SIM swap scams are nothing new, and are back in the news with high profile SIM swap attacks on Twitter’s CEO. Telecommunications providers such as Verizon, AT&T, T-Mobile, and Sprint have been aware for over ten years that unauthorized third parties regularly attempt to obtain access to customer subscriber accounts to gain control over a… READ MORE
How to Manage Data Breaches Under GDPR In recent weeks, we have posted about the requirements of personal data protection under Europe’s General Data Protection Regulation (GDPR) that companies must now follow. Today we will look into what a company must do in the event of a data breach under this regulation. Over the past… READ MORE
Businesses that engage in deceptive and unfair internet practices are subject to injunctions and large monetary damage awards under the Federal Trade Commission Act (“FTC Act”). Just as importantly, the owners and principals of businesses can be held personally liable. In the case discussed below, FTC v. Ross, the website owner was fined $163 million… READ MORE
In early September of 2017, it was reported that Equifax Inc., one of the country’s three leading credit reporting services, was subject to a cyberattack that resulted in the access by the hackers of financial and personal information of more than 143 million U.S. consumers. According to Equifax, the hacking occurred from mid-May through July… READ MORE
Healthcare computer systems harbor the most useful three pieces of personal identifying information that can be used for fraud and identity theft – names, Social Security numbers, and dates of birth. With these three pieces of important and essential personal identifying data, hackers, fraudsters and impersonators can do virtually anything they would like. Increase in… READ MORE
New Mexico recently became the 48th state in the US to adopt data breach notification laws. The new laws take effect June 16, 2017 and will apply in all situations in which a data breach occurs, i.e., an unauthorized attempt to access unencrypted or encrypted computerized data. In addition to providing governance on how personal… READ MORE
