Courtney M. Bowman of Proskauer Rose writes: What would companies need to do to comply with the law? The Stop Hacks and Improve Electronic Data Security (SHIELD) Act imposes requirements in two areas: cybersecurity and data breach notification. The cybersecurity provisions of the proposed SHIELD Act would require companies to adopt “reasonable safe-guards to protect the security,…
Month: March 2018
Hacking group threatens researchers’ lives after they discover attack servers
Chris Bing reports: A hacking group commonly linked to the Iranian government threatened to kill security researchers who came across their cyber espionage operation, according to a new report. Researchers with multinational cybersecurity company Trend Micro were probing a server that appeared connected to a possible data breach in the Middle East when they received a…
Gwent Police investigated for failing to disclose possible compromise of personal information
Alexander J. Martin reports: Gwent Police is being investigated after failing to inform hundreds of people that hackers may have accessed their confidential reports to the force. Sky News has learned that up to 450 people who filed reports through an online tool over a two-year period could have been put at risk by hackers…
Yahoo Enters $80 Million Securities Class Action Settlement After Data Breach
J. Robert MacAneney of Carlton Fields writes: On March 5, Yahoo, Inc. (“Yahoo”) announced a proposed settlement in In re Yahoo Inc. Securities Litigation, which was filed in U.S. District Court in San Francisco. The $80 million proposed settlement relates to a securities class litigation stemming from Yahoo’s 2013 and 2014 data breaches. While many…
ATI Physical Therapy notifies patients of data breach
ATI Physical Therapy is notifying patients of a security incident that appears to have targeted employees’ email accounts. Here is their update of March 12, although I’m not sure when any previous notification may have been published (their newsroom does not show any prior notice on their site): About the data privacy event ATI Holdings,…
UPDATE: FLVS leak affected 50,000 Leon County employees and students
WGCU has the update here. Note that they will be sending out individual notifications. It’s not clear whether FLVS is sending out individual notifications to any of the non-Leon County students or parents whose data was on their server. And an even more complete update here. Leon County Schools superintendent blasts FLVS.