Kashmir Hill writes: Hacker conference Defcon has a long tradition of playing “spot the fed,” a game that involves outing government types who attend under the radar to learn about the latest hacking tricks and those who are expert at developing them. There was little challenge in the game this August when it came to…
Category: Breach Laws
Delaware Adopts Law Requiring the Destruction of Consumers’ Personally Identifiable Information.
Steven Caponi and Elizabeth Sloan of Blank Rome LLP write: On July 1, 2014, Delaware Governor Jack Markell signed into law Delaware House Bill 295, which amends Section 6 of the Delaware Code relating to trade and commerce. The new law, 6 Delaware Code §§50C-101 thru 50C-401, places new obligations on commercial entities with respect…
Extending Cybersecurity Breach Notice Requirements to Intelligence Community Contractors
David Fagan, Susan Cassidy, and Catlin Meade write: As an indicator of the continuing focus of government authorities on cybersecurity breaches and potential notification requirements, certain contractors for the federal government may soon face new rapid reporting requirements for successful network penetrations. Specifically, President Obama signed the 2014 Intelligence Authorization Act (“2014 IAA”) into law on July…
Mandatory data breach laws back on Australian agenda
Richard Chirgwin reports: Australia’s on-again, off-again debate about data breach notification laws is on again, courtesy of a report into financial system regulation, at least until the government cans the idea (again). Register readers will recall that a Privacy Alerts bill was proposed by the previous government before the 2013 election, then delayed, re-introduced in March, and abandoned in…
NZ: Proposed data breach fines a ‘drop in the ocean’
Rob O’Neill reports: The New Zealand government is expected to introduce a rewrite of privacy laws into Parliament next year, but one security expert says the proposals are imprecise and don’t go far enough. Trend Micro’s senior security architect Peter Benson says data breach disclosure laws are long overdue and will bring New Zealand into…
KR: FSS toughening punishment on data theft
Chung Ah-young reports that the South Korean financial regulator is cracking down by enhancing the penalties for employees and executives: Financial Supervisory Service (FSS) Governor Choi Soo-hyun directed the reinforcement of the punitive measures for any irregularities which can disrupt the market order and breach the rights of financial consumers. To prevent a recurrence of…