Blog
Data Privacy & Cybersecurity Blog Posts From March 2022
-
Blog: UPDATE: Strengthening American Cybersecurity Act of 2022 Signed Into Law
Date: March 28, 2022
Title: UPDATE: Strengthening American Cybersecurity Act of 2022 Signed Into Law
Summary: On March 15, 2022, the Strengthening American Cybersecurity Act, which includes the Cyber Incident Reporting for Critical Infrastructure Act of 2022 was signed into law by President Biden, thereby creating new reporting requirements for critical infrastructure entities. Under the Act, entities considered to be critical infrastructure must notify the Cybersecurity and Infrastructure Security Agency within 72 hours of discovering a covered cyber incident and within 24 hours of a ransomware payment....
-
Blog: Additional Data Protection Authorities Assess Legality Around Using Google Analytics
Date: March 22, 2022
Title: Additional Data Protection Authorities Assess Legality Around Using Google Analytics
Summary: In response to a 2020 European Court of Justice (ECJ) ruling that the EU-US Privacy Shield data transfer mechanism was not consistent with European data protection laws, the EU and U.S. began working to identify a new arrangement for transferring personal data from the EU to the U.S. However, to date, no substitute data transfer mechanism has been identified....
-
Blog: Standing Up the Strengthening American Cybersecurity Act of 2022
Date: March 16, 2022
Title: Standing Up the Strengthening American Cybersecurity Act of 2022
Summary: The U.S. Senate unanimously passed the Strengthening American Cybersecurity Act on March 1, 2022. If signed into law, it would create an affirmative obligation for critical infrastructure entities across 16 federally designated critical infrastructure sectors, including energy and financial services, to report cybersecurity incidents to the Cybersecurity and Infrastructure Security Agency....
-
Blog: FinCEN Alert: Malware/Ransomware Updates & New Perimeter Device Vulnerability
Date: March 08, 2022
Title: FinCEN Alert: Malware/Ransomware Updates & New Perimeter Device Vulnerability
Summary: There have recently been a number of developments in cybersecurity due to the Russia/Ukraine conflict. The Financial Crimes Enforcement Network (FinCEN) released an alert on March 7 advising all financial institutions to be vigilant against efforts to evade sanctions imposed in connection with the Russian invasion of Ukraine. The primary focus of the alert appears to be eliciting cooperation of financial institutions in identifying hidden Russian and Belarusian assets....
-
Blog: QR Codes – Consumer Convenience or Fraudulent Contrivance?
Date: March 07, 2022
Title: QR Codes – Consumer Convenience or Fraudulent Contrivance?
Summary: During the halftime show of this year’s Super Bowl, a floating QR code took a star turn in a prominently placed advertisement from cryptocurrency exchange platform Coinbase. So many people reportedly followed the link from the QR code that the resulting traffic overwhelmed and crashed the Coinbase website landing page. The convenience of the code clearly worked, but while QR codes may be a welcome convenience, they may also be a potential tool for the commission of fraud....