Joel Schectman writes: When your company gets attacked by hackers, how much do you tell the public and when? Often the answers are nothing and never, according to an attorney assisting Target Corp. with legal issues arising from its December data breach. There was little consensus on when companies should report data breaches among business executives and officials…
Category: Breach Laws
Judge Refuses to Dismiss Confession, Evidence in Reuters Employee Hacking Case
Kim Zetter reports: A federal judge has refused to dismiss a recorded confession and computer evidence collected in the case of a former Reuters employee accused of conspiring with members of Anonymous to hack his former employer. Matthew Keys, 26, sought to throw out his confession on the grounds that he was on an antidepressant…
Data Breach Notice Bill Filed in Australia Senate
Bloomberg BNA reports: Companies operating in Australia would be required to notify the data protection authority and affected individuals of data breaches under legislation introduced March 20 in the Senate. The bill would require companies, organizations and government agencies to notify the Office of the Australian Information Commissioner (OAIC) and affected individuals of personal data breaches. Read…
AU: Labor resurrects data breach notification bill
Allie Coyne reports: A Labor senator this week re-introduced proposed legislation governing mandatory notifications for companies suffering a data breach, in an attempt to resurrect a bill which failed to pass before the last federal election. Tasmanian Labor Senator and parliamentary secretary to the Shadow Attorney-General Mark Dreyfus Lisa Singh introduced to the bill into the Senate…
Did the CIA Violate the Computer Fraud and Abuse Act by Accessing Intelligence Committee Computers?
Orin Kerr writes: Senator Feinstein recently claimed that the CIA may have violated the federal computer hacking statute, the Computer Fraud and Abuse Act, by searching computers used by the Intelligence Committee to conduct CIA oversight. Based on the facts we know so far, I’m skeptical of the claim that the CIA violated the statute. This post…
No consensus on notifying victims of data breaches, but I have a few thoughts
Eric Tucker of Associated Press reports: The data breach at Target Corp. that exposed millions of credit card numbers has focused attention on the patchwork of state consumer notification laws and renewed a push for a single national standard. Most states have laws that require retailers to disclose data breaches, but the laws vary wildly….