canada
ccpa
client notification
colorado
commission
congress
consent order
consumer consent
consumer notification
critical security controls
cryptocurrency
cyber threat
data breach
data privacy directive
data privacy officer
data protection officer
data security
delaware
department of commerce
department of financial services
department of health and human services
department of transportation
dmarc
electronic benefit transfer
electronic protected health information
email
employment
equifax
ethereum
ethics
eu
eu-u.s. data privacy shield
eu-u.s. privacy shield
european parliament
european unioin
european union
fcc
fcra
federal communication
federal trade commission
financial firms
fines
gdpr
hacking
hippa
homeland security
incidence response plan
internet service provider
it
malware
maritime cybersecurity
maryland
meltdown
microsoft office 365
multi-factor identification
net neutrality
new mexico
new york
ninth circuit
nist framework
nist security controls
oregon
patching
penalties
personal data
phishing
pipeda
pre-breach services
privacy act
ransomware
rdp
remote desktop protocol
security posture assessment
security rule
security vulnerabilities
service provider agreement
social engineering
social media
south dakota
spear-phishing
spectre
spokeo
statute
supervisory authorities
supreme court
tax preparers
tennessee
third party
utah
virginia
virus
workplace policy