cybersecurity Archives | Revision Legal

How to Manage Data Breaches Under GDPR

November 20, 2018/0 Comments/in gdpr /by John DiGiacomo

How to Manage Data Breaches Under GDPR In recent weeks, we have posted about the requirements of personal data protection under Europe’s General Data Protection Regulation (GDPR) that companies must now follow. Today we will look into what a company must do in the event of a data breach underHow to Manage Data Breaches Under GDPR In recent weeks, we have posted about the requirements of personal data protection under Europe’s General Data Protection Regulation (GDPR) that companies must now follow. Today we will look into what a company must do in the event of a data breach under

Read more →

Data Localization and Export: 2 Steps to Take Now

March 23, 2018/0 Comments/in internet /by Eric Misterovich

Some of the more perplexing issues in our data-driven world are the questions of data localization and export – that is, where data should be stored and how it can be moved. Up until recently, data and computer-housed information has flowed cross-border without much hindrance. In general, companies store dataSome of the more perplexing issues in our data-driven world are the questions of data localization and export – that is, where data should be stored and how it can be moved. Up until recently, data and computer-housed information has flowed cross-border without much hindrance. In general, companies store data

Read more →

SEC Guidance on Cybersecurity: Data Breaches Are Likely Material

March 7, 2018/0 Comments/in cybersecurity /by John DiGiacomo

The Securities and Exchange Commission (“SEC”) just issued, on February 21, 2018, a new Guidance with respect to cybersecurity disclosures for publicly-held corporations. The quick takeaway is that data breaches and data breach risks are likely to be “material” for purposes of disclosure, data security should be deemed a “boardThe Securities and Exchange Commission (“SEC”) just issued, on February 21, 2018, a new Guidance with respect to cybersecurity disclosures for publicly-held corporations. The quick takeaway is that data breaches and data breach risks are likely to be “material” for purposes of disclosure, data security should be deemed a “board

Read more →

Yes, Your Business Needs a Data Protection Officer

November 9, 2017/0 Comments/in Data Breach /by John DiGiacomo

On May 28, 2018, new data protections laws and regulations go into effect for the European Union (“EU”). See recent news report here. The new regulations are called the General Data Protection Regulation (“GDPR”). See the full GDPR here. The EU is getting serious about punishing companies that suffer dataOn May 28, 2018, new data protections laws and regulations go into effect for the European Union (“EU”). See recent news report here. The new regulations are called the General Data Protection Regulation (“GDPR”). See the full GDPR here. The EU is getting serious about punishing companies that suffer data

Read more →

SIM Swap Scams Targeting Cryptocurrency Investors

September 26, 2017/0 Comments/in Data Breach /by John DiGiacomo

SIM swap scams are nothing new. Telecommunications providers such as Verizon, AT&T, T-Mobile, and Sprint have been aware for over ten years that unauthorized third parties regularly attempt to obtain access to customer subscriber accounts to gain control over a customer’s SIM card. Hackers Gaining Account Control By gaining controlSIM swap scams are nothing new. Telecommunications providers such as Verizon, AT&T, T-Mobile, and Sprint have been aware for over ten years that unauthorized third parties regularly attempt to obtain access to customer subscriber accounts to gain control over a customer’s SIM card. Hackers Gaining Account Control By gaining control

Read more →

Deceptive Business Practices & The FTC Act

September 25, 2017/0 Comments/in FTC /by John DiGiacomo

Businesses that engage in deceptive and unfair internet practices are subject to injunctions and large monetary damage awards under the Federal Trade Commission Act (“FTC Act”). Just as importantly, the owners and principals of businesses can be held personally liable. In the case discussed below, FTC v. Ross, the websiteBusinesses that engage in deceptive and unfair internet practices are subject to injunctions and large monetary damage awards under the Federal Trade Commission Act (“FTC Act”). Just as importantly, the owners and principals of businesses can be held personally liable. In the case discussed below, FTC v. Ross, the website

Read more →

The FTC Case against EquiFax Inc.

September 25, 2017/0 Comments/in Data Breach /by John DiGiacomo

In early September of 2017, it was reported that Equifax Inc., one of the country’s three leading credit reporting services, was subject to a cyberattack that resulted in the access by the hackers of financial and personal information of more than 143 million U.S. consumers. According to Equifax, the hackingIn early September of 2017, it was reported that Equifax Inc., one of the country’s three leading credit reporting services, was subject to a cyberattack that resulted in the access by the hackers of financial and personal information of more than 143 million U.S. consumers. According to Equifax, the hacking

Read more →

Recent Healthcare Data Breaches

June 1, 2017/0 Comments/in Data Breach /by John DiGiacomo

Healthcare computer systems harbor the most useful three pieces of personal identifying information that can be used for fraud and identity theft – names, Social Security numbers, and dates of birth. With these three pieces of important and essential personal identifying data, hackers, fraudsters and impersonators can do virtually anythingHealthcare computer systems harbor the most useful three pieces of personal identifying information that can be used for fraud and identity theft – names, Social Security numbers, and dates of birth. With these three pieces of important and essential personal identifying data, hackers, fraudsters and impersonators can do virtually anything

Read more →

New Mexico Enacts New Data Breach Notification Laws

May 15, 2017/0 Comments/in Data Breach /by John DiGiacomo

New Mexico recently became the 48th state in the US to adopt data breach notification laws. The new laws take effect June 16, 2017 and will apply in all situations in which a data breach occurs, i.e., an unauthorized attempt to access unencrypted or encrypted computerized data. In addition toNew Mexico recently became the 48th state in the US to adopt data breach notification laws. The new laws take effect June 16, 2017 and will apply in all situations in which a data breach occurs, i.e., an unauthorized attempt to access unencrypted or encrypted computerized data. In addition to

Read more →

America First! (in Data Security Breaches)

February 2, 2017/0 Comments/in Data Breach /by John DiGiacomo

In the United States we pride ourselves on being world leaders, but not when it comes to the number of data security breaches that we fall victim to. According to a report published by The Hill, the United States outpaced the rest of the world concerning the number of dataIn the United States we pride ourselves on being world leaders, but not when it comes to the number of data security breaches that we fall victim to. According to a report published by The Hill, the United States outpaced the rest of the world concerning the number of data

Read more →

Posts

SEC Guidance on Cybersecurity: Data Breaches Are Likely Material

SIM Swap Scams Targeting Cryptocurrency Investors

Deceptive Business Practices & The FTC Act

The FTC Case against EquiFax Inc.

Recent Healthcare Data Breaches

New Mexico Enacts New Data Breach Notification Laws

America First! (in Data Security Breaches)

Services

CONNECT WITH US