Iranians Hackers Targeted Control of New York Dam
Posted on Mar 25, 2016 in Uncategorized | Comments Off on Iranians Hackers Targeted Control of New York Dam
The seven Iranian hackers that were indicted for conducting distributed denial of service attacks on banks also were charged with illegally accessing the supervisory control and data acquisition, or “SCADA,” system at a dam in New York State. This is reportedly the first time a breach in a U.S. computer system that controls critical infrastructure has been linked by the FBI to a hacker...
FTC Orders Data Security Auditors to Provide PCI DSS Assessment Data
Posted on Mar 21, 2016 in Uncategorized | Comments Off on FTC Orders Data Security Auditors to Provide PCI DSS Assessment Data
On March 7, 2016, the Federal Trade Commission (“FTC”) ordered nine data security auditing companies to provide detailed information within 45 days about how they conduct assessments of companies when measuring their compliance with the Payment Card Industry Data Security Standards (“PCI DSS”). The FTC announced it is specifically seeking information about “the assessment process...
U.S. and EU Announce Deal on the EU-US Privacy Shield
Posted on Feb 4, 2016 in Uncategorized | Comments Off on U.S. and EU Announce Deal on the EU-US Privacy Shield
The United States (U.S.) and the European Union (EU) announced on February 2 that they have reached an agreement on a new data-sharing arrangement tentatively named the “EU-U.S. Privacy Shield.” This new arrangement will replace the previous “Safe-Harbor” agreement that was struck down by the European Court of Justice in October. Although the details of implementation remain largely...
PCI DSS – What It Is and Why It Is Relevant to Your Business
Posted on Feb 4, 2016 in Uncategorized | Comments Off on PCI DSS – What It Is and Why It Is Relevant to Your Business
Increasingly, companies are raising questions about PCI-DSS and its applicability to their businesses. This Legal Alert summarizes the basic aspects of PCI-DSS and its application. What is PCI DSS? The Payment Card Industry Data Security Standard—or PCI DSS—sets out the minimum data protection measures required of all entities involved in payment card processing. The Payment Card...
SEC Moves to Update Transfer Agent Rules; New Rules Likely to Impact Unclaimed Property and Cybersecurity
Posted on Jan 6, 2016 in Uncategorized | Comments Off on SEC Moves to Update Transfer Agent Rules; New Rules Likely to Impact Unclaimed Property and Cybersecurity
On December 22, 2015, the Securities and Exchange Commission took the first step in overhauling SEC regulation of transfer agents, the little-discussed but critical intermediaries involved in the prompt clearance and settlement of almost all U.S. securities. After many years in which other types of financial market intermediaries took center stage on the SEC’s rulemaking agenda, the...
Regulators Set Sights on Big Data and Connected Devices
Posted on Dec 29, 2015 in Uncategorized | Comments Off on Regulators Set Sights on Big Data and Connected Devices
Federal and state regulators are beginning to set their sights on companies that collect, use and share consumer data, claiming they have sufficient authority to regulate potential privacy and data security risks posed by “big data” and “connected devices.” In her article for Legaltech News, Sutherland Partner Mary Jane Wilson-Bilik notes that the Federal Trade Commission (FTC) has...
Subscribe
FEATURED
Check out the BreachLawWATCH app which allows easy access to data breach statutes across the United States and a growing number of jurisdictions.
Video: As the challenges cybersecurity and data privacy present are often global
