By a vote of 49-0, the Pennsylvania Senate passed Senate Bill 114, amending the state’s data breach notification law. Section 1. Section 3 of the act of December 22, 2005 (P.L.474, No.94), known as the Breach of Personal Information Notification Act, is amended by adding subsections to read: Section 3. Notification of breach. (a.1) Notification…
Category: Breach Laws
Florida bill criminalizing possession of others’ ID information passes, heads to Governor’s desk
WJHG reports: It took less than a minute Friday for the Florida Senate to pass legislation to curb identity fraud. Now the bill is headed to the Governor. The legislation was drafted in response to news reports that police were arresting people carrying dozens of IDs that don’t belong to them, but had to let…
‘Hacker’ convicted by US court despite never hacking
Matt Brian has an interesting take on the conviction of David Nosal, which I reported yesterday on this blog: After more than a year of bouncing between appeals courts, the hacking case involving David Nosal has ended with a conviction. Wired reports that Nosal was yesterday found guilty of conspiracy, stealing trade secrets, and violating the Computer Fraud and Abuse…
Belgium: Update on Personal Data Security Breaches
Patrick Van Eecke writes: Following several recent widely publicized data breaches in Belgium, the Privacy Commission issued a new recommendation on security measures and data breaches. The recommendation builds further on its previously issued security reference measures and details specific security requirements regarding a.o. IT architecture and development and production environments. Remarkably, the Privacy Commission…
Attacks ‘highlight need for data breach notification law’
Paul Smith reports: The Australian Bankers Association has defended the strength of IT security processes in place across Australia’s banking system following the revelation that Reserve Bank of Australia systems had been compromised by China-based hackers. However, security experts said the incident highlighted the need for Australian data breach notification laws to be tightened to force…
Lawmakers: Tougher computer hacking laws may be needed
Grant Gross reports: Congress may need to create stiffer penalties for criminal computer hacking to deter the growing number of attacks on U.S. government agencies and businesses, some lawmakers said Wednesday. Congress may revisit the Computer Fraud and Abuse Act (CFAA), the oft-amended law first passed in 1984, in an effort to counter widespread cyberattacks…