2fa aba alabama american bar association arkansas audit biometric biometric data bipa breach notification california ccpa client notification cms colorado congress consumer notification coronavirus covid-19 cryptocurrency cybersecurity cyber threat data breach data privacy data security department of financial services dhs digital forensics email employment encryption attack equifax eu eu-u.s. data privacy shield eu-u.s. privacy shield european parliament european union fbi fcra federal trade commission fines forensics fraud gdpr hacking healthcare hhsocr hipaa holiday season human resources identity theft illinois information security irs it it professionals legislative alert malware managed service providers manufacturing maryland massachusetts maze medicaid medicare microsoft office 365 model law modlishka multi-factor identification new jersey new mexico new york ninth circuit nist security controls oregon penalties personal data personal information phishing protected health information ransomware regulations social engineering social media south dakota spear-phishing spokeo statute supreme court tax return tax returns utah video-teleconferencing virginia w2 washington websites wire transfers workplace policy zoom