2fa aba alabama american bar association arkansas audit biometric biometric data bipa breach notification california ccpa client notification cms colorado congress consumer notification coronavirus covid-19 cpra cryptocurrency cybersecurity cyber threat data breach data privacy data security department of financial services dhs digital forensics email employment encryption attack equifax eu eu-u.s. privacy shield european parliament european union executive order fbi fcra federal trade commission fines forensics fraud gdpr hacking healthcare hhsocr hipaa holiday season hospitals human resources identity theft illinois information security irs it it professionals legislative alert malware managed service providers manufacturing maryland maze medicare microsoft office 365 model law modlishka multi-factor identification new jersey new mexico new york ninth circuit nist security controls oregon penalties personal data personal information phishing protected health information ransomware ransomwear regulations social engineering social media south dakota spokeo statute supreme court tax return tax returns utah video-teleconferencing virginia w2 washington websites wire transfers workplace policy zoom